Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/8233F2186F5211EFAABD5C0CC4F9AE02.roa
File: 8233F2186F5211EFAABD5C0CC4F9AE02.roa (raw, json)
Hash identifier: +P0LokN3EJNYJ6eZoJxYERoudkQz6c29ZrkMj/oYxXI=
Subject key identifier: 76:94:5B:43:9B:D6:B9:97:77:25:EC:B0:AB:48:14:D5:6F:B3:88:10
Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12
Certificate serial: 02C6
Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/8233F2186F5211EFAABD5C0CC4F9AE02.roa
Signing time: Tue 10 Sep 2024 08:56:04 +0000
ROA not before: Tue 10 Sep 2024 08:56:04 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 152982
IP address blocks: 160.30.170.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 13 Sep 2024 02:39:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 710 (0x2c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12
Validity
Not Before: Sep 10 08:56:04 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66e009a3-de3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b6:4b:8c:05:f4:5a:c4:f6:24:b1:ad:5c:cb:
cf:2c:d3:5d:05:9b:00:70:56:55:f2:2e:df:72:48:
e9:c7:12:21:8e:29:fb:f3:e3:f7:61:1e:71:a4:0d:
0d:84:40:2b:a1:22:8d:87:70:de:5b:32:c7:f3:f8:
ee:6e:ae:2e:91:f9:a8:0d:ad:06:34:a1:b4:40:de:
ab:99:20:3d:46:ca:16:61:fa:25:0e:6b:ff:fe:94:
fe:70:d9:64:68:47:b3:56:61:44:b4:7d:05:1e:18:
59:ca:f4:56:bb:76:31:6a:4a:25:d8:a2:e7:8c:c5:
8e:63:e5:54:98:26:16:0a:71:36:80:78:e3:5e:46:
e8:91:aa:48:ed:b1:98:ac:95:80:12:23:26:ce:ac:
e8:1e:1c:3f:62:82:a9:c8:2a:d1:1a:ee:df:60:02:
ec:d3:ff:6e:9e:b2:32:ea:89:cf:6c:ad:2f:8f:0a:
78:85:a1:07:07:f6:99:0f:06:56:52:c3:97:1a:3a:
6b:e4:d3:5b:6b:20:a3:40:6c:36:1b:05:5e:34:40:
9d:e6:3a:f4:f1:95:b0:91:d2:7f:ba:3b:b4:d6:d6:
1c:2b:60:99:b3:f9:ae:6a:99:19:77:cd:80:96:59:
8d:b8:1d:50:2b:3a:1e:c4:26:b6:bf:fe:e5:1c:a7:
2d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:94:5B:43:9B:D6:B9:97:77:25:EC:B0:AB:48:14:D5:6F:B3:88:10
X509v3 Authority Key Identifier:
keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/8233F2186F5211EFAABD5C0CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.170.0/23
Signature Algorithm: sha256WithRSAEncryption
84:a3:09:1b:c7:02:6e:fd:a8:71:f7:88:77:fd:d1:d4:a0:2a:
18:72:dc:a0:81:8e:ff:e3:da:54:4e:96:03:54:84:a8:c0:cd:
e3:ff:21:88:a4:f0:f9:a5:9e:89:f5:28:b2:e4:8f:3e:66:b3:
d9:a0:d0:1a:3f:14:b3:c5:16:81:d5:79:cf:7a:80:4c:27:93:
9c:de:82:4d:3b:49:6a:d5:23:ec:29:7a:6f:70:fb:30:56:e6:
35:1d:a0:6f:99:de:6f:90:71:60:da:17:bd:a2:ed:6f:a1:40:
db:ea:96:23:c4:ed:1f:48:6a:c7:39:b1:7a:05:15:65:74:f2:
ed:2d:e1:1d:f9:99:2b:0e:73:ae:c9:1c:fe:1a:56:86:b5:54:
8b:6d:15:b8:c0:6c:c9:0c:d3:ed:99:d6:e6:62:b5:e9:01:a6:
0f:e9:a3:84:8c:e5:24:a0:27:c0:cb:7d:cc:9c:1c:45:3a:cc:
42:90:96:d0:4d:d0:4c:52:e3:12:6e:2b:fb:eb:0c:68:e3:5c:
70:d7:c0:7b:4b:d9:a2:4e:3e:ab:95:5f:86:14:98:4e:1c:05:
4e:54:20:2b:ab:31:14:30:41:78:a7:3f:ac:0b:d5:43:d4:af:
58:99:74:60:fa:1f:81:52:ef:ad:4c:d0:75:93:06:f4:da:61:
08:a6:d5:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 13 05:17:41 2024 by rpki-client on console-fra.rpki-client.org