Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/0C2C0A961F6411ED9832A315C4F9AE02.roa
File: 0C2C0A961F6411ED9832A315C4F9AE02.roa (raw, json)
Hash identifier: tTdt/vySqdvOedecx3zNsGRtDuq1D+z0JAmq4HC2SLg=
Subject key identifier: 2C:18:0A:FA:B5:CC:B2:FF:53:0B:14:D6:71:99:D4:50:F4:EF:15:07
Certificate issuer: /CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37
Certificate serial: 32E4
Authority key identifier: 1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/0C2C0A961F6411ED9832A315C4F9AE02.roa
Signing time: Sat 08 Oct 2022 14:20:08 +0000
ROA not before: Sat 08 Oct 2022 14:20:08 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 9732
IP address blocks: 202.128.224.0/19 maxlen: 24
2406::/32 maxlen: 40
2406:0:6666::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13028 (0x32e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37
Validity
Not Before: Oct 8 14:20:08 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=63418718-31cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5f:cc:76:b9:4c:b3:76:b1:4f:94:d2:f0:af:
62:9a:16:8b:86:ca:b8:4e:6e:7a:f3:1c:bb:9b:21:
f4:8e:0d:c9:3d:79:20:94:4e:36:49:f0:a5:b0:05:
1a:eb:1a:b4:a9:b3:ef:5a:b4:81:a1:86:d0:83:c8:
0e:8f:c6:c9:18:43:d0:89:3a:e7:0b:31:1d:ee:10:
f1:a0:ec:f1:2d:86:3e:31:e1:a6:58:04:4a:52:9e:
ae:44:9c:98:a6:91:94:5a:23:ef:5b:db:c0:69:47:
ef:7a:bc:6d:a3:7e:ac:42:b0:c8:46:b4:79:8a:c7:
92:cd:8c:93:07:0e:a9:c2:ea:fd:52:32:fb:2e:32:
f9:69:94:bc:9f:9d:b8:0f:13:56:f6:bf:a7:0b:e0:
9a:d1:e8:e6:ad:24:11:ce:55:c1:2f:c0:5f:79:41:
d9:1e:12:57:40:76:cc:21:d3:4d:a8:9f:71:31:72:
4f:48:b5:23:72:73:9a:be:61:d9:eb:73:8e:65:d3:
59:2f:b5:c0:62:bd:8a:3c:c7:f7:fe:49:9e:1f:dd:
35:19:2f:44:33:dd:e7:dc:5b:35:e6:ca:30:95:9a:
d0:e8:ea:50:f4:a3:6d:cf:37:16:3d:2f:44:32:f9:
b1:7f:8a:1a:de:8d:32:69:ff:56:0a:3d:f8:3e:09:
99:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:18:0A:FA:B5:CC:B2:FF:53:0B:14:D6:71:99:D4:50:F4:EF:15:07
X509v3 Authority Key Identifier:
keyid:1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/0C2C0A961F6411ED9832A315C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.128.224.0/19
IPv6:
2406::/32
Signature Algorithm: sha256WithRSAEncryption
9c:87:d0:a2:a7:36:fa:42:eb:71:e0:54:92:9e:c0:37:fd:11:
19:d6:f9:c3:0e:90:fa:44:b5:1e:40:11:e9:a5:81:91:52:26:
d9:a2:7a:e8:44:9f:bc:15:43:dc:de:84:71:70:c6:19:5b:38:
f8:1d:f9:18:52:0b:f4:65:7b:ea:11:fd:a2:04:55:9d:03:32:
bb:b3:36:c3:f9:99:90:ce:3a:2f:26:2b:19:da:f3:a1:42:0d:
ca:7d:e3:a6:03:dc:1c:b4:c1:32:2a:6e:94:9d:bd:70:2f:3f:
c5:3c:13:c1:ed:0d:3e:68:1d:28:cd:b1:bd:5b:0c:09:49:e3:
75:c8:c9:ab:ed:58:05:93:40:e2:b7:69:d4:73:cc:7a:95:7d:
fa:ac:90:70:e8:48:54:fc:87:7f:71:fa:cd:a7:57:09:fd:d3:
4c:db:9e:e3:c2:c1:58:16:f3:b0:a6:e8:b3:bb:04:0d:c7:ec:
d3:77:47:52:10:b2:14:7a:93:bf:5c:80:87:56:66:3f:6e:5a:
64:1d:0a:13:aa:ba:43:d8:d1:a4:40:55:10:b5:c5:e1:98:2b:
95:5c:3e:76:2e:ce:46:6e:62:f4:f7:ee:fe:27:90:b6:9f:30:
83:d3:d5:4b:8f:cb:41:8f:60:7c:de:da:8d:76:61:1d:db:03:
95:5a:f5:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:05 2023 by rpki-client on console-ams.rpki-client.org