Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/400C733C033911EE838B1D7DC4F9AE02.roa
File: 400C733C033911EE838B1D7DC4F9AE02.roa (raw, json)
Hash identifier: bEZpGyMLFwpiy3cCeE5IHJmwnczbP2MdFCotPZQo9sM=
Subject key identifier: 74:30:AD:BB:B9:EE:23:4E:88:09:BB:E3:EB:DE:16:BB:02:5C:23:CD
Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
Certificate serial: 062A
Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/400C733C033911EE838B1D7DC4F9AE02.roa
Signing time: Mon 05 Jun 2023 00:38:12 +0000
ROA not before: Mon 05 Jun 2023 00:38:12 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 211585
IP address blocks: 203.147.224.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1578 (0x62a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
Validity
Not Before: Jun 5 00:38:12 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=647d2e74-ab75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b9:ae:2f:24:02:da:3c:fe:fe:37:98:f1:af:
88:0e:97:b8:c0:13:25:16:93:95:7e:32:56:76:02:
1c:a4:7b:ae:58:d5:09:bc:3e:99:3e:d7:07:74:39:
20:82:b2:ab:3f:5f:4c:c3:30:5e:3d:ad:fb:eb:ab:
88:a3:6b:16:70:f6:17:d2:43:73:2b:c4:97:62:7f:
76:0a:28:ab:b0:bc:1a:e4:4b:a9:ad:ac:38:67:34:
26:a3:2e:8c:ea:19:be:42:21:49:dc:8b:bc:14:89:
c5:ba:52:95:1f:99:1b:81:03:95:29:d5:c1:6f:d4:
e6:59:1e:55:fd:f2:13:1a:a4:32:a1:ab:fd:9a:4d:
42:df:eb:65:fe:c5:40:68:4c:ac:fd:1b:f5:fb:48:
a0:13:28:34:4f:de:1f:e6:4e:b5:f8:7a:35:ab:2b:
a5:bd:17:a4:d4:9b:0d:6e:43:fc:31:68:46:f8:94:
b1:1e:fd:88:39:50:fd:b7:6a:2d:d6:10:71:00:1c:
48:98:40:e8:0c:81:c7:02:d1:d1:b9:a3:9e:40:41:
9e:72:10:ed:42:bc:da:44:6f:75:b7:93:ed:37:0d:
47:12:9f:2b:b9:13:31:b1:dc:51:70:35:0b:7a:b7:
e5:3a:d2:25:ea:11:e4:85:79:84:b2:a2:61:5d:99:
6b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:30:AD:BB:B9:EE:23:4E:88:09:BB:E3:EB:DE:16:BB:02:5C:23:CD
X509v3 Authority Key Identifier:
keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/400C733C033911EE838B1D7DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.147.224.0/22
Signature Algorithm: sha256WithRSAEncryption
95:d9:74:80:ea:30:ce:75:62:08:be:4f:b2:1e:eb:83:d4:89:
cd:1e:19:3c:a1:69:e3:1b:71:76:43:eb:94:dd:21:15:a9:6a:
e5:8f:95:c2:b7:f4:f2:dd:b1:9b:f2:d4:05:6d:20:61:94:ad:
4f:7f:60:2e:82:57:d2:e6:be:de:09:bc:15:9a:5a:a7:8a:64:
ad:d0:3e:8a:93:13:f3:0e:0c:37:dd:61:cb:9c:01:c8:3e:ce:
6c:2b:db:be:df:11:2c:3a:ae:bc:da:0a:70:55:46:c7:b8:47:
02:c3:0e:ed:63:b9:91:32:5e:40:89:66:83:56:ed:f9:7e:ae:
64:84:bd:61:3f:aa:02:37:0a:f1:73:f5:31:4c:c9:dd:13:1b:
65:d1:be:07:ab:a2:f0:3b:a5:45:75:5c:24:be:5e:90:29:cb:
a6:6c:81:18:2c:ab:41:21:2b:31:c9:46:b0:98:ff:6f:ea:87:
11:fa:7a:d1:34:06:15:a8:1a:60:7d:dc:06:19:d6:94:c1:2e:
39:e6:6b:7a:50:83:02:25:dd:0e:6c:47:80:12:b1:f5:ad:4c:
e3:e3:83:60:8e:73:43:75:c1:0f:35:4a:f9:97:bf:3c:3b:70:
86:64:fe:de:a1:f1:1d:84:d3:6f:f5:4e:74:aa:e6:81:54:7a:
4c:7c:1a:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:05 2023 by rpki-client on console-ams.rpki-client.org