Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/272E95469BDD11EAA977C354C4F9AE02.roa
File: 272E95469BDD11EAA977C354C4F9AE02.roa (raw, json)
Hash identifier: pX90Bi9L86T2QPWDnLl4En4zB6ZmM52b9FOWQh47a0A=
Subject key identifier: 45:CA:32:D7:EB:28:9D:E7:73:62:13:03:BD:1E:CB:B2:BA:88:DE:C4
Certificate issuer: /CN=A919AB89/serialNumber=947EFD1BF6F93A98DFEBC153DAB0DA77CC4028C7
Certificate serial: 0820
Authority key identifier: 94:7E:FD:1B:F6:F9:3A:98:DF:EB:C1:53:DA:B0:DA:77:CC:40:28:C7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lH79G_b5Opjf68FT2rDad8xAKMc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/272E95469BDD11EAA977C354C4F9AE02.roa
Signing time: Thu 28 Sep 2023 21:18:27 +0000
ROA not before: Thu 28 Sep 2023 21:18:27 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 24226
IP address blocks: 202.160.115.0/24 maxlen: 24
202.160.117.0/24 maxlen: 24
202.160.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Aug 2024 02:17:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2080 (0x820)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919AB89/serialNumber=947EFD1BF6F93A98DFEBC153DAB0DA77CC4028C7
Validity
Not Before: Sep 28 21:18:27 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=6515eda3-a8d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b0:07:5d:cc:d9:03:d7:aa:3e:2e:fc:9a:e5:
a9:47:92:8d:3d:c1:f8:6e:7d:fe:3b:a3:0e:35:68:
1c:fb:57:6c:e8:9e:75:19:9b:e3:dd:9d:36:70:3e:
c8:0d:ed:7e:53:38:d5:38:23:b8:98:be:9d:1c:8b:
f4:aa:b4:27:e3:fc:81:f8:e0:20:80:b9:ff:7a:26:
f8:53:c8:29:4a:a0:ee:47:69:83:ed:fe:7a:77:bd:
50:f7:93:39:8b:ee:71:c2:2c:28:bc:87:a5:28:74:
7e:28:71:f5:e3:ce:96:07:6d:3f:8b:31:df:bd:03:
e0:56:22:8e:8e:40:18:e4:d7:88:12:7f:b3:c8:45:
36:9b:33:2b:36:6c:a9:c2:1a:5d:7d:6f:c3:e7:8e:
18:fa:42:7d:14:15:e7:85:3b:af:f5:52:ba:32:31:
d9:8b:65:d3:6d:a9:e7:60:fd:d7:49:d2:b8:22:2e:
ba:0b:c6:a2:17:d0:4d:1a:9d:1d:36:2e:a7:d9:f0:
a3:a4:bc:e4:00:4c:27:52:b1:7e:e9:87:05:a3:9c:
5b:86:d9:38:a7:00:72:9c:3a:d0:e1:da:dd:fc:fe:
a4:d2:b9:5a:27:42:2d:6f:65:f7:bd:82:e5:80:d1:
8d:f4:39:3e:69:69:69:52:c0:cd:a0:e0:cd:ed:e3:
0e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:CA:32:D7:EB:28:9D:E7:73:62:13:03:BD:1E:CB:B2:BA:88:DE:C4
X509v3 Authority Key Identifier:
keyid:94:7E:FD:1B:F6:F9:3A:98:DF:EB:C1:53:DA:B0:DA:77:CC:40:28:C7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/lH79G_b5Opjf68FT2rDad8xAKMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lH79G_b5Opjf68FT2rDad8xAKMc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/272E95469BDD11EAA977C354C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.160.115.0/24
202.160.117.0/24
202.160.119.0/24
Signature Algorithm: sha256WithRSAEncryption
31:55:dc:c2:20:f5:bc:9a:32:6f:58:87:06:f5:e9:86:93:93:
ee:a6:f9:0d:15:11:0c:28:92:bf:08:a1:27:11:07:3c:5a:6b:
b2:ea:82:16:b4:c1:56:89:b2:49:21:ce:a8:4e:c7:1a:1f:b6:
cc:4d:11:8e:23:d1:08:46:ca:de:4a:c9:f9:9b:92:b4:31:e1:
83:35:ff:77:1d:e9:a9:12:12:6d:bb:c0:02:2b:3e:f7:66:f6:
0b:a4:bb:1c:9a:c9:a6:e5:d2:1d:b0:31:9c:39:de:22:44:82:
39:a6:ae:c3:97:19:69:ae:89:ff:0c:2e:43:49:ff:e4:92:73:
b4:c6:f5:30:50:55:17:66:7f:55:73:07:8f:b5:4d:9a:e6:3d:
f5:9b:8b:75:86:87:6a:c4:37:4c:5e:37:e2:48:bd:7a:f6:3c:
c5:dd:d2:71:8f:84:85:73:27:42:21:6b:54:58:9d:3e:15:5d:
29:6f:d1:5c:b7:c9:7a:02:67:12:8d:ba:f7:01:d7:49:42:ad:
20:dc:f6:99:f5:1b:59:49:07:26:19:8f:f9:de:a4:3b:a5:eb:
a8:0a:b3:bd:b6:f5:0a:7a:df:e9:70:bf:14:1f:cc:b5:17:fc:
97:d8:76:fe:d1:91:69:a7:2b:45:d1:17:dc:8e:66:c4:82:16:
21:f4:67:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 20 06:00:10 2024 by rpki-client on console-ams.rpki-client.org