Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/A2AA1BF40F8B11ED903B0769C4F9AE02.roa
File: A2AA1BF40F8B11ED903B0769C4F9AE02.roa (raw, json)
Hash identifier: 8tBLPOHvz4q1T1Fwc248c1/bhjSZaT7x0fBMx3hb1/A=
Subject key identifier: 7B:7F:9F:95:A0:04:6E:50:E7:C7:F8:9A:E5:E0:82:A4:23:EC:7F:DB
Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Certificate serial: 93
Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/A2AA1BF40F8B11ED903B0769C4F9AE02.roa
Signing time: Fri 29 Jul 2022 22:13:12 +0000
ROA not before: Fri 29 Jul 2022 22:13:12 +0000
ROA not after: Thu 31 Aug 2023 00:00:00 +0000
asID: 9443
IP address blocks: 203.32.21.0/24 maxlen: 24
203.32.22.0/23 maxlen: 23
203.32.22.0/24 maxlen: 24
203.32.23.0/24 maxlen: 24
203.32.25.0/24 maxlen: 24
203.32.28.0/24 maxlen: 24
203.32.30.0/23 maxlen: 23
203.32.30.0/24 maxlen: 24
203.32.31.0/24 maxlen: 24
203.32.32.0/24 maxlen: 24
203.32.38.0/24 maxlen: 24
203.32.40.0/23 maxlen: 23
203.32.40.0/24 maxlen: 24
203.32.41.0/24 maxlen: 24
203.34.26.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147 (0x93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D
Validity
Not Before: Jul 29 22:13:12 2022 GMT
Not After : Aug 31 00:00:00 2023 GMT
Subject: CN=62e45b78-dab6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:2d:55:1c:ad:b8:26:65:eb:9c:fd:16:90:fd:
fe:b3:5e:4e:77:fd:49:9b:0e:bf:f6:d3:32:5f:42:
f3:d4:5f:69:c9:de:52:83:58:5c:19:a9:1b:20:2b:
c6:f4:d5:d8:33:5c:39:f9:73:2d:14:b4:ab:9e:11:
38:2c:78:60:f1:cc:a3:69:e8:d0:56:43:48:2a:59:
a7:10:a4:0a:82:56:47:a6:e4:af:6f:aa:e6:0b:78:
79:d5:a6:01:e5:aa:dd:81:55:b7:65:b9:b1:7b:d0:
09:89:77:95:c4:1a:e8:b2:92:be:68:24:2c:16:a0:
99:8e:ce:96:ec:7f:8e:cb:86:56:15:af:0f:c8:46:
0c:a0:ba:a2:d2:c1:46:0b:8a:c9:94:da:89:c8:15:
4b:9f:50:3b:ba:41:6d:02:f0:6b:4f:2d:80:36:9d:
58:5e:d3:a7:93:0a:a5:5e:c1:f9:96:e0:42:d2:6b:
34:e5:29:c3:3e:61:41:fb:7c:90:89:c4:b9:91:30:
87:da:e4:27:ec:49:06:d3:2d:69:b3:44:f2:81:6c:
50:ae:17:ac:e6:16:a6:93:2f:3f:bd:4a:c6:50:35:
70:55:b2:7b:a3:32:71:36:13:b4:ac:da:dc:ab:67:
78:cc:9d:b9:6d:fb:ee:6e:6a:91:b2:7b:33:f2:68:
b1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:7F:9F:95:A0:04:6E:50:E7:C7:F8:9A:E5:E0:82:A4:23:EC:7F:DB
X509v3 Authority Key Identifier:
keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/A2AA1BF40F8B11ED903B0769C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.32.21.0-203.32.23.255
203.32.25.0/24
203.32.28.0/24
203.32.30.0-203.32.32.255
203.32.38.0/24
203.32.40.0/23
203.34.26.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:27:9c:f2:da:4e:d1:49:03:83:a1:b8:fd:a7:44:81:b5:a2:
b5:aa:7b:c5:0b:d0:e8:d5:a9:70:58:86:06:45:c0:18:6e:10:
e5:69:ec:65:d9:30:ef:b0:15:b3:af:62:c6:1a:23:d3:00:aa:
d6:69:8a:66:da:b3:ce:bf:75:0f:b0:7b:fe:4f:1e:a9:09:38:
15:90:66:4e:eb:39:dd:b0:2a:30:10:ad:78:b4:4f:44:0f:cd:
61:fd:c9:fb:73:fb:4b:34:a0:54:88:ce:ad:52:e8:75:fc:ba:
dd:cf:bc:ce:1c:04:c7:c5:08:e6:ae:b4:4e:8a:7a:b6:57:e3:
e3:bd:b7:14:7d:59:03:66:0a:9a:ff:6e:7b:c5:87:56:5e:7a:
6b:c2:06:43:30:7c:35:90:9e:ac:74:00:d0:52:7d:9d:c7:d9:
99:9d:5d:38:0e:87:48:2f:a8:53:7d:4e:cd:ca:f2:15:2b:84:
c8:f7:3e:25:ae:2c:34:72:5a:dc:44:fd:c9:7f:23:e5:76:a2:
4b:53:06:48:f9:ad:ad:c3:6b:cc:40:a5:16:1d:ed:bb:d1:12:
fd:4c:a5:74:14:15:51:b8:90:7f:fb:a2:73:2e:92:1c:0e:84:
39:8f:3c:e5:5e:b2:16:d5:c0:e9:a0:6c:a4:47:e3:67:1d:55:
e0:ef:9a:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:56 2023 by rpki-client on console-ams.rpki-client.org