Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918C287/68D88184248511EF94236572C4F9AE02/7F88C3F659E311EFBBFEA160C4F9AE02.roa
File: 7F88C3F659E311EFBBFEA160C4F9AE02.roa (raw, json)
Hash identifier: AwCIu8OY+Mwe4QtoYsyn2yMm0bPcM96RfiCumvofhmQ=
Subject key identifier: 24:9E:FE:6F:2A:25:A9:23:4F:07:2C:73:1C:28:B7:28:29:1E:FD:77
Certificate issuer: /CN=A918C287/serialNumber=4239117A25582D0067DE4D0CEDA5ABA5CC7E3569
Certificate serial: 24
Authority key identifier: 42:39:11:7A:25:58:2D:00:67:DE:4D:0C:ED:A5:AB:A5:CC:7E:35:69
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QjkReiVYLQBn3k0M7aWrpcx-NWk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918C287/68D88184248511EF94236572C4F9AE02/7F88C3F659E311EFBBFEA160C4F9AE02.roa
Signing time: Wed 14 Aug 2024 02:18:30 +0000
ROA not before: Wed 14 Aug 2024 02:18:30 +0000
ROA not after: Sat 01 May 2038 00:00:00 +0000
asID: 4608
IP address blocks: 203.176.189.0/25 maxlen: 25
203.176.189.128/25 maxlen: 25
Validation: Failed, certificate revoked on Fri 06 Sep 2024 03:53:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36 (0x24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918C287/serialNumber=4239117A25582D0067DE4D0CEDA5ABA5CC7E3569
Validity
Not Before: Aug 14 02:18:30 2024 GMT
Not After : May 1 00:00:00 2038 GMT
Subject: CN=66bc13f6-d027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:17:31:ed:28:11:de:ee:9a:91:1b:b4:4d:41:
41:a2:b8:1f:ee:f9:db:20:22:f6:18:22:5b:20:99:
2a:42:e4:78:3e:3d:54:0e:88:1a:be:a6:e3:17:dc:
ef:f7:dc:aa:9c:18:b0:23:27:3b:74:f2:f7:6a:1e:
78:12:b7:cd:d8:45:b5:77:fb:db:44:c0:27:82:6e:
1a:18:35:9b:b7:cb:41:2f:6f:49:b7:3f:a4:f2:e5:
bc:1a:bb:65:1d:e8:a1:61:cd:0c:0d:fa:08:41:e6:
5c:03:de:ce:5f:60:a4:96:98:ed:5d:25:dc:13:af:
f9:c2:41:ae:8c:89:0d:ec:09:83:5d:12:da:10:b5:
b0:3a:3a:4a:ce:4a:42:9c:33:ee:1a:77:a4:54:d8:
52:f8:4f:53:2b:fb:95:df:c0:2d:a0:43:9a:d6:aa:
98:85:d6:4c:86:ac:5e:6e:eb:8b:b5:e9:23:3b:6d:
e9:ab:d7:89:48:47:af:60:c1:aa:7c:80:f5:eb:08:
c8:59:e9:2f:04:1f:3b:c9:ec:44:f8:08:38:7c:d3:
07:f5:c2:87:1b:8b:83:45:45:ec:7a:83:ea:f8:71:
38:26:49:77:04:ec:81:a1:2c:c5:ba:70:a1:fe:0a:
55:a9:ec:4e:ca:4e:df:92:b3:ba:35:0b:71:cb:91:
3b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:9E:FE:6F:2A:25:A9:23:4F:07:2C:73:1C:28:B7:28:29:1E:FD:77
X509v3 Authority Key Identifier:
keyid:42:39:11:7A:25:58:2D:00:67:DE:4D:0C:ED:A5:AB:A5:CC:7E:35:69
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918C287/68D88184248511EF94236572C4F9AE02/QjkReiVYLQBn3k0M7aWrpcx-NWk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QjkReiVYLQBn3k0M7aWrpcx-NWk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C287/68D88184248511EF94236572C4F9AE02/7F88C3F659E311EFBBFEA160C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.176.189.0/24
Signature Algorithm: sha256WithRSAEncryption
73:90:61:b7:cd:d3:c4:9d:eb:4e:0b:4f:0c:66:fa:87:db:0a:
5f:73:db:e9:e0:07:1d:e0:17:fe:14:43:d6:39:87:f6:53:0e:
41:38:e7:19:26:04:9c:10:bd:8a:ca:57:90:ba:e3:82:ec:d1:
03:69:f6:6b:df:04:13:a2:41:5e:6e:4d:b3:44:5a:ef:03:6d:
43:95:cd:34:22:45:13:7a:07:c4:8e:52:cf:b4:ce:dd:89:ad:
70:fc:92:27:89:ef:cb:67:a5:90:c0:d3:3f:c7:6a:27:3f:1f:
18:c6:ac:ab:5e:67:56:33:78:ee:56:e1:10:4d:31:6b:1d:6f:
4e:38:e1:fb:a2:94:77:ef:3d:25:9f:0e:b9:2c:5f:c8:06:ea:
e0:f4:6d:75:cd:fc:00:97:3b:61:14:8d:3b:fc:83:75:c0:85:
1d:03:ab:5d:8d:b7:c6:73:85:e2:fe:9f:83:3b:b5:00:bd:cd:
84:50:33:77:6d:5b:63:53:cf:93:b9:43:71:8f:5d:df:8a:98:
ae:91:37:af:2a:ce:44:cc:29:fe:a4:82:0b:62:a2:5b:75:fd:
65:53:32:36:dc:8d:1a:fb:cc:3e:63:a4:a3:9f:58:9d:1e:ee:
2b:ef:5a:8d:99:38:c4:8b:f7:41:32:c9:5d:31:eb:ca:bb:33:
17:c3:87:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 6 05:11:44 2024 by rpki-client on console-ams.rpki-client.org