Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/50B0D91AF36311EEB061347AC4F9AE02.roa
File: 50B0D91AF36311EEB061347AC4F9AE02.roa (raw, json)
Hash identifier: TYeICczYJ4AC9fUpSpsX/JtHfFoIMLdodz2wqTZM3wo=
Subject key identifier: 77:B6:C0:D4:4E:72:DC:ED:32:7D:42:75:2F:2B:5B:B2:BD:A2:83:03
Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12
Certificate serial: 028E
Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/50B0D91AF36311EEB061347AC4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:31:00 +0000
ROA not before: Thu 05 Sep 2024 03:31:00 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 151872
IP address blocks: 157.66.12.0/24 maxlen: 24
157.66.98.0/24 maxlen: 24
157.66.99.0/24 maxlen: 24
157.66.160.0/23 maxlen: 24
157.66.198.0/23 maxlen: 23
157.66.220.0/24 maxlen: 24
157.66.221.0/24 maxlen: 24
160.22.74.0/23 maxlen: 24
160.22.80.0/24 maxlen: 24
160.22.81.0/24 maxlen: 24
160.22.118.0/24 maxlen: 24
160.22.119.0/24 maxlen: 24
160.22.170.0/24 maxlen: 24
160.22.171.0/24 maxlen: 24
160.30.10.0/24 maxlen: 24
160.30.11.0/24 maxlen: 24
160.30.22.0/24 maxlen: 24
160.30.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Sep 2024 02:54:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 654 (0x28e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12
Validity
Not Before: Sep 5 03:31:00 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d925f3-504a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:17:ca:8d:d7:12:c5:3d:67:7b:e9:43:04:b4:
48:91:74:8b:38:80:ae:cb:a7:42:4c:60:a7:2e:72:
01:36:43:56:40:1e:6c:8b:11:a1:fa:72:0d:93:61:
9c:fe:ea:38:28:03:40:c5:de:49:0b:0d:07:f9:a5:
71:2b:e6:6f:fd:94:65:3c:0c:48:b2:64:83:bd:f2:
5c:25:b6:af:e3:74:ba:b1:7c:f2:cc:24:61:a1:f9:
9d:14:d8:48:0d:7a:fc:13:c7:13:82:38:de:4e:d4:
c3:59:bc:96:f9:6e:bf:50:b1:19:4e:00:0c:9e:a4:
21:0a:26:fa:74:7c:23:19:6c:b6:c2:9f:e6:2a:46:
1c:7e:56:53:f5:08:44:26:63:4c:36:dc:6b:6e:dc:
fa:8f:34:35:f9:13:4c:c3:f3:37:24:87:4f:9b:b9:
10:da:68:c2:a2:fe:7c:08:a5:3b:d7:2d:23:44:ed:
e0:b7:fb:39:41:02:6c:5f:74:d2:e7:ce:b0:9e:05:
22:1d:c2:1c:7b:1a:94:0e:db:50:1e:b4:7a:3d:81:
04:e0:7b:84:0c:21:09:c9:35:ef:24:f6:c5:62:13:
2b:44:da:65:45:99:f9:17:00:3b:53:ed:63:55:7e:
0c:66:12:d8:85:99:ff:ce:bd:9e:9b:a4:7b:11:4d:
8e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:B6:C0:D4:4E:72:DC:ED:32:7D:42:75:2F:2B:5B:B2:BD:A2:83:03
X509v3 Authority Key Identifier:
keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/50B0D91AF36311EEB061347AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.66.12.0/24
157.66.98.0/23
157.66.160.0/23
157.66.198.0/23
157.66.220.0/23
160.22.74.0/23
160.22.80.0/23
160.22.118.0/23
160.22.170.0/23
160.30.10.0/23
160.30.22.0/23
Signature Algorithm: sha256WithRSAEncryption
80:bb:f9:ce:be:fa:a2:08:b0:78:91:94:bf:6e:6c:9d:d3:1a:
ac:d8:a2:9b:1b:13:88:fa:0b:10:4a:8d:61:66:43:68:c0:89:
ad:51:2a:bf:d8:97:69:b0:69:49:8e:21:42:ab:7b:47:c3:12:
2e:45:d9:66:84:bf:54:db:16:e6:42:d6:02:74:4f:ea:19:22:
5c:cd:60:cf:7a:6f:29:9b:66:b3:57:f0:90:42:00:cb:c5:27:
72:8b:7d:0a:d4:de:4d:e1:6e:e4:ad:57:6a:5c:fa:5a:7f:4a:
9e:70:19:70:d0:fc:0f:d0:16:82:a6:a0:32:eb:03:c4:4d:45:
83:e6:eb:e8:04:17:85:a8:a1:bf:38:6a:de:2c:f8:6a:e1:6d:
be:95:f1:20:1f:e5:f1:f4:10:d3:d1:b4:6c:57:07:05:e2:34:
3f:a9:58:fc:17:b3:38:72:2f:76:32:b8:b8:f9:58:49:0d:40:
14:50:f2:87:b4:ec:20:54:2e:92:ed:b9:bd:da:25:d1:4c:7c:
c2:9c:c8:cc:20:d7:2b:93:74:18:d6:4f:1b:b9:c8:3c:44:7f:
dd:d4:cc:be:68:30:40:bc:32:bc:4b:44:94:42:ab:e6:b8:61:
fb:64:81:53:1c:b3:a3:ab:6a:c2:6f:00:7b:27:f3:1f:48:48:
f5:c5:b5:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 23 05:19:08 2024 by rpki-client on console-fra.rpki-client.org