Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/B1E92046300611EEB135416AC4F9AE02.roa
File: B1E92046300611EEB135416AC4F9AE02.roa (raw, json)
Hash identifier: YRlHhAvajagyM9EZIia2zljF+gvX1Gw3jzqeRO9o4w8=
Subject key identifier: 03:7F:EC:C4:F4:E5:C7:5D:36:A7:EE:4D:85:11:29:97:1D:B7:64:1E
Certificate issuer: /CN=A9197227/serialNumber=2659CED1527D2CABD8B2C53075ECCD94ED71FE98
Certificate serial: 052D
Authority key identifier: 26:59:CE:D1:52:7D:2C:AB:D8:B2:C5:30:75:EC:CD:94:ED:71:FE:98
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JlnO0VJ9LKvYssUwdezNlO1x_pg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/B1E92046300611EEB135416AC4F9AE02.roa
Signing time: Tue 01 Aug 2023 00:59:41 +0000
ROA not before: Tue 01 Aug 2023 00:59:41 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 17635
IP address blocks: 203.14.105.0/24 maxlen: 24
203.57.128.0/20 maxlen: 20
203.57.128.0/24 maxlen: 24
203.57.129.0/24 maxlen: 24
203.57.130.0/24 maxlen: 24
203.57.131.0/24 maxlen: 24
203.57.132.0/24 maxlen: 24
203.57.135.0/24 maxlen: 24
203.57.136.0/24 maxlen: 24
203.57.137.0/24 maxlen: 24
203.57.138.0/24 maxlen: 24
203.57.139.0/24 maxlen: 24
203.57.140.0/24 maxlen: 24
203.57.141.0/24 maxlen: 24
203.57.142.0/24 maxlen: 24
2406:9680::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 01 Aug 2023 01:35:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1325 (0x52d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9197227/serialNumber=2659CED1527D2CABD8B2C53075ECCD94ED71FE98
Validity
Not Before: Aug 1 00:59:41 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=64c858fd-0041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:77:f3:27:ed:14:c7:77:7d:c6:84:e1:24:51:
61:1d:ba:83:ef:e8:78:13:ac:0f:e6:05:86:a5:2f:
99:c0:a3:4d:0b:00:c9:9d:0b:86:bc:42:af:e5:9f:
a8:f6:39:b1:58:4e:a4:68:54:0e:9b:09:28:92:75:
1f:44:7f:ea:f6:d0:27:e2:cb:8d:4d:30:56:29:51:
bc:26:04:0d:d0:7d:43:29:4e:75:6d:c5:72:1b:ef:
9b:99:f4:df:4d:4a:f3:ab:26:ba:d8:c3:67:c8:20:
f2:df:78:47:15:22:68:92:39:14:73:c5:f8:e1:e2:
9b:88:2a:0e:96:cd:70:06:1e:68:67:a6:3d:ab:36:
0e:c0:af:e9:32:34:a6:7a:ae:06:05:4e:7f:03:d5:
37:00:c3:92:7b:71:1e:0d:ad:b0:82:d0:bf:d8:b8:
fe:05:2c:20:c4:8e:82:fe:45:08:a5:75:8c:13:e3:
18:bb:53:e0:b4:31:eb:c4:d0:8f:7c:6b:36:94:00:
99:f2:9e:18:8a:4c:6e:84:b9:01:6d:94:9d:d4:20:
73:62:3d:2b:98:dd:d7:75:1f:e7:50:0d:15:9c:26:
e0:78:21:71:0e:1e:9c:5d:36:3c:19:e7:00:c9:51:
a2:c6:b0:6c:9e:41:80:66:42:31:57:64:a2:5f:71:
64:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:7F:EC:C4:F4:E5:C7:5D:36:A7:EE:4D:85:11:29:97:1D:B7:64:1E
X509v3 Authority Key Identifier:
keyid:26:59:CE:D1:52:7D:2C:AB:D8:B2:C5:30:75:EC:CD:94:ED:71:FE:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/JlnO0VJ9LKvYssUwdezNlO1x_pg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JlnO0VJ9LKvYssUwdezNlO1x_pg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/B1E92046300611EEB135416AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.14.105.0/24
203.57.128.0/20
IPv6:
2406:9680::/32
Signature Algorithm: sha256WithRSAEncryption
42:b0:65:7d:92:e3:05:62:78:4a:f3:6b:91:a3:62:54:77:95:
f7:82:35:31:45:90:ea:9c:f5:0d:da:8b:71:2b:5d:bc:61:0b:
ad:51:cb:7b:81:90:eb:35:0d:9e:1a:89:f3:d5:98:79:c8:f5:
36:c7:ec:9c:53:f2:2d:25:49:c8:cd:ca:80:d3:85:14:d2:5d:
17:38:aa:05:6a:dd:83:76:e6:74:ca:bb:bd:c9:72:b4:8c:e6:
19:65:72:3f:f2:fb:c5:4a:c1:ee:a8:c4:aa:22:15:61:2a:4f:
00:f2:17:be:7f:37:4d:b7:72:ae:2a:6d:93:4d:97:a4:2d:a4:
93:66:6e:d5:5a:c3:ff:83:02:08:c3:ac:ff:c9:92:73:f4:d7:
63:44:7f:31:f8:2f:0c:95:ff:d7:8f:e4:93:2a:db:3b:53:78:
19:53:83:7b:59:91:ea:72:fc:01:79:12:55:32:9b:1f:5d:98:
38:3c:ae:0c:de:00:17:bc:e1:4a:6f:83:7c:8c:9b:b1:13:40:
af:83:76:e4:9e:79:dc:4a:59:53:01:6c:28:07:a6:3c:d6:fb:
61:ce:4d:9b:10:e4:ab:93:0e:73:56:ba:89:03:1d:9e:8f:85:
e3:5c:0b:8a:6d:06:09:b4:2a:39:4c:2a:b3:50:89:49:6a:f7:
e2:f0:7e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:48 2024 by rpki-client on console-ams.rpki-client.org