Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/2E37D6D889A311EE97AACF38C4F9AE02.roa
File: 2E37D6D889A311EE97AACF38C4F9AE02.roa (raw, json)
Hash identifier: qB6pxf5etTFJ3fPZYC+7bcjl7BWWcwIhNHe31dBMNOk=
Subject key identifier: E5:E3:6E:73:21:A7:5F:07:0B:1B:E4:62:83:48:A0:4C:DC:A4:D7:F3
Certificate issuer: /CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37
Certificate serial: 33D0
Authority key identifier: 1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/2E37D6D889A311EE97AACF38C4F9AE02.roa
Signing time: Thu 23 Nov 2023 01:54:05 +0000
ROA not before: Thu 23 Nov 2023 01:54:05 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 198949
IP address blocks: 45.119.92.0/24 maxlen: 24
45.119.93.0/24 maxlen: 24
45.119.94.0/24 maxlen: 24
45.119.95.0/24 maxlen: 24
45.127.0.0/24 maxlen: 24
45.127.1.0/24 maxlen: 24
45.127.2.0/24 maxlen: 24
45.127.3.0/24 maxlen: 24
202.128.224.0/24 maxlen: 24
202.128.225.0/24 maxlen: 24
202.128.227.0/24 maxlen: 24
202.128.228.0/24 maxlen: 24
202.128.229.0/24 maxlen: 24
202.128.230.0/24 maxlen: 24
202.128.231.0/24 maxlen: 24
202.128.234.0/24 maxlen: 24
202.128.235.0/24 maxlen: 24
202.128.236.0/24 maxlen: 24
202.128.237.0/24 maxlen: 24
202.128.238.0/24 maxlen: 24
202.128.239.0/24 maxlen: 24
202.128.240.0/24 maxlen: 24
202.128.241.0/24 maxlen: 24
202.128.242.0/24 maxlen: 24
202.128.243.0/24 maxlen: 24
202.128.244.0/24 maxlen: 24
202.128.245.0/24 maxlen: 24
202.128.246.0/24 maxlen: 24
202.128.247.0/24 maxlen: 24
202.128.248.0/24 maxlen: 24
202.128.249.0/24 maxlen: 24
202.128.250.0/24 maxlen: 24
202.128.251.0/24 maxlen: 24
202.128.252.0/24 maxlen: 24
202.128.253.0/24 maxlen: 24
202.128.254.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13264 (0x33d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37
Validity
Not Before: Nov 23 01:54:05 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=655eb0bc-8c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e2:50:7f:d6:57:ff:49:c4:ec:3c:62:e9:05:
12:1b:99:e2:82:57:7b:fe:ab:5b:71:28:bd:f1:39:
c1:25:95:d3:02:0e:c0:31:5a:c6:14:c2:fc:67:d9:
88:14:40:6d:f2:2b:9f:c6:63:25:11:11:eb:55:55:
3d:8d:e5:c4:71:1a:18:af:58:48:5e:4e:1f:1d:44:
7a:cd:77:57:61:1b:62:9a:f9:07:fa:77:cc:f1:0f:
45:f0:d8:3c:2c:c2:aa:89:86:0a:f5:75:a1:25:06:
da:34:2d:27:f6:75:26:e4:7d:25:a1:27:a6:a5:ad:
b2:ec:88:8c:89:a2:df:01:ca:83:a6:c3:6d:de:3e:
e5:44:66:ae:80:c7:37:20:c7:c2:cf:61:1c:38:97:
04:9f:89:2c:62:6e:ed:15:6c:4b:b5:81:45:c3:b1:
43:84:b3:c4:90:05:79:c6:c7:5b:2a:29:f8:f3:be:
82:18:95:30:78:cf:eb:dc:ee:72:88:5a:91:83:ca:
2f:42:3e:97:47:07:76:2a:c6:c9:e0:54:10:0c:de:
68:93:93:af:b7:e0:d9:38:48:34:1c:95:4d:22:94:
e9:b4:fe:69:3d:c3:35:dc:5e:c9:d2:cb:e4:ef:25:
20:fc:ac:03:29:e5:17:95:f4:6b:79:34:50:69:b9:
17:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E3:6E:73:21:A7:5F:07:0B:1B:E4:62:83:48:A0:4C:DC:A4:D7:F3
X509v3 Authority Key Identifier:
keyid:1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/2E37D6D889A311EE97AACF38C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.119.92.0/22
45.127.0.0/22
202.128.224.0/23
202.128.227.0-202.128.231.255
202.128.234.0-202.128.254.255
Signature Algorithm: sha256WithRSAEncryption
43:b5:09:2a:34:5d:15:47:b8:26:99:1e:0b:74:79:bc:8c:3a:
c9:ea:7f:3d:77:44:b5:96:3c:8f:0c:24:2d:5d:94:14:09:a9:
b7:55:6e:98:3d:a5:1a:fc:87:93:02:1a:b6:b0:4a:19:0a:21:
65:da:b5:ef:05:93:0e:3c:ab:36:87:96:14:49:8d:ef:d9:20:
9a:8d:c6:71:5d:b2:e5:16:7d:12:eb:a5:c8:51:df:90:df:f7:
de:97:d6:50:da:23:8a:48:0c:40:02:6c:24:77:98:9f:af:da:
14:4c:fc:63:54:ea:e7:91:dd:e0:ac:5e:62:b8:2e:e2:b2:7c:
f8:29:43:4a:fb:73:e6:1b:ef:80:21:cb:6d:ff:a3:38:8c:b0:
04:78:75:53:8c:71:3b:9a:20:75:f4:55:12:95:df:27:6d:29:
3a:dc:c4:7b:ac:b1:a6:89:9e:e0:02:f2:3f:e7:7d:a2:b9:be:
da:c8:00:18:c9:2e:6a:56:e6:d4:63:6c:5d:3c:e3:fa:86:cb:
05:7c:ac:28:f3:a1:15:2e:c4:44:60:19:18:66:b9:01:51:25:
d4:5a:d3:de:5c:75:a7:c1:af:b9:06:02:18:95:b0:85:ab:ad:
21:c5:6f:ff:86:c2:76:52:3f:8b:ed:5d:84:d0:9d:6f:3b:6d:
c2:a3:3b:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 23 03:08:52 2023 by rpki-client on console-ams.rpki-client.org