Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/07B66286E24A11EEA3478879C4F9AE02.roa
File: 07B66286E24A11EEA3478879C4F9AE02.roa (raw, json)
Hash identifier: qF4EEK/eOx7T8Rcy1eoQDalCeAmsHD6meK0KtySTD1g=
Subject key identifier: F2:1B:29:3F:E4:BA:94:2B:C8:A0:B3:86:EE:26:45:2B:50:83:27:67
Certificate issuer: /CN=A919E9A5/serialNumber=7AAC67DBC1EB928E2951362E0BC6AC7677E2DC7B
Certificate serial: 33DF
Authority key identifier: 7A:AC:67:DB:C1:EB:92:8E:29:51:36:2E:0B:C6:AC:76:77:E2:DC:7B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/07B66286E24A11EEA3478879C4F9AE02.roa
Signing time: Thu 14 Mar 2024 21:30:08 +0000
ROA not before: Thu 14 Mar 2024 21:30:08 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 23923
IP address blocks: 116.68.192.0/20 maxlen: 24
119.148.0.0/18 maxlen: 23
119.148.0.0/20 maxlen: 24
119.148.16.0/22 maxlen: 24
119.148.20.0/24 maxlen: 24
119.148.23.0/24 maxlen: 24
119.148.24.0/21 maxlen: 24
119.148.32.0/19 maxlen: 24
182.252.64.0/20 maxlen: 24
182.252.80.0/21 maxlen: 24
182.252.88.0/22 maxlen: 24
182.252.92.0/24 maxlen: 24
202.53.160.0/20 maxlen: 24
2401:9c00::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 03 Jun 2024 13:20:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13279 (0x33df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919E9A5/serialNumber=7AAC67DBC1EB928E2951362E0BC6AC7677E2DC7B
Validity
Not Before: Mar 14 21:30:08 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=65f36c60-526b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:92:30:bb:0c:df:79:48:a4:32:a8:09:cb:25:
aa:f4:fc:56:c8:3e:cd:82:9d:82:ec:33:96:48:04:
fd:9c:70:ca:eb:fa:21:47:2c:25:7e:5b:09:a5:a4:
9c:d6:05:eb:1d:4c:31:f6:77:61:d5:95:69:6e:cb:
76:61:7d:d2:c8:65:dc:ef:57:7f:5e:21:af:f3:d0:
ef:f0:64:32:f8:0b:32:49:41:2a:29:02:54:86:1a:
4c:d3:5e:76:eb:92:bb:bc:12:cf:96:fe:47:27:98:
8b:e0:fe:52:aa:aa:c3:78:61:0c:e6:e6:ae:5c:36:
78:cd:83:05:a7:c6:0c:97:f6:4d:72:c8:53:4d:1e:
43:d2:4f:5e:23:f9:bc:e1:13:c6:e3:3b:7a:37:0a:
a8:fe:ce:e6:32:4a:a3:43:22:70:26:12:d8:c4:c7:
0f:e7:62:98:46:6d:1b:a0:66:c3:57:7e:17:d1:fd:
44:87:1d:a3:9e:fa:7f:36:e6:c6:7e:81:2c:8e:3f:
fd:ce:9a:83:b4:ef:88:b7:16:2b:cc:09:a2:29:d6:
97:f2:10:8c:ab:ea:85:4b:d2:48:f4:76:71:38:a6:
51:a3:14:5d:38:59:25:95:40:8d:cf:bc:3f:b3:c7:
36:e9:fb:1e:06:d8:ba:f5:ba:63:7a:4c:63:35:f0:
58:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:1B:29:3F:E4:BA:94:2B:C8:A0:B3:86:EE:26:45:2B:50:83:27:67
X509v3 Authority Key Identifier:
keyid:7A:AC:67:DB:C1:EB:92:8E:29:51:36:2E:0B:C6:AC:76:77:E2:DC:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/07B66286E24A11EEA3478879C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
116.68.192.0/20
119.148.0.0/18
182.252.64.0-182.252.92.255
202.53.160.0/20
IPv6:
2401:9c00::/32
Signature Algorithm: sha256WithRSAEncryption
a6:fa:49:ca:ac:21:62:30:48:a2:a4:a8:ca:30:3a:ce:42:10:
4b:f4:f7:4f:f0:c5:ea:9b:3b:3e:a4:5b:11:55:31:9d:96:ad:
b4:59:8f:7b:21:e1:39:e9:c8:91:b7:c0:7c:6b:b9:75:9b:e4:
7b:ec:49:47:5e:b6:61:d4:04:97:21:99:f7:59:55:52:01:ff:
e0:eb:23:87:46:98:f2:8e:35:0f:18:e1:f7:fa:2b:86:17:c0:
06:3e:17:74:8f:75:72:5c:5d:e9:65:cb:22:42:9b:b6:16:25:
7e:83:86:f1:a0:c7:65:d9:f0:67:79:52:a0:0d:1d:2d:64:7f:
cf:cb:c3:84:86:38:af:04:2f:1b:94:c9:b9:30:d7:0d:0f:0b:
54:ba:f0:43:39:e2:3b:52:88:29:ff:04:4b:2d:33:ae:de:54:
bb:16:b2:61:b2:91:51:cb:ab:d4:9a:f5:f8:4b:37:9f:61:5a:
d5:78:51:fe:c4:98:3a:da:21:0e:35:82:e5:2d:c1:1d:e5:04:
a9:ef:30:fb:15:d1:3d:c4:37:f9:80:1b:b7:57:50:47:57:3e:
22:79:00:41:ae:1c:77:05:ee:69:e2:f5:1c:03:de:77:af:94:
a6:8d:91:37:17:6d:56:9b:25:80:96:53:96:e8:71:ae:ce:c6:
f7:3e:1f:5a
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:49 2024 by rpki-client on console-ams.rpki-client.org