Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/FDBE645CB53211EEADD0164EC4F9AE02.roa
File: FDBE645CB53211EEADD0164EC4F9AE02.roa (raw, json)
Hash identifier: kWesY/bUhANOTXrbpSCahLPNNxuKN3xTqLC0xbDVcE4=
Subject key identifier: F9:52:2C:7A:84:02:F3:AA:AF:FB:82:14:87:FE:61:17:2F:7D:F6:74
Certificate issuer: /CN=A919E9A5/serialNumber=7AAC67DBC1EB928E2951362E0BC6AC7677E2DC7B
Certificate serial: 33B9
Authority key identifier: 7A:AC:67:DB:C1:EB:92:8E:29:51:36:2E:0B:C6:AC:76:77:E2:DC:7B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/FDBE645CB53211EEADD0164EC4F9AE02.roa
Signing time: Wed 17 Jan 2024 12:23:35 +0000
ROA not before: Wed 17 Jan 2024 12:23:35 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 23923
IP address blocks: 116.68.192.0/20 maxlen: 24
119.148.0.0/18 maxlen: 23
119.148.0.0/20 maxlen: 24
119.148.16.0/22 maxlen: 24
119.148.20.0/24 maxlen: 24
119.148.23.0/24 maxlen: 24
119.148.24.0/21 maxlen: 24
119.148.32.0/19 maxlen: 24
182.252.64.0/20 maxlen: 24
182.252.80.0/21 maxlen: 24
182.252.88.0/22 maxlen: 24
182.252.92.0/24 maxlen: 24
182.252.96.0/19 maxlen: 24
202.53.160.0/20 maxlen: 24
2401:9c00::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 14 Mar 2024 16:35:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13241 (0x33b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919E9A5/serialNumber=7AAC67DBC1EB928E2951362E0BC6AC7677E2DC7B
Validity
Not Before: Jan 17 12:23:35 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=65a7c6c7-bf8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fe:eb:37:94:fd:34:c5:a5:98:60:21:ec:20:
38:b9:7a:4b:68:35:cf:a4:84:3a:93:65:f4:70:e7:
2c:f6:21:7a:d5:16:1a:b1:7a:78:39:5c:44:da:b5:
92:c4:4e:65:e1:d3:0b:df:90:95:90:48:5a:d2:a0:
87:34:e2:8b:84:21:2b:fa:ec:38:05:ec:e3:51:02:
ab:86:7a:4d:1b:01:d1:07:ed:0f:7e:a2:d1:0b:01:
e0:6d:8b:02:f1:b0:9c:7f:5f:6c:2b:90:a0:a8:b7:
ee:3b:62:7e:64:52:c7:59:18:c6:f5:e3:01:ad:d6:
cd:6d:fc:89:13:db:1e:6b:ca:0f:7a:78:d2:88:55:
86:90:2b:3b:e2:a6:3a:1d:b0:88:dd:f4:e6:a6:67:
ec:56:40:79:c1:69:60:2a:4f:51:30:96:14:18:89:
4e:fe:34:77:cf:a1:60:d1:7e:fe:bc:34:91:b3:fe:
0d:c2:bd:13:ed:18:04:38:bc:89:8f:d0:7d:ff:c3:
27:d1:98:a4:a3:a3:b9:22:61:20:c7:2a:b8:4d:69:
9c:78:b7:45:41:df:58:4b:46:22:f6:5a:ef:6f:0b:
ec:bf:7d:1c:4f:ca:57:2e:1b:c0:9e:17:03:40:23:
f5:5f:06:d7:4f:3b:ac:67:fe:6a:d3:e8:3d:43:10:
8b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:52:2C:7A:84:02:F3:AA:AF:FB:82:14:87:FE:61:17:2F:7D:F6:74
X509v3 Authority Key Identifier:
keyid:7A:AC:67:DB:C1:EB:92:8E:29:51:36:2E:0B:C6:AC:76:77:E2:DC:7B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/FDBE645CB53211EEADD0164EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
116.68.192.0/20
119.148.0.0/18
182.252.64.0-182.252.92.255
182.252.96.0/19
202.53.160.0/20
IPv6:
2401:9c00::/32
Signature Algorithm: sha256WithRSAEncryption
92:41:6a:48:64:1f:51:70:60:5c:09:fb:88:f1:62:36:35:70:
85:f5:db:e5:8f:db:a9:5e:66:7d:b6:c8:e6:7a:de:df:f1:d0:
d7:c2:ec:0f:00:00:5a:f0:cf:3d:f4:51:f1:14:7b:32:63:0d:
47:ea:be:40:30:1c:67:02:c9:df:e2:55:1f:0e:30:f8:92:c5:
d9:50:f4:77:d4:6c:2d:4b:bc:4b:b0:49:8b:71:cd:3c:05:2a:
cf:b8:93:6c:f9:44:3b:7a:4f:db:eb:14:b2:02:71:a1:14:54:
c9:77:8a:5a:ae:58:bc:a8:93:a4:51:1b:ad:bf:ef:8c:c3:f0:
77:bf:cd:13:a5:c3:72:01:03:b8:de:a5:9e:c2:0f:6f:67:ea:
13:62:0e:56:53:a3:06:17:4f:d5:f6:bb:88:a8:28:c4:8f:4e:
48:57:da:99:9a:71:b3:52:2a:18:07:8d:34:b7:7e:25:6c:f6:
e3:6a:60:82:0e:72:7c:c8:33:ea:82:95:06:86:b3:50:d3:eb:
c4:0f:e3:03:0c:da:a2:23:b0:d2:1b:70:14:b7:59:48:28:a5:
b4:2d:51:04:87:ca:3f:1c:22:b3:00:f8:a1:1e:83:59:8b:d0:
18:32:41:99:7f:0e:ca:7d:82:f7:e9:c4:c4:0b:bf:38:b6:eb:
a3:58:83:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:49 2024 by rpki-client on console-ams.rpki-client.org