Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BA1E52A2007911EE99460918C4F9AE02.roa
File: BA1E52A2007911EE99460918C4F9AE02.roa (raw, json)
Hash identifier: bqkybhYbWs4wLtgM2fTk7l2W5ItSz6+s7lpGoJoxRvE=
Subject key identifier: 62:46:77:6E:AA:AE:56:6E:85:EE:5B:79:E1:D1:A1:AB:B2:D5:6E:DD
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 7326
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BA1E52A2007911EE99460918C4F9AE02.roa
Signing time: Thu 01 Jun 2023 12:42:11 +0000
ROA not before: Thu 01 Jun 2023 12:42:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 133972
IP address blocks: 192.140.228.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Feb 2024 13:04:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29478 (0x7326)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jun 1 12:42:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64789223-b5d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:7b:73:00:f9:a8:2b:c1:cd:ba:3c:5a:72:b4:
ae:ce:a6:10:b5:de:e0:33:49:b8:aa:5e:7d:98:e9:
cc:46:b4:74:58:70:4b:a3:c0:1f:52:a0:cf:78:28:
b1:2d:a4:56:09:a8:c2:b2:25:09:9d:8a:89:98:a0:
e7:1a:ec:52:d3:9a:e7:24:96:e9:14:fa:bb:44:df:
2c:99:f0:8e:02:d4:3f:01:d8:83:ca:d0:9e:a2:af:
31:85:74:1b:62:b0:38:6f:55:a3:cd:ba:8d:bd:c8:
44:06:a3:e5:f2:56:82:7e:73:04:79:0f:32:a1:f8:
2b:c6:ac:74:9e:91:60:b4:cb:88:93:e5:db:29:35:
da:62:d6:bc:af:57:7b:8d:3b:88:c8:cb:6c:eb:41:
1e:23:d1:c2:e3:92:69:88:15:2d:1d:dd:53:f7:51:
5f:b5:30:49:c7:84:23:db:03:e7:f1:72:2f:d4:ff:
44:e5:26:09:c3:d0:51:6a:d2:7d:9d:46:b5:b6:35:
e2:16:29:bb:b8:39:7d:67:c2:0f:6a:fb:ab:b9:9e:
8b:fe:aa:fa:2d:f3:94:6f:7f:70:b7:be:82:ef:a1:
48:0b:32:47:c4:a0:c5:fe:bb:7e:ae:9c:b2:8d:17:
56:89:d8:35:16:cd:93:80:bd:2b:e4:22:68:f6:71:
1e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:46:77:6E:AA:AE:56:6E:85:EE:5B:79:E1:D1:A1:AB:B2:D5:6E:DD
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/BA1E52A2007911EE99460918C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.140.228.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:34:ae:a3:58:b2:05:28:ba:80:46:f4:01:f3:fb:3c:32:28:
aa:a3:48:fd:c1:67:9e:11:03:97:f2:74:85:ff:61:06:31:19:
4d:76:f0:06:c8:94:4e:69:90:4e:8d:c2:ae:50:c6:85:c6:91:
46:c8:20:6d:1e:48:3e:64:c8:6e:81:c0:38:60:a0:c1:1a:95:
35:1a:58:a0:b4:e4:75:fd:83:05:82:20:57:72:62:e7:a2:76:
86:a6:7d:c3:f9:b8:7c:44:16:0e:52:56:c7:72:cb:2c:7b:d5:
4d:ab:59:d5:63:73:23:b0:9d:b3:10:50:53:56:1f:e7:bc:9a:
9a:ea:3d:44:ee:c7:51:45:7a:ca:81:7c:cb:c1:a1:a2:5b:da:
54:8e:66:ea:0b:8e:b6:f4:94:62:c0:56:7a:a8:b5:36:c7:1b:
9f:fd:c3:22:63:4c:6c:fa:4d:37:9f:14:4c:8e:05:01:a9:4b:
42:fd:05:b2:85:40:32:17:25:80:03:05:b6:21:50:8c:8e:e7:
17:9b:7e:0e:cf:b6:dd:82:f0:c6:7c:7f:6f:2f:80:e8:19:40:
6e:fe:a8:83:2c:b6:b1:d6:f0:fe:b8:54:a9:96:26:74:f1:90:
8c:ae:c4:81:69:54:7f:a0:5d:52:45:5d:8a:a8:0e:6f:2f:b5:
e6:91:b7:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 13 17:34:56 2024 by rpki-client on console-fra.rpki-client.org