Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/9C90219CCC8411EF89000275C4F9AE02.roa
File: 9C90219CCC8411EF89000275C4F9AE02.roa (raw, json)
Hash identifier: f0t4bT6LECkW34FDqKpLn7Rf4i6T46vK93+WgwossiY=
Subject key identifier: 10:CC:6C:D8:AC:90:72:6A:1D:BA:88:9C:F4:95:1B:54:6B:BB:D6:D2
Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Certificate serial: 041C
Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/9C90219CCC8411EF89000275C4F9AE02.roa
Signing time: Mon 06 Jan 2025 23:19:01 +0000
ROA not before: Mon 06 Jan 2025 23:19:01 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 150110
IP address blocks: 203.32.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 Jan 2025 04:40:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1052 (0x41c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918FC75
Validity
Not Before: Jan 6 23:19:01 2025 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=677c64e4-6a1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b5:b6:ed:e3:d7:75:41:61:12:d1:c3:54:90:
0a:19:23:c8:0e:a5:6e:8a:21:2e:a1:d3:37:20:a4:
81:c4:2a:c6:b8:2a:ec:f1:49:b0:35:d7:1a:e3:e1:
c7:43:39:d0:01:bd:d7:27:92:47:06:a9:6f:3e:a3:
4c:21:eb:5e:f3:7f:1d:dd:33:d6:47:a3:d2:26:dd:
a6:d7:b6:01:67:2b:24:58:28:82:2b:8b:c3:d6:c6:
bc:cc:65:86:89:7d:48:e2:5b:ec:bb:0c:1c:c2:35:
70:59:60:88:36:1c:34:4c:02:f7:74:7c:01:32:8e:
6f:23:da:14:98:b0:cf:58:3e:e9:04:85:be:4c:33:
05:5c:16:8d:c6:bc:a4:d5:32:60:01:7d:cb:58:ff:
a9:39:6a:a7:f6:b9:ad:7c:99:3c:1b:dd:09:7c:69:
46:3e:83:25:32:4c:40:ba:64:1c:fa:59:08:f0:5f:
cf:6b:b8:c4:2e:38:d6:a8:8e:71:bb:82:0d:f4:bc:
2d:18:6b:0f:01:45:83:36:a0:9d:73:f6:fb:a1:4e:
2d:54:7d:94:1f:5e:01:20:de:d0:e1:a4:6c:97:ab:
c4:cb:73:cd:b4:70:2e:06:21:0c:a9:97:e8:76:5c:
65:cb:c2:99:26:60:5a:c1:81:16:9b:64:77:e8:bf:
a5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:CC:6C:D8:AC:90:72:6A:1D:BA:88:9C:F4:95:1B:54:6B:BB:D6:D2
X509v3 Authority Key Identifier:
keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/9C90219CCC8411EF89000275C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.32.38.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:bc:37:6d:aa:5b:22:6b:7e:70:35:0c:9c:79:dc:11:ed:bf:
c1:a7:8a:16:82:0e:9f:3e:fe:b5:34:3b:f1:ec:42:56:5f:ac:
bf:10:22:32:49:7a:4c:da:d1:ff:ed:8a:b1:60:17:7e:df:c6:
d0:e1:dd:1c:6c:02:9a:ff:c2:ca:66:f9:95:97:ed:c8:0b:c9:
e3:84:ae:5e:0f:c7:02:68:e2:ff:56:fd:e7:96:a1:60:73:ef:
c8:36:1b:03:11:03:4d:d0:f5:d2:49:a1:5e:6f:02:97:c7:ce:
a1:f3:41:6b:a6:ec:e6:57:bb:9a:4d:f7:58:71:d9:ea:fc:fd:
3c:d9:c6:72:de:55:cd:4c:d6:61:d4:44:f1:73:b0:a1:5c:57:
87:c3:3c:d0:b3:2e:19:f4:22:b1:83:63:bd:b7:1e:00:f5:4b:
3e:f3:60:9a:ef:7f:99:bb:cc:4a:b1:47:36:55:b1:35:44:b1:
f8:a7:72:0d:e8:c3:80:06:3b:b3:a7:af:5e:93:d2:f2:ec:dc:
89:7b:35:77:b3:e3:23:82:cf:e2:c4:3e:9d:5a:09:01:23:48:
84:31:5b:1b:19:2d:3b:be:f5:29:b0:d2:2a:df:aa:58:ff:11:
15:a7:ef:5a:87:5c:64:10:11:59:8d:dc:04:c6:5a:ca:0b:c6:
94:30:3d:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 12:49:12 2025 by rpki-client