Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918C287/861FD87AF5AA11ECBF15E774C4F9AE02/8877EAB2210B11EEAD964232C4F9AE02.roa
File: 8877EAB2210B11EEAD964232C4F9AE02.roa (raw, json)
Hash identifier: J4uCunjdBETEWplOBloay5TzXWUj8MrmhO+G9Ll4Rpk=
Subject key identifier: 6E:C1:B6:AA:9A:0E:D4:DA:62:DD:26:1C:71:14:78:05:4E:F4:E4:F2
Certificate issuer: /CN=A918C287/serialNumber=847014B15AFA781D228192BE054153DB6667D576
Certificate serial: 0175
Authority key identifier: 84:70:14:B1:5A:FA:78:1D:22:81:92:BE:05:41:53:DB:66:67:D5:76
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHAUsVr6eB0igZK-BUFT22Zn1XY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918C287/861FD87AF5AA11ECBF15E774C4F9AE02/8877EAB2210B11EEAD964232C4F9AE02.roa
Signing time: Wed 12 Jul 2023 23:26:31 +0000
ROA not before: Wed 12 Jul 2023 23:26:31 +0000
ROA not after: Sat 01 May 2038 00:00:00 +0000
asID: 123123123
IP address blocks: 203.176.189.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 373 (0x175)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918C287/serialNumber=847014B15AFA781D228192BE054153DB6667D576
Validity
Not Before: Jul 12 23:26:31 2023 GMT
Not After : May 1 00:00:00 2038 GMT
Subject: CN=64af36a7-a0bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5b:6c:f9:26:78:dd:63:10:80:8e:ac:22:b3:
c8:78:21:14:9b:b2:80:19:71:16:7e:20:7b:61:33:
62:4f:98:84:23:6c:73:a3:37:9c:ea:c7:91:66:60:
1c:cb:2c:f9:16:cd:aa:3c:ef:48:0c:6e:3c:b0:dc:
b7:9d:08:1b:13:c5:21:4d:8d:f0:5b:83:74:d8:a0:
bb:0a:67:d9:ed:0f:bb:b1:1c:6b:14:6a:17:46:bb:
92:5f:34:49:0b:cb:95:e7:a1:56:52:9a:76:73:d2:
84:1b:66:c5:86:68:13:41:e8:bc:70:3e:49:1d:e1:
28:9f:df:5b:4a:47:f6:2f:82:f3:45:8d:71:fb:5c:
b3:65:e7:fa:fe:b6:c5:ce:20:e8:4a:54:2b:81:18:
a0:2e:66:b6:93:a9:10:9b:ed:80:46:6d:46:17:7d:
68:08:7b:6b:2a:1b:01:ba:22:88:59:d7:0e:fb:7a:
52:12:7f:35:1a:4c:95:2d:44:d2:09:c5:61:ef:52:
13:31:e3:1d:0d:4d:32:ea:2b:a1:86:9a:39:b0:df:
a0:35:49:e5:a8:da:92:66:a9:2b:59:11:a3:0b:ab:
b6:74:a5:d6:e8:22:e6:e1:29:94:fb:9a:8c:5b:38:
a9:a4:45:ff:89:88:bf:a6:66:ee:b5:9d:28:25:0d:
7b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:C1:B6:AA:9A:0E:D4:DA:62:DD:26:1C:71:14:78:05:4E:F4:E4:F2
X509v3 Authority Key Identifier:
keyid:84:70:14:B1:5A:FA:78:1D:22:81:92:BE:05:41:53:DB:66:67:D5:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918C287/861FD87AF5AA11ECBF15E774C4F9AE02/hHAUsVr6eB0igZK-BUFT22Zn1XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHAUsVr6eB0igZK-BUFT22Zn1XY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C287/861FD87AF5AA11ECBF15E774C4F9AE02/8877EAB2210B11EEAD964232C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.176.189.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:65:a0:32:ba:7a:cd:2d:5d:97:39:cd:3b:7e:eb:ff:8e:93:
12:54:77:03:2c:94:fe:6a:d0:5f:33:50:5b:97:fb:56:8f:b1:
af:ef:1f:9a:c3:36:ed:8e:47:a1:2a:8f:b0:66:32:b0:72:99:
9f:50:77:d9:16:5c:d7:f0:1c:1f:72:89:e6:3c:25:90:15:2d:
96:23:f7:af:57:e6:70:07:b7:42:58:36:f6:34:54:5c:25:a1:
80:ba:f7:c8:55:fb:2a:7f:1c:f2:29:83:5a:36:39:9b:0b:e4:
ad:b4:2e:19:1d:e8:20:95:de:5a:88:c1:d6:7f:fa:34:eb:48:
a5:7c:d5:3a:89:a9:35:8a:e6:5a:34:74:00:72:23:ba:74:09:
2e:23:e9:8d:b8:2e:1c:c1:1a:a5:fd:db:77:e3:bd:b2:3e:a8:
63:b7:de:6f:2a:f6:65:ca:aa:06:d8:52:c2:84:da:e3:eb:7c:
0a:e8:c5:b8:d7:59:6a:04:ca:19:e1:fc:92:d0:d8:b4:34:f2:
5f:92:c1:d0:d4:f2:52:37:72:c0:7e:56:07:47:ef:9d:de:af:
92:5d:7c:81:a2:89:6e:aa:a6:eb:7d:42:28:65:2d:8a:a5:30:
fd:dd:05:a0:dc:3d:05:2c:0c:df:1b:19:a0:a5:58:60:79:74:
ab:60:bf:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:47 2023 by rpki-client on console-ams.rpki-client.org