Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918DFCE/80AC54CABF1D11EE875AE27FC4F9AE02/1E40B554BF1F11EE9B068D82C4F9AE02.roa
File: 1E40B554BF1F11EE9B068D82C4F9AE02.roa (raw, json)
Hash identifier: LwFgi5j222ERlypECmU3d2ZOs5FHakWs8Xj0SgNTNcQ=
Subject key identifier: 81:0D:60:A2:71:3D:CF:F8:E0:AD:62:3F:62:84:24:A9:80:99:FD:E7
Certificate issuer: /CN=A918DFCE/serialNumber=1044029FF83174C6F1D66C8AD0D3FA1664EFE53B
Certificate serial: 02
Authority key identifier: 10:44:02:9F:F8:31:74:C6:F1:D6:6C:8A:D0:D3:FA:16:64:EF:E5:3B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEQCn_gxdMbx1myK0NP6FmTv5Ts.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918DFCE/80AC54CABF1D11EE875AE27FC4F9AE02/1E40B554BF1F11EE9B068D82C4F9AE02.roa
Signing time: Tue 30 Jan 2024 03:24:47 +0000
ROA not before: Tue 30 Jan 2024 03:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7545
IP address blocks: 203.12.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 04:41:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918DFCE/serialNumber=1044029FF83174C6F1D66C8AD0D3FA1664EFE53B
Validity
Not Before: Jan 30 03:24:47 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65b86bff-e164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:db:c1:f4:07:e0:fa:a7:5e:8b:ca:86:6b:51:
0c:b4:66:36:f1:ce:6a:80:84:52:6b:74:d7:65:ea:
d7:e6:9f:5d:5d:f1:f4:ba:66:da:35:e5:49:29:31:
1c:95:e1:fc:94:90:7c:77:3e:75:6f:b5:47:03:99:
50:a5:e9:25:15:39:54:0c:fd:85:78:3a:66:6e:4d:
25:c9:be:28:9f:99:4d:d6:a7:c1:6e:46:a1:bb:05:
17:7b:a0:82:42:c5:0f:f9:a6:51:ae:99:69:7e:ce:
35:38:dc:1a:07:96:fa:be:cf:c7:bf:fe:05:b3:f3:
04:6f:6a:72:ca:e6:50:05:09:61:31:eb:a7:6c:6f:
69:ad:be:32:d3:40:1d:80:4e:cd:a4:95:d8:0b:d3:
24:41:c8:06:b4:d8:27:10:66:61:6b:73:67:11:34:
34:df:f4:b9:4a:66:be:b6:15:33:62:db:8f:08:fc:
61:8f:5a:87:fd:28:6a:2c:43:1e:f1:e4:9e:15:24:
d3:54:c2:5b:03:a0:90:2a:d2:c4:96:3b:d0:40:f2:
bc:c5:3b:d3:86:56:5f:3b:01:7a:54:48:b5:5a:32:
a0:3d:9e:f9:04:3e:28:a6:78:54:2f:fc:92:93:18:
d9:7c:c3:3d:ba:5a:74:ac:2f:dd:0b:2e:5f:80:71:
68:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:0D:60:A2:71:3D:CF:F8:E0:AD:62:3F:62:84:24:A9:80:99:FD:E7
X509v3 Authority Key Identifier:
keyid:10:44:02:9F:F8:31:74:C6:F1:D6:6C:8A:D0:D3:FA:16:64:EF:E5:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918DFCE/80AC54CABF1D11EE875AE27FC4F9AE02/EEQCn_gxdMbx1myK0NP6FmTv5Ts.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEQCn_gxdMbx1myK0NP6FmTv5Ts.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DFCE/80AC54CABF1D11EE875AE27FC4F9AE02/1E40B554BF1F11EE9B068D82C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.12.31.0/24
Signature Algorithm: sha256WithRSAEncryption
82:25:26:4d:ed:e4:59:f4:f6:12:33:7b:a7:a7:25:14:b0:97:
1c:b3:76:48:14:86:0d:9d:cd:5e:d0:47:2d:a1:2e:13:6e:98:
2a:c0:df:05:38:59:df:3c:97:3a:81:5e:4b:c3:5b:9d:8c:e5:
56:a1:56:25:99:59:b4:10:82:bc:f4:e6:cc:9d:b0:87:e9:14:
7d:33:f7:a3:70:2e:0e:29:61:dc:32:6c:23:87:ee:d8:2c:6d:
09:00:b6:0b:85:78:07:33:3b:c1:a8:e8:52:72:8e:d0:e3:d2:
ef:c4:c2:7b:73:d7:18:d4:70:05:8c:b0:c4:4d:fc:ae:2d:44:
81:91:c3:29:4a:2e:31:a7:09:cd:67:af:cc:d9:0d:58:21:01:
e4:3a:7c:e2:e8:fa:34:80:d7:5a:66:e0:26:ec:01:fd:8c:ef:
a2:1b:41:e6:83:67:3d:a9:6c:09:05:22:24:ed:40:24:40:90:
6f:e9:4b:0c:05:84:eb:e9:77:9c:09:77:fa:aa:47:e8:cc:7a:
d4:30:d4:d0:4f:c3:fa:ed:2d:c3:73:8d:4a:74:7d:98:d6:28:
b7:4f:df:ee:0d:f8:98:8e:33:7e:ed:9d:d6:e8:05:eb:c3:92:
05:e7:c7:b9:f9:94:43:ba:ff:83:d2:94:22:39:31:da:01:45:
05:80:82:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:26 2024 by rpki-client on console-ams.rpki-client.org