Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/A833D0F2E1AE11EC87A73482C4F9AE02.roa
File: A833D0F2E1AE11EC87A73482C4F9AE02.roa (raw, json)
Hash identifier: bGpvGN7BJL1FiSwuN/WQ839oXffH/uanFsLYqVCFzp4=
Subject key identifier: 2B:E0:4C:3C:F9:90:4C:CB:B6:F9:0C:D6:FA:FE:37:2D:5E:50:08:C3
Certificate issuer: /CN=A91AB383/serialNumber=9C2351D45A97D71D03D6BC385B37DD9BFB80CF5E
Certificate serial: 04D8
Authority key identifier: 9C:23:51:D4:5A:97:D7:1D:03:D6:BC:38:5B:37:DD:9B:FB:80:CF:5E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nCNR1FqX1x0D1rw4Wzfdm_uAz14.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/A833D0F2E1AE11EC87A73482C4F9AE02.roa
Signing time: Wed 19 Jun 2024 02:09:02 +0000
ROA not before: Wed 19 Jun 2024 02:09:01 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 6134
IP address blocks: 182.255.44.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Oct 2024 16:12:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1240 (0x4d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AB383
Validity
Not Before: Jun 19 02:09:01 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66723dbd-663e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7d:4b:ea:4f:51:ea:70:9a:dd:48:ba:5a:18:
52:71:28:7e:15:6c:64:b5:44:fd:6b:67:ff:e4:87:
d4:5f:6c:f1:a7:6b:b2:2d:fa:76:94:cd:1a:56:55:
71:3a:ab:2d:b2:76:e0:37:93:0a:9d:34:c9:1b:af:
bf:ee:c2:e6:31:5d:6a:1e:53:70:23:b0:81:7a:40:
77:c7:e3:73:ad:96:c9:0a:a1:48:f5:a9:d7:3a:e4:
11:bb:e4:39:13:3f:5e:8e:72:ce:75:de:e9:b1:d1:
3f:a8:5e:e1:16:c0:1e:4d:1d:db:04:bd:28:ef:29:
ef:fd:93:2f:cc:23:c2:9a:ad:d7:7d:fe:bb:01:d9:
6e:a4:0f:a4:a8:c8:3c:91:6b:7e:4b:71:75:7d:8a:
94:7f:61:df:fd:bd:14:31:aa:af:b0:9f:0c:07:92:
54:b6:a5:6c:b9:bc:87:1c:9a:66:ce:a9:ae:d9:75:
af:4c:f1:14:cd:a0:82:05:35:b6:9a:3e:78:ab:c6:
7e:9c:39:d2:a5:ba:ac:ca:f1:32:27:22:0f:9c:3a:
1e:11:38:e4:e2:9b:5c:a6:05:12:54:4e:59:7f:ba:
d1:05:e8:97:de:a4:90:66:f3:e8:a9:70:66:62:f8:
47:4c:18:2b:8c:5a:a4:f8:91:83:50:a2:a7:a7:0c:
05:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:E0:4C:3C:F9:90:4C:CB:B6:F9:0C:D6:FA:FE:37:2D:5E:50:08:C3
X509v3 Authority Key Identifier:
keyid:9C:23:51:D4:5A:97:D7:1D:03:D6:BC:38:5B:37:DD:9B:FB:80:CF:5E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/nCNR1FqX1x0D1rw4Wzfdm_uAz14.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nCNR1FqX1x0D1rw4Wzfdm_uAz14.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB383/8CC2A9AADE7711EB8739EC11C4F9AE02/A833D0F2E1AE11EC87A73482C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
182.255.44.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:3d:44:64:a4:48:ef:16:49:d2:12:7c:79:89:1f:85:39:50:
93:19:5b:e2:df:83:cd:20:7e:10:ea:ee:dc:c9:58:20:75:2e:
f1:31:98:a3:d9:19:29:b3:12:8c:af:1e:79:a2:de:9e:dc:7a:
87:3a:f5:dd:4f:c9:4b:51:c5:3c:05:48:90:45:63:84:22:48:
dc:69:74:55:94:fa:03:c8:12:7c:c4:32:68:95:9e:51:83:e3:
69:86:45:5d:49:4e:e4:f4:57:16:f3:4b:6a:f6:59:47:70:98:
98:e0:44:c7:99:3e:f8:81:d4:b1:34:86:a6:7b:9c:79:73:d9:
05:63:9d:a1:42:08:81:2c:3e:f7:59:2d:1e:5a:0e:f8:84:e4:
c9:12:cc:13:79:dd:26:d5:27:a7:a2:0f:6c:ab:c6:f4:49:85:
8a:96:4f:fd:07:3a:4a:56:8c:33:5b:61:17:c6:03:17:e7:26:
27:8a:5a:5a:f7:39:15:ab:87:67:21:d8:76:9b:5c:8c:bb:e7:
e1:ee:5f:c5:12:25:d5:00:5e:ca:a2:ed:ef:67:ed:19:b0:b8:
07:6f:26:25:60:25:9b:16:d9:99:0b:e9:38:e6:07:f1:e9:7a:
8f:85:bb:d1:77:11:34:8c:54:50:16:e2:6f:60:99:24:40:49:
eb:8d:8f:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:47 2025 by rpki-client