Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A7C31AD2366311EEB376DC3AC4F9AE02.roa
File: A7C31AD2366311EEB376DC3AC4F9AE02.roa (raw, json)
Hash identifier: q3piCujO0hCu14djEZwb1eRjAgvPwjtpnIvIHxkpSh0=
Subject key identifier: 2B:D0:75:15:A9:07:E3:BD:26:37:8F:05:C5:A0:E3:40:AC:DC:B3:9B
Certificate issuer: /CN=A919536C/serialNumber=488970506264EF96D81EC12E6ABD256DB30FDCFA
Certificate serial: C9
Authority key identifier: 48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A7C31AD2366311EEB376DC3AC4F9AE02.roa
Signing time: Tue 25 Jun 2024 06:22:16 +0000
ROA not before: Tue 25 Jun 2024 06:22:16 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 138422
IP address blocks: 119.110.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Nov 2024 16:18:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201 (0xc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919536C
Validity
Not Before: Jun 25 06:22:16 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=667a6218-9d74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:93:12:a5:8e:4b:6b:32:3b:52:b5:41:51:ee:
8d:0a:0b:f7:c5:3b:fe:1a:f7:29:6f:c7:52:77:0d:
76:e0:5e:96:f3:09:6a:ec:97:c9:3b:9b:7f:b0:80:
1b:c8:0a:5c:df:b5:ee:34:a8:d0:b8:f0:c8:36:8a:
02:c6:f4:04:b4:57:ef:85:ee:5f:de:94:42:1c:68:
20:f7:13:d9:09:a7:53:3c:2a:13:60:1d:d7:4f:01:
0e:61:55:3a:49:20:ce:f7:44:fd:e0:d0:a0:31:5c:
44:d4:4f:af:6a:6f:8b:c3:95:2f:2d:99:c7:7b:f0:
58:6f:da:d6:f0:4f:4e:2f:15:f6:d1:6b:71:60:b0:
e2:b3:e1:d5:24:ab:93:86:80:8c:e3:54:ee:d1:2d:
a3:4c:21:1c:48:8f:2a:64:67:a5:06:16:5f:42:50:
d1:8e:a7:3e:2e:23:ad:75:89:97:79:6c:25:99:6a:
3c:df:bf:50:38:e6:c4:5f:bf:2e:8d:96:59:a4:27:
19:e0:4a:da:39:12:d2:5d:51:ef:36:d7:4e:65:6d:
0d:40:8d:59:ca:de:cd:bb:67:00:15:d1:61:88:b3:
8a:de:4f:1f:e5:9f:7a:41:6d:26:5d:32:92:33:48:
45:d8:c8:a4:4c:76:a1:02:78:62:e2:5a:ca:69:a1:
93:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D0:75:15:A9:07:E3:BD:26:37:8F:05:C5:A0:E3:40:AC:DC:B3:9B
X509v3 Authority Key Identifier:
keyid:48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A7C31AD2366311EEB376DC3AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
119.110.215.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:15:2a:ce:21:3f:91:03:0b:35:79:80:02:05:39:e3:f3:3d:
34:80:83:b0:b1:74:56:6a:26:86:fb:13:56:db:54:82:d4:44:
49:b5:5b:4f:c8:b9:33:c2:e5:c2:f1:59:f1:aa:51:39:8c:31:
35:62:63:09:d3:ed:1b:74:6b:14:62:23:5e:e3:5b:48:c9:fc:
c0:0e:29:1b:7b:24:01:e5:a7:7a:d9:14:99:90:d6:13:63:c4:
ff:d9:df:f5:9f:39:7b:e2:2f:f9:70:03:ff:ba:8f:02:a5:df:
ec:7b:3d:90:38:49:92:3e:08:53:47:5d:1a:2f:a6:b8:12:7a:
5b:86:49:83:74:33:6c:50:70:68:71:62:2e:50:bb:be:a1:8b:
28:e7:4b:ef:b6:49:e9:a6:82:27:f0:cb:07:6c:0b:98:6c:19:
d3:61:fc:17:09:c5:1d:a9:6f:7f:33:69:4d:82:00:75:33:e6:
b2:4e:ab:5b:12:60:63:21:da:23:b4:1e:85:45:d2:eb:30:7f:
d3:a2:54:f7:04:bc:83:d4:0e:11:a7:d7:a8:13:9f:09:79:10:
73:b7:55:f9:18:cf:5d:a9:10:26:f4:0f:50:38:d1:ad:1d:99:
87:5e:78:64:e5:68:e1:79:34:e6:7a:28:74:24:8d:67:78:11:
1b:27:7c:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 21:50:04 2025 by rpki-client