Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE954/B1F6BCC2C14A11ED882BE329C4F9AE02/0786F24EC15311ED81A33E45C4F9AE02.roa
File: 0786F24EC15311ED81A33E45C4F9AE02.roa (raw, json)
Hash identifier: J+54IAs4FM0yALr6HWcZEQDP/t00scwRLLAP2qUgNUU=
Subject key identifier: F9:E2:25:E9:4F:DE:FF:7F:08:38:E3:7B:77:FA:76:8C:7D:66:84:45
Certificate issuer: /CN=A91AE954/serialNumber=83AC168E49FB25EB76945A0BD146EA8B57BF09CC
Certificate serial: AC
Authority key identifier: 83:AC:16:8E:49:FB:25:EB:76:94:5A:0B:D1:46:EA:8B:57:BF:09:CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g6wWjkn7Jet2lFoL0Ubqi1e_Ccw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AE954/B1F6BCC2C14A11ED882BE329C4F9AE02/0786F24EC15311ED81A33E45C4F9AE02.roa
Signing time: Mon 05 Feb 2024 04:05:35 +0000
ROA not before: Mon 05 Feb 2024 04:05:35 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 4817
IP address blocks: 210.10.0.0/20 maxlen: 20
210.10.0.0/22 maxlen: 22
210.10.0.0/24 maxlen: 24
210.10.1.0/24 maxlen: 24
210.10.2.0/24 maxlen: 24
210.10.3.0/24 maxlen: 24
210.10.4.0/22 maxlen: 22
210.10.4.0/24 maxlen: 24
210.10.5.0/24 maxlen: 24
210.10.6.0/24 maxlen: 24
210.10.7.0/24 maxlen: 24
210.10.10.0/24 maxlen: 24
210.10.11.0/24 maxlen: 24
210.10.12.0/24 maxlen: 24
210.10.13.0/24 maxlen: 24
210.10.64.0/23 maxlen: 23
210.10.66.0/23 maxlen: 23
210.10.76.0/23 maxlen: 23
210.10.78.0/24 maxlen: 24
210.10.79.0/24 maxlen: 24
2400:79e0::/32 maxlen: 32
2400:79e0:9050::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 05 Feb 2024 06:08:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172 (0xac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AE954/serialNumber=83AC168E49FB25EB76945A0BD146EA8B57BF09CC
Validity
Not Before: Feb 5 04:05:35 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65c05e8f-e00f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:a2:3d:a5:83:86:98:21:87:14:93:98:26:94:
79:32:39:5a:e8:eb:24:40:4b:e2:23:92:cd:c7:90:
12:fd:25:83:c7:d1:88:98:db:c4:2a:c6:db:5e:b3:
cc:80:0e:7d:87:b7:7a:50:c5:7d:fa:1e:5d:d0:80:
48:67:b2:0e:7b:b4:3c:2a:ce:9c:19:7b:11:2e:77:
2c:a1:76:f2:4c:1d:f2:1f:f0:0e:39:14:1f:7f:f8:
67:82:58:bd:9c:d3:49:5b:0a:17:b7:02:fd:de:b2:
f1:cf:39:14:90:1e:f8:fc:5f:4f:f6:c8:16:da:ba:
07:04:2f:84:29:ab:43:44:43:41:c4:87:7c:0d:70:
5b:de:1f:6e:f0:f3:ba:a1:af:1f:5e:c0:08:be:8e:
17:91:c5:f5:52:2c:23:c1:35:df:11:2b:51:41:32:
ad:92:ab:ff:18:2c:ff:1c:74:67:ca:72:8d:f8:aa:
83:a7:f3:f0:36:04:4f:59:9a:2f:57:a5:37:85:44:
5e:9a:6a:08:4c:36:0a:f0:a9:1a:57:15:e2:27:da:
10:2f:6d:a4:99:7d:dc:35:d8:4e:eb:28:79:d7:87:
fd:03:db:65:6f:af:a7:4d:23:07:93:ec:13:9c:b8:
66:96:d2:ad:eb:44:ba:d3:39:ba:8f:a7:14:dc:ee:
36:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:E2:25:E9:4F:DE:FF:7F:08:38:E3:7B:77:FA:76:8C:7D:66:84:45
X509v3 Authority Key Identifier:
keyid:83:AC:16:8E:49:FB:25:EB:76:94:5A:0B:D1:46:EA:8B:57:BF:09:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AE954/B1F6BCC2C14A11ED882BE329C4F9AE02/g6wWjkn7Jet2lFoL0Ubqi1e_Ccw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g6wWjkn7Jet2lFoL0Ubqi1e_Ccw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE954/B1F6BCC2C14A11ED882BE329C4F9AE02/0786F24EC15311ED81A33E45C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.10.0.0/20
210.10.64.0/22
210.10.76.0/22
IPv6:
2400:79e0::/32
Signature Algorithm: sha256WithRSAEncryption
a2:3a:59:3c:ba:42:30:57:bf:60:87:13:96:20:e7:01:cd:7d:
84:89:07:6f:54:32:49:d5:d3:10:f8:4f:77:39:de:57:10:ce:
d6:12:f1:c6:86:f9:2c:5a:1e:fc:0d:11:6e:70:fd:56:84:1c:
d6:a0:48:c3:7e:b7:c1:49:47:da:69:5b:e4:8d:36:b1:4e:23:
cf:6e:24:5b:d0:2f:4a:df:60:38:bf:c0:62:2e:f2:68:e9:25:
6e:29:aa:fb:69:d1:dc:b8:73:12:bd:43:49:bb:c6:70:50:4a:
61:ab:24:10:43:30:03:a5:6b:8f:9a:6c:14:0f:c8:9b:48:38:
fa:fb:68:c2:97:34:9c:d2:d8:57:66:33:7c:7f:53:b6:a3:7a:
8d:b3:d7:c4:2b:b4:4f:20:7d:8b:d6:7c:eb:05:cf:ef:9b:af:
37:c9:42:80:f1:48:df:0f:77:98:1b:db:87:1c:0e:3c:5d:04:
70:fe:6a:f3:17:6f:6e:b5:29:90:84:9c:7b:d8:47:6e:cf:0f:
9d:4b:2d:59:dd:4e:58:49:71:e3:df:e7:ab:9e:ac:66:ef:c6:
f7:12:f2:b5:15:9a:5d:5c:11:16:00:eb:1b:3b:1c:4f:0d:50:
20:d4:8a:d8:68:3c:af:1c:bf:bf:e9:0f:81:c3:3b:5e:95:3b:
16:bd:ea:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 5 09:15:29 2024 by rpki-client on console-fra.rpki-client.org