Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/C07DDD007B2311EE95531544C4F9AE02.roa
File: C07DDD007B2311EE95531544C4F9AE02.roa (raw, json)
Hash identifier: y8f7L8gF8KuzE2qJ8X3p9RA63qJBG7se9o3TQD0FY+o=
Subject key identifier: BB:60:3D:F4:06:70:36:C1:B7:AB:33:3C:8B:8B:55:C7:DF:B3:26:B4
Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305
Certificate serial: B1
Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/C07DDD007B2311EE95531544C4F9AE02.roa
Signing time: Sat 04 Nov 2023 15:06:38 +0000
ROA not before: Sat 04 Nov 2023 15:06:38 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 207787
IP address blocks: 202.134.239.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177 (0xb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305
Validity
Not Before: Nov 4 15:06:38 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65465dfe-b2e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d7:50:7e:8f:62:82:5d:d7:88:06:21:6a:64:
7a:05:53:2e:6b:23:5c:23:2b:be:6b:e2:e7:79:ee:
a8:53:7a:4f:07:7f:83:88:b6:df:4e:d9:a4:17:7f:
5e:39:3c:1c:6c:87:0a:9b:42:e4:60:9d:b4:ad:96:
d8:20:8d:8f:46:36:b0:83:3c:31:7b:cd:99:b1:22:
30:6f:22:99:85:03:e0:9c:e8:3b:d1:3e:e2:08:b7:
1e:fb:6e:04:c8:cc:a4:ac:68:c6:e7:af:7d:a2:40:
af:b7:ef:ab:a0:cf:22:0b:98:3f:9a:ff:13:e9:86:
ce:8a:69:cf:95:e7:09:38:d0:a3:94:04:c6:5f:4f:
47:61:cc:a3:c9:84:60:7b:0b:df:a8:4f:04:80:ac:
24:b1:24:aa:e9:47:1f:d4:06:3b:df:4a:99:17:45:
9a:06:1c:6d:49:1b:f5:14:73:94:c9:36:a5:06:c1:
31:65:33:8b:f3:1d:ca:13:df:ba:fd:58:9b:9e:a1:
7d:19:d2:75:1f:db:e7:0f:75:41:98:e7:e3:77:c9:
aa:ed:11:46:ac:d5:61:4c:6a:5b:0d:c2:31:33:4e:
cd:16:0b:e2:e7:9e:85:64:2a:ca:f7:83:27:a5:4f:
3f:23:e8:79:9f:6e:41:7e:38:23:db:10:39:c5:cb:
d4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:60:3D:F4:06:70:36:C1:B7:AB:33:3C:8B:8B:55:C7:DF:B3:26:B4
X509v3 Authority Key Identifier:
keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/C07DDD007B2311EE95531544C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.134.239.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:57:06:45:48:c8:15:1f:7c:16:73:d1:96:f6:7a:17:84:6b:
bb:1e:7c:fe:20:59:55:e4:3b:64:9e:87:ff:4f:6a:bf:53:2b:
2a:8e:ae:55:48:83:0a:2e:f6:a9:7e:fa:6f:53:f5:bd:53:57:
61:db:4a:79:33:fc:9e:90:8a:12:a1:f5:2a:d1:5a:6a:88:88:
b3:e7:83:ba:d9:ad:f7:f8:6b:70:75:d8:f9:0b:72:e5:86:a9:
78:fd:e3:b0:a5:e1:85:ab:42:0a:a4:55:a3:eb:89:f0:c0:b4:
a0:a3:10:67:7e:fe:10:cf:b2:ee:60:38:f8:e5:86:e3:30:ac:
5f:1f:c4:ea:b5:d9:21:13:bb:c0:0e:81:b9:9b:19:47:c2:78:
f3:67:63:59:10:7e:10:40:98:bc:a3:39:6e:04:df:fd:7e:10:
1b:72:23:d4:4a:01:e1:c8:a7:41:b2:b2:74:aa:cd:51:05:5e:
1c:a0:49:18:5a:ab:00:0f:2f:f0:de:ae:a3:22:10:7b:5b:05:
ea:ce:bd:55:90:c0:b0:34:27:dc:be:95:5c:44:2b:53:ad:bd:
2e:b9:9b:43:46:ea:87:eb:1b:d1:89:49:89:42:1f:c7:d5:27:
2a:fe:b0:5c:08:61:89:ff:9a:4a:46:90:1f:f6:ce:ef:aa:b4:
a6:be:80:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 4 13:20:09 2024 by rpki-client on console-ams.rpki-client.org