Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918C287/68D88184248511EF94236572C4F9AE02/4933C27C6B0B11EFA3415B6DC4F9AE02.roa
File: 4933C27C6B0B11EFA3415B6DC4F9AE02.roa (raw, json)
Hash identifier: 6V+Y7SKRP4UVRYJ4+5gRb8Z/3EBfY9XREu+ahGm/wkk=
Subject key identifier: 5E:7C:1B:E5:E7:88:CF:1E:A5:8A:55:C2:69:A9:51:3A:73:F6:A1:13
Certificate issuer: /CN=A918C287/serialNumber=4239117A25582D0067DE4D0CEDA5ABA5CC7E3569
Certificate serial: 4D
Authority key identifier: 42:39:11:7A:25:58:2D:00:67:DE:4D:0C:ED:A5:AB:A5:CC:7E:35:69
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QjkReiVYLQBn3k0M7aWrpcx-NWk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918C287/68D88184248511EF94236572C4F9AE02/4933C27C6B0B11EFA3415B6DC4F9AE02.roa
Signing time: Wed 04 Sep 2024 22:16:09 +0000
ROA not before: Wed 04 Sep 2024 22:16:09 +0000
ROA not after: Sat 01 May 2038 00:00:00 +0000
asID: 17821
IP address blocks: 203.176.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 23:11:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77 (0x4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918C287/serialNumber=4239117A25582D0067DE4D0CEDA5ABA5CC7E3569
Validity
Not Before: Sep 4 22:16:09 2024 GMT
Not After : May 1 00:00:00 2038 GMT
Subject: CN=66d8dc29-4303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:60:e3:49:a7:38:27:e8:93:b4:8f:66:13:a4:
6a:c9:ce:6b:6f:ad:e0:9b:b7:c4:a4:e7:ff:e5:c9:
e9:14:f6:50:04:0e:2c:a9:82:d7:b6:68:52:84:a0:
da:05:b6:16:e1:c0:23:9d:ed:03:60:cb:2c:b1:67:
31:77:1d:91:82:e1:df:88:12:02:f3:d1:3c:79:63:
a0:a0:a4:2a:3f:67:74:de:bc:e2:51:4a:9c:1c:81:
2b:f6:3c:b6:06:d2:69:2a:f5:9b:99:98:8b:90:d1:
f6:2a:c1:a3:93:5d:d5:3d:dd:82:1b:f7:ac:1b:32:
42:c3:b7:43:d9:91:f9:2f:48:b0:3f:1a:ae:02:79:
b5:e1:dc:4c:a6:50:83:16:26:fa:0f:b2:43:8d:40:
38:e5:45:9a:52:bc:70:fe:e8:2b:72:4a:29:66:d9:
ab:5d:0c:ea:bc:62:01:b6:22:88:e2:72:75:48:44:
3d:4d:14:a6:a2:03:2a:1a:90:c0:04:3c:38:41:23:
f6:f4:ed:13:b9:b0:94:90:a0:2a:2c:8f:95:31:d6:
d4:b5:b0:57:da:55:4f:e9:cb:b7:ce:67:8d:5a:3a:
55:d1:6d:50:10:27:6e:e9:d5:76:44:e3:89:92:53:
0e:35:37:82:dd:58:ab:b8:4f:d0:d1:d0:53:53:b2:
c3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:7C:1B:E5:E7:88:CF:1E:A5:8A:55:C2:69:A9:51:3A:73:F6:A1:13
X509v3 Authority Key Identifier:
keyid:42:39:11:7A:25:58:2D:00:67:DE:4D:0C:ED:A5:AB:A5:CC:7E:35:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918C287/68D88184248511EF94236572C4F9AE02/QjkReiVYLQBn3k0M7aWrpcx-NWk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QjkReiVYLQBn3k0M7aWrpcx-NWk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C287/68D88184248511EF94236572C4F9AE02/4933C27C6B0B11EFA3415B6DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.176.189.0/24
Signature Algorithm: sha256WithRSAEncryption
40:50:b6:cc:76:70:cc:e7:88:18:ed:5e:40:cc:00:26:68:72:
7f:bf:16:87:39:5d:b1:1c:56:c7:6f:8f:ba:5a:f7:7a:d6:43:
a8:db:6c:13:15:be:d5:d5:2b:fa:dd:d7:2b:ff:ee:1f:da:95:
51:50:23:89:fa:24:1e:cd:60:43:c0:74:4a:9f:db:fe:5d:0d:
67:d1:51:b2:61:fe:81:fb:b3:7a:9b:a3:05:da:06:69:f3:92:
ec:4b:af:62:82:85:fc:1a:b8:7e:0f:3e:d9:da:75:3f:12:01:
9d:15:7b:11:aa:34:dd:f7:26:0c:72:be:ae:73:9c:6a:84:f2:
ef:47:e1:0b:b3:1d:d3:4c:6d:fc:38:57:5c:87:1f:70:0a:07:
2c:ce:4b:36:e2:f9:ea:96:b6:c3:93:2c:41:ba:57:89:38:06:
0a:43:37:3f:73:2e:6a:b7:0e:1e:78:da:e3:d2:71:da:57:c2:
a8:64:e3:63:2f:30:7a:63:ef:19:2e:15:f2:42:f7:08:fb:af:
8d:2e:f7:d8:26:64:b4:36:47:0b:a2:3a:15:c6:e2:33:4d:e7:
37:2f:2b:22:d3:07:51:2c:80:3f:38:9b:bc:db:eb:10:e6:d4:
f1:4c:f3:4a:d7:e3:bc:4e:a2:dc:21:20:9f:82:0d:d8:a2:2f:
c9:33:79:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 5 01:21:05 2024 by rpki-client on console-ams.rpki-client.org