Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/2A95F77884D411ED9A812F73C4F9AE02.roa
File: 2A95F77884D411ED9A812F73C4F9AE02.roa (raw, json)
Hash identifier: uD8rYzPeRVR+npiNlIhANWlG1NUu9RL/39SCqrETGL0=
Subject key identifier: D7:1B:48:01:CE:F4:D3:05:42:89:6B:8E:7E:56:E6:2B:38:B5:8B:7E
Certificate issuer: /CN=A919FE07/serialNumber=1CDC8FF129AC561060C4720D75493FD76846C615
Certificate serial: 0AC6
Authority key identifier: 1C:DC:8F:F1:29:AC:56:10:60:C4:72:0D:75:49:3F:D7:68:46:C6:15
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNyP8SmsVhBgxHINdUk_12hGxhU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/2A95F77884D411ED9A812F73C4F9AE02.roa
Signing time: Sun 30 Jun 2024 20:22:13 +0000
ROA not before: Sun 30 Jun 2024 20:22:13 +0000
ROA not after: Wed 30 Oct 2024 00:00:00 +0000
asID: 17995
IP address blocks: 123.253.76.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jul 2024 22:47:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2758 (0xac6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919FE07/serialNumber=1CDC8FF129AC561060C4720D75493FD76846C615
Validity
Not Before: Jun 30 20:22:13 2024 GMT
Not After : Oct 30 00:00:00 2024 GMT
Subject: CN=6681be75-52ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:65:cf:21:93:fb:74:35:1c:7b:18:62:df:b6:
0c:9a:bc:c7:87:70:0c:9a:c8:9e:76:00:98:51:d0:
64:19:64:60:d5:07:ab:01:ff:9c:1d:6a:d0:d2:b5:
b7:c6:a4:07:bb:b5:0e:0e:a0:61:85:94:75:d0:ed:
ee:41:ed:09:34:df:c8:c9:1d:9a:2e:05:06:88:fc:
8f:df:98:9a:d9:df:76:10:b2:68:46:e6:48:0c:76:
d1:80:44:16:c1:59:c8:3b:b3:07:d4:ef:71:ae:f3:
03:a1:7c:cd:02:2d:79:b2:f1:74:91:b0:d5:ac:88:
eb:7a:74:2e:75:5c:1e:e9:6f:f7:02:12:14:df:0b:
ee:b2:88:b3:68:5c:35:65:a7:e8:84:39:ab:30:a9:
c3:b2:1e:a4:87:70:b8:76:48:a1:9a:81:8c:87:af:
9d:02:59:df:fd:86:80:6b:23:90:11:4a:b8:0f:2d:
41:70:ee:45:e8:3a:31:b6:e8:9c:01:0a:60:3a:50:
f8:0e:7f:88:40:ae:2b:2c:25:a8:b6:5f:61:d7:8f:
89:91:bb:06:4c:af:8b:31:94:a6:ad:bc:0e:72:df:
f6:03:04:61:06:96:17:d9:10:c1:e7:24:68:f5:39:
95:a1:3a:28:c4:5c:30:66:49:99:14:36:c8:4e:67:
85:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:1B:48:01:CE:F4:D3:05:42:89:6B:8E:7E:56:E6:2B:38:B5:8B:7E
X509v3 Authority Key Identifier:
keyid:1C:DC:8F:F1:29:AC:56:10:60:C4:72:0D:75:49:3F:D7:68:46:C6:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/HNyP8SmsVhBgxHINdUk_12hGxhU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNyP8SmsVhBgxHINdUk_12hGxhU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FE07/A16A88DA306A11EA998C8F30C4F9AE02/2A95F77884D411ED9A812F73C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
123.253.76.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:86:4f:25:79:06:13:84:01:ee:9e:41:1a:95:d0:9a:3c:80:
dd:6d:d2:6b:07:af:ec:9f:ca:93:f8:54:4e:f2:bb:22:38:b2:
ee:fe:f2:26:88:0a:29:db:6f:57:6b:17:1a:54:a5:0b:2b:36:
b3:73:0a:d9:95:cf:38:dc:03:74:1b:92:9e:b8:75:b1:df:55:
21:ce:58:11:02:95:b3:d0:2b:9e:68:6b:8c:3c:4b:7a:c3:2f:
4e:b5:6f:d5:0b:5b:ad:ac:31:d1:d7:a0:d8:99:ef:43:20:7b:
71:3c:24:ff:1d:b1:d1:bb:8b:64:d2:79:bd:66:99:87:8c:c2:
e3:41:6e:cd:3b:aa:f0:47:e1:67:a4:6a:7c:f6:c2:4a:2e:95:
b7:54:02:3b:04:4e:c1:dc:79:99:fb:b7:a3:7f:39:52:d6:bf:
ac:89:b0:6a:66:ce:6b:57:d0:6c:01:3e:9f:be:ae:98:7c:0e:
a5:4c:d4:43:85:4d:1f:f0:70:e5:ec:46:7a:3c:94:d8:f7:22:
ef:5d:3f:ee:fa:14:4f:69:ad:c0:a1:57:53:47:a1:39:d9:76:
b2:ba:bd:f7:be:34:bb:e1:1b:a2:e7:ff:de:a5:8a:7b:dc:72:
e9:11:48:88:09:02:8d:5a:5b:0e:74:13:6b:35:d1:fc:ac:25:
53:88:51:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 24 03:05:04 2024 by rpki-client on console-fra.rpki-client.org