Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/3947159E795711EFB3994A4DC4F9AE02.roa
File: 3947159E795711EFB3994A4DC4F9AE02.roa (raw, json)
Hash identifier: Uv+DXgcXNjO/zOC898gF/M+9XdoVSpcTsz5lNNNHmwM=
Subject key identifier: 3B:5B:5F:FC:D7:2E:7B:D8:CB:46:A8:8A:1E:7B:DC:19:64:06:20:31
Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12
Certificate serial: 0301
Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/3947159E795711EFB3994A4DC4F9AE02.roa
Signing time: Mon 23 Sep 2024 02:55:00 +0000
ROA not before: Mon 23 Sep 2024 02:55:00 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 151872
IP address blocks: 157.66.12.0/24 maxlen: 24
157.66.98.0/24 maxlen: 24
157.66.99.0/24 maxlen: 24
157.66.198.0/23 maxlen: 23
157.66.220.0/24 maxlen: 24
157.66.221.0/24 maxlen: 24
160.22.74.0/23 maxlen: 24
160.22.80.0/24 maxlen: 24
160.22.81.0/24 maxlen: 24
160.22.118.0/24 maxlen: 24
160.22.119.0/24 maxlen: 24
160.22.170.0/24 maxlen: 24
160.22.171.0/24 maxlen: 24
160.30.10.0/24 maxlen: 24
160.30.11.0/24 maxlen: 24
160.30.22.0/24 maxlen: 24
160.30.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 06:55:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 769 (0x301)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12
Validity
Not Before: Sep 23 02:55:00 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66f0d884-6d32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:df:8c:58:1d:83:b2:a1:ba:e1:2b:eb:bb:26:
56:1e:13:6a:ff:02:66:19:8a:f8:83:95:ea:d3:5d:
5b:c6:ac:32:27:9b:0d:10:5a:1a:19:c3:5f:5e:67:
28:1e:17:2e:8a:5d:6a:b4:f1:f5:58:90:59:80:42:
49:63:ba:29:ca:fa:fb:56:e3:22:3d:e3:75:9e:6f:
09:a2:3b:81:2b:4d:2e:50:74:35:fe:c6:06:d9:30:
01:21:30:bc:76:e1:02:a7:f3:95:a5:44:05:bc:fb:
ea:df:1e:f7:3c:f7:95:a1:ab:66:59:13:81:7d:f6:
aa:5f:10:11:bc:1f:19:a8:1f:82:fe:c3:d5:aa:4e:
6b:41:ae:4a:1c:bb:1d:64:a8:3d:72:21:1e:a2:28:
2f:36:34:1b:af:83:a5:94:17:21:a8:74:d9:be:58:
a3:b6:d8:d9:a9:66:14:19:68:e6:ed:d9:e0:2e:14:
ec:73:1a:ae:9e:d9:73:7e:51:dc:dc:b9:90:87:cf:
ed:24:77:76:48:ff:e2:43:72:7a:e7:1c:8f:52:82:
df:8c:f6:e1:ae:27:8a:de:80:1e:48:c6:21:fd:fd:
e7:87:93:66:84:5d:1e:fb:fc:27:94:9c:4f:33:14:
22:f3:ad:9a:f6:a8:7e:11:d9:11:f7:7e:74:b8:2b:
e5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:5B:5F:FC:D7:2E:7B:D8:CB:46:A8:8A:1E:7B:DC:19:64:06:20:31
X509v3 Authority Key Identifier:
keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/3947159E795711EFB3994A4DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.66.12.0/24
157.66.98.0/23
157.66.198.0/23
157.66.220.0/23
160.22.74.0/23
160.22.80.0/23
160.22.118.0/23
160.22.170.0/23
160.30.10.0/23
160.30.22.0/23
Signature Algorithm: sha256WithRSAEncryption
81:fd:97:8b:aa:07:b5:14:a9:c1:1f:a6:cd:47:4b:9a:90:a4:
cb:be:13:ad:32:db:65:eb:10:8e:cc:14:2e:5c:15:cf:9a:b7:
56:3e:b2:a8:68:31:77:42:15:db:8d:9a:bb:b1:81:dd:c0:27:
0a:e0:49:4f:fa:a8:cb:45:4c:43:e8:d1:04:36:e8:3d:6d:e7:
3a:d7:a7:f8:3e:d1:2e:23:f3:34:fa:8e:d6:75:a2:67:f1:d7:
a4:d0:e8:12:9b:95:c0:c1:ad:c7:48:03:a8:b5:b9:e2:18:c4:
34:09:f2:0b:e3:03:a9:33:da:d9:c8:41:c8:7c:b1:dc:c8:7a:
7d:5a:5f:18:2d:16:91:43:35:9d:cf:20:f8:40:84:5c:62:f7:
f1:5a:5b:0d:50:2c:96:3c:c0:d1:b0:ff:88:68:21:30:c9:5a:
3d:e0:52:f0:2a:ce:78:fd:75:17:a8:db:78:08:7e:55:10:8e:
5e:78:28:b8:60:6d:4e:d1:8b:24:a1:bb:a8:b2:7e:af:e7:6e:
92:8c:67:99:ab:63:70:13:3e:6e:4c:3c:01:c7:c1:52:47:ae:
69:b4:c3:9a:84:09:a5:c2:d0:2e:87:cd:33:cb:fe:62:52:bd:
87:ea:1d:01:88:6f:7c:87:2a:91:2f:b4:e6:0b:81:c0:ff:10:
5f:4d:6d:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 09:16:09 2024 by rpki-client on console-fra.rpki-client.org