Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7633/78599E741D7F11EB8AECD529C4F9AE02/7B7009321E2311EB94EBF277C4F9AE02.roa
File: 7B7009321E2311EB94EBF277C4F9AE02.roa (raw, json)
Hash identifier: sxZCn8BIZ8iYxWpu/xPszW/P3XJov3vHaEyegQto7lY=
Subject key identifier: F8:24:00:C9:54:CF:2F:E2:E4:72:9E:FC:CD:95:D1:2D:05:53:16:53
Certificate issuer: /CN=A91C7633/serialNumber=B8CE09A0FD033C59D3FBD878F31431FBDA13D914
Certificate serial: 053B
Authority key identifier: B8:CE:09:A0:FD:03:3C:59:D3:FB:D8:78:F3:14:31:FB:DA:13:D9:14
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uM4JoP0DPFnT-9h48xQx-9oT2RQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C7633/78599E741D7F11EB8AECD529C4F9AE02/7B7009321E2311EB94EBF277C4F9AE02.roa
Signing time: Mon 05 Sep 2022 12:19:53 +0000
ROA not before: Mon 05 Sep 2022 12:19:53 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 133579
IP address blocks: 158.140.224.0/24 maxlen: 24
158.140.225.0/24 maxlen: 24
158.140.226.0/24 maxlen: 24
158.140.227.0/24 maxlen: 24
158.140.228.0/24 maxlen: 24
158.140.229.0/24 maxlen: 24
158.140.230.0/24 maxlen: 24
158.140.231.0/24 maxlen: 24
158.140.232.0/24 maxlen: 24
158.140.233.0/24 maxlen: 24
158.140.234.0/24 maxlen: 24
158.140.235.0/24 maxlen: 24
158.140.236.0/24 maxlen: 24
158.140.237.0/24 maxlen: 24
158.140.238.0/24 maxlen: 24
158.140.239.0/24 maxlen: 24
158.140.240.0/24 maxlen: 24
158.140.241.0/24 maxlen: 24
158.140.242.0/24 maxlen: 24
158.140.243.0/24 maxlen: 24
158.140.244.0/24 maxlen: 24
158.140.245.0/24 maxlen: 24
158.140.246.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1339 (0x53b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C7633/serialNumber=B8CE09A0FD033C59D3FBD878F31431FBDA13D914
Validity
Not Before: Sep 5 12:19:53 2022 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=6315e969-7092
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ab:26:0e:b4:e6:07:e1:a6:63:75:03:26:80:
39:1d:78:bc:54:ac:80:76:3e:b4:2c:85:f9:17:aa:
ab:ed:00:bd:13:85:26:b2:e3:06:59:f0:7d:b8:71:
e1:04:1f:3a:c6:c3:dd:5b:81:a0:82:5a:08:7b:3e:
5e:75:ad:cb:a7:52:45:cc:61:c2:40:7d:45:d8:bb:
4d:7f:c8:de:22:f8:bd:b0:c8:bb:62:26:05:a3:a7:
1b:c6:18:4f:35:ed:5b:c5:f1:c9:cb:8c:54:50:0c:
33:b5:86:ed:ca:dd:cc:6e:0f:85:7f:e0:b7:23:83:
97:68:48:b8:44:f2:79:e9:38:51:0d:2d:cf:37:98:
36:4e:3a:79:7f:d3:4c:f1:58:3f:01:7b:bb:63:3c:
38:37:36:de:64:71:d3:12:f6:6e:ce:48:34:8a:ad:
44:03:7a:68:1a:8b:a4:f4:cc:a8:7f:e9:41:17:a2:
77:0e:11:6b:15:f3:d1:4a:0a:13:08:8e:ce:be:20:
4c:c1:fb:ee:84:73:aa:34:e5:42:f3:c5:be:ab:dc:
30:84:76:cc:91:54:e1:92:e5:fb:00:ef:5b:e4:f9:
ac:4d:28:77:1b:76:e4:49:83:f8:40:77:7f:8d:e1:
c7:c1:e4:fd:6c:f5:b5:d5:c6:db:c8:a5:45:25:30:
05:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:24:00:C9:54:CF:2F:E2:E4:72:9E:FC:CD:95:D1:2D:05:53:16:53
X509v3 Authority Key Identifier:
keyid:B8:CE:09:A0:FD:03:3C:59:D3:FB:D8:78:F3:14:31:FB:DA:13:D9:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C7633/78599E741D7F11EB8AECD529C4F9AE02/uM4JoP0DPFnT-9h48xQx-9oT2RQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uM4JoP0DPFnT-9h48xQx-9oT2RQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7633/78599E741D7F11EB8AECD529C4F9AE02/7B7009321E2311EB94EBF277C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
158.140.224.0-158.140.246.255
Signature Algorithm: sha256WithRSAEncryption
83:62:33:bc:71:f7:02:0a:e7:87:16:c8:2f:62:ec:73:ea:35:
e2:e3:4e:46:9c:00:90:b9:f6:0e:36:7c:ac:d4:e8:d4:53:fc:
af:dd:ec:4f:fe:c6:77:fd:ed:a3:27:41:dc:8d:f4:90:04:e7:
b1:e0:5f:fb:f1:c6:78:64:d1:5b:6e:8c:a4:cf:e1:91:e7:b6:
65:71:8b:e4:03:73:0a:0c:d5:47:cb:78:d5:96:2a:84:17:d9:
5f:90:75:47:a2:59:d0:10:84:f9:4f:23:fc:e0:40:f1:7e:2e:
03:dd:e9:8e:b6:b5:94:cd:f6:13:01:50:84:9d:ee:28:3d:1d:
94:11:01:1f:1a:c9:41:c5:95:23:c6:c8:15:39:6a:d3:63:7f:
67:f8:c0:1c:7b:cb:13:67:ca:64:75:30:5a:33:00:be:48:46:
c3:52:eb:e8:67:b2:c8:6a:e4:30:b0:29:e9:91:ee:87:22:46:
b2:da:88:e7:ab:95:07:d1:5d:91:c1:d9:9a:d4:4e:16:8d:48:
25:74:3c:d1:25:9e:aa:c7:75:ad:f0:5b:ce:7c:d6:38:2f:9c:
e9:e5:d1:ad:77:37:7c:cc:a1:0c:f8:0d:be:15:1c:5e:8a:f0:
26:f7:d4:b0:e9:bc:f5:f6:1b:0e:ef:bc:19:7b:c3:d8:97:bf:
5a:97:e7:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:05 2023 by rpki-client on console-ams.rpki-client.org