Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/33DFAFE2057911EEABAB2C6EC4F9AE02.roa
File: 33DFAFE2057911EEABAB2C6EC4F9AE02.roa (raw, json)
Hash identifier: KKDzhSitZV/6gMWTsWL/KR18KcmH+XprZcFrSz6rTRM=
Subject key identifier: 34:46:51:85:35:88:A6:EB:56:EB:BF:0B:4A:6B:5E:37:B2:F1:0F:D8
Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
Certificate serial: 0631
Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/33DFAFE2057911EEABAB2C6EC4F9AE02.roa
Signing time: Wed 07 Jun 2023 21:21:02 +0000
ROA not before: Wed 07 Jun 2023 21:21:01 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 211619
IP address blocks: 210.247.216.0/24 maxlen: 24
210.247.235.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1585 (0x631)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
Validity
Not Before: Jun 7 21:21:01 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=6480f4bd-ce61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:92:8c:de:a7:85:d7:72:5f:50:94:50:1b:20:
cf:45:92:90:b1:45:3f:86:a2:82:3f:ff:e1:0d:13:
81:25:47:b0:27:23:d7:ca:ee:36:59:73:b4:cb:91:
9b:fd:9e:23:1a:df:0e:7e:6f:28:5a:c2:da:a1:3d:
9f:52:ec:81:71:fa:01:94:ac:8d:7f:e5:f6:b1:72:
20:77:75:24:5b:24:6a:63:89:64:3f:13:3a:28:19:
5c:39:3d:3c:27:22:15:a0:86:d2:ad:20:6e:e0:c5:
2a:95:83:58:ad:4a:53:9e:3a:b8:49:81:08:7e:e9:
c0:ea:67:ac:2b:fa:41:eb:a4:21:e3:10:c5:67:d3:
d0:22:a8:8c:93:58:d8:ea:40:b4:f8:f9:44:26:33:
76:56:07:b2:08:51:22:bb:45:3d:ad:af:c9:20:4a:
0f:3a:3d:69:eb:7d:24:af:d0:29:bd:d0:e1:f2:e1:
0f:f4:41:81:8a:57:fa:eb:2e:68:79:bb:02:cd:dd:
fe:fe:7e:bd:82:de:f7:ed:ab:57:57:cf:ab:a2:53:
ee:3d:85:c0:9a:0c:35:99:db:c1:c8:e6:64:28:8d:
e1:d6:db:3d:7f:f9:a6:00:b8:93:bd:b5:02:1a:2a:
d4:e8:d6:2e:d5:9e:c1:11:d8:05:a8:5e:38:a5:e4:
1c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:46:51:85:35:88:A6:EB:56:EB:BF:0B:4A:6B:5E:37:B2:F1:0F:D8
X509v3 Authority Key Identifier:
keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/33DFAFE2057911EEABAB2C6EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.247.216.0/24
210.247.235.0/24
Signature Algorithm: sha256WithRSAEncryption
48:46:40:83:10:62:66:5b:21:f1:54:c5:cd:f5:dc:f3:ad:62:
42:14:5b:34:59:b9:66:e2:81:e9:8d:80:a9:dd:a2:05:33:cd:
d3:95:64:96:01:3b:4c:cd:e1:aa:d3:8c:58:fd:b5:da:66:8b:
4b:c9:27:24:ad:26:e5:69:ee:d8:53:42:36:57:2b:77:ef:45:
21:cb:ed:17:2c:d2:51:76:73:47:0b:f1:72:84:97:ef:05:49:
7a:58:ab:07:64:2a:6d:64:99:8e:7e:7b:3c:30:f7:8e:b3:2d:
6a:23:d5:6d:fa:a7:e9:30:55:e2:63:da:63:c7:0b:36:c3:71:
e7:03:9a:37:64:07:cb:0f:a6:13:8f:56:11:bd:45:67:01:22:
00:b4:ab:e9:ca:c3:cd:02:3f:c3:b6:41:83:ff:4f:e8:05:17:
99:89:39:25:92:a9:f7:7d:f1:9a:1d:a6:ef:f7:d3:34:cd:60:
0b:bd:3e:50:48:9c:98:03:02:e8:f4:36:cb:92:f2:ce:06:5b:
71:29:48:87:97:91:a3:4d:0e:f8:60:6f:50:6c:c8:ae:a2:4a:
04:1c:3e:37:21:67:9c:59:9e:dd:77:a9:93:f3:77:9b:c9:c5:
2f:17:de:d3:de:86:f4:31:ae:ce:d1:33:b4:d2:1f:ee:45:45:
b8:7d:a1:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:05 2023 by rpki-client on console-ams.rpki-client.org