Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/4A6E6E5282EB11EEB8BBB763C4F9AE02.roa
File: 4A6E6E5282EB11EEB8BBB763C4F9AE02.roa (raw, json)
Hash identifier: B7kNc0t3usyhvkz1xRDQSZpkmPJrpX0sVxBusRmgsxs=
Subject key identifier: B1:57:BC:54:AA:B0:09:94:67:A7:62:62:AB:57:07:3B:F4:1C:B2:A6
Certificate issuer: /CN=A9183B95/serialNumber=FAD7ECC9C05CD8EB2056909D6C614715E2C5133E
Certificate serial: 0301
Authority key identifier: FA:D7:EC:C9:C0:5C:D8:EB:20:56:90:9D:6C:61:47:15:E2:C5:13:3E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/4A6E6E5282EB11EEB8BBB763C4F9AE02.roa
Signing time: Thu 11 Jan 2024 02:44:25 +0000
ROA not before: Thu 11 Jan 2024 02:44:25 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 38001
IP address blocks: 43.228.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jul 2024 07:39:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 769 (0x301)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9183B95
Validity
Not Before: Jan 11 02:44:25 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=659f5609-edad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a4:c0:fd:e2:80:60:3a:d5:2c:9f:11:8b:ae:
63:ee:f9:71:84:08:81:bf:1d:db:99:80:11:e1:d6:
ac:7d:9b:ab:b0:5b:2e:32:95:46:43:17:99:8e:cf:
9f:0b:94:4a:10:b2:72:89:60:0c:b1:7b:a3:85:ff:
44:f3:d7:87:3c:46:bd:c1:f8:9f:d9:69:9e:43:7f:
cc:a2:4d:8b:55:ec:7f:8c:a0:9f:38:dc:72:b8:39:
42:ec:6a:92:cd:28:87:6d:e7:98:34:be:a8:34:a0:
3b:e6:b6:a9:3a:32:9c:a9:60:8d:20:12:a4:8c:86:
34:f1:e5:df:a4:c3:10:8f:c2:96:b0:b3:7b:80:ef:
39:07:54:f5:4d:1a:9b:a1:c9:78:b7:0f:e2:88:39:
ae:82:81:8f:de:f2:01:80:12:d3:d9:6e:45:10:e1:
68:6f:a5:2f:aa:60:2d:d0:14:83:47:62:24:1c:cc:
d4:fd:78:92:45:af:52:65:fb:73:b6:f8:7c:de:ee:
bb:09:75:45:47:94:ad:7d:d8:b7:98:cd:53:af:83:
b5:14:c4:95:b8:61:50:8e:dd:f8:b8:c1:a3:72:2d:
28:35:b7:3a:45:29:44:cf:81:21:aa:fd:3b:02:4a:
36:3b:1e:09:4d:6c:dc:74:28:62:39:4e:85:a3:72:
9e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:57:BC:54:AA:B0:09:94:67:A7:62:62:AB:57:07:3B:F4:1C:B2:A6
X509v3 Authority Key Identifier:
keyid:FA:D7:EC:C9:C0:5C:D8:EB:20:56:90:9D:6C:61:47:15:E2:C5:13:3E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/4A6E6E5282EB11EEB8BBB763C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.228.156.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:d5:05:d1:b9:47:75:04:bb:f8:11:c4:2c:49:d8:b3:66:15:
57:3b:63:6d:d1:02:fc:30:7d:d1:42:48:9b:c0:d1:d6:ae:73:
1c:67:a0:d9:cb:d6:f5:4d:3f:46:79:9b:7f:8f:f8:c8:56:68:
e2:bb:85:31:10:09:e8:1a:00:a5:dd:77:d4:53:92:ea:c1:f3:
d8:45:0d:33:d0:f1:f0:d6:95:51:9d:8a:97:64:f2:ac:ec:54:
1b:24:56:33:f2:73:11:79:b7:5c:35:3e:73:f5:d1:2b:43:16:
0c:e3:91:24:36:83:82:41:e4:c8:a9:3c:e3:da:2f:f7:4a:8f:
b6:48:df:68:07:b3:4b:82:19:da:d8:a1:8d:eb:ee:4e:4d:c7:
5d:6c:4c:e0:3f:4e:d3:eb:94:ca:9f:82:62:07:3f:3b:b8:68:
0e:b5:73:09:dd:a6:c5:68:96:35:79:07:06:0e:e4:cf:28:b4:
7a:a6:f2:1f:99:5d:ef:9c:1a:15:1c:4e:6f:4d:58:ec:81:ea:
e7:9b:b6:b6:fa:83:bd:8f:03:1a:91:98:d7:c4:a3:2b:f6:d9:
0b:2c:cd:b9:42:2e:c1:a6:48:16:a2:15:84:88:af:3b:93:df:
42:ff:45:ca:28:9f:e2:47:b5:6f:0a:86:bb:04:34:e6:5f:62:
4f:43:d0:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:43 2025 by rpki-client