Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/7D5911E8A0FE11ED9EF73577C4F9AE02.roa
File: 7D5911E8A0FE11ED9EF73577C4F9AE02.roa (raw, json)
Hash identifier: 7jWedChCYTKgDd03vhgPYYB83xF7/ApkV5odT/1m3YU=
Subject key identifier: 58:35:92:97:9A:9B:8B:AB:C0:22:BE:DC:88:6C:8C:22:0B:89:A1:64
Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
Certificate serial: 0586
Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/7D5911E8A0FE11ED9EF73577C4F9AE02.roa
Signing time: Tue 31 Jan 2023 00:30:40 +0000
ROA not before: Tue 31 Jan 2023 00:30:40 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 4826
IP address blocks: 202.139.224.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1414 (0x586)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
Validity
Not Before: Jan 31 00:30:40 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=63d86130-ef7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e6:26:e0:36:ec:9c:c4:ce:c3:82:41:71:a9:
32:d8:00:f1:77:07:0c:dd:03:9c:92:8b:d7:9d:34:
fe:15:99:a4:53:53:98:7c:da:90:15:2f:86:f0:21:
a1:9a:d4:11:43:b5:9e:fe:ef:65:eb:1d:0b:ea:67:
8f:74:2f:85:d7:4d:ee:d1:f2:8a:17:75:8b:0b:b8:
5b:3d:5d:eb:39:d0:a8:4a:6c:51:4a:82:8a:54:82:
50:71:28:b8:fd:07:44:e4:70:ee:0b:5a:ce:9b:40:
08:ad:00:08:bf:75:51:50:49:9f:4b:23:4a:c8:cd:
ae:b2:ac:ff:9d:c0:6d:74:40:6e:26:57:83:21:e4:
bb:77:16:4a:49:d8:50:20:d5:75:68:e0:be:2f:f4:
d7:cc:21:9e:6a:fb:ec:b0:1f:07:da:2a:92:21:0f:
60:33:e2:31:8a:f9:b0:42:38:ed:fa:1f:d6:6e:a6:
8f:fc:b2:7a:bc:70:9f:a6:78:60:41:8e:fc:16:86:
53:00:63:8a:49:96:eb:8e:0d:49:da:89:67:50:15:
42:a4:0f:b9:43:be:0f:3a:e3:da:64:88:99:0b:04:
70:72:3c:54:5a:d0:1f:9e:e7:d2:06:46:f1:e2:15:
6d:96:12:d2:90:55:a0:9c:c7:15:03:9e:e9:8a:02:
8a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:35:92:97:9A:9B:8B:AB:C0:22:BE:DC:88:6C:8C:22:0B:89:A1:64
X509v3 Authority Key Identifier:
keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/7D5911E8A0FE11ED9EF73577C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.139.224.0/20
Signature Algorithm: sha256WithRSAEncryption
0c:b5:d1:25:73:8f:27:ae:37:fa:a4:ee:bd:4b:c1:81:9e:f2:
bc:88:4f:42:7e:d5:e8:06:2c:e5:10:d5:2d:91:61:5f:97:7a:
03:8a:04:ae:e1:ba:46:37:dc:4a:b1:9a:af:93:5c:0d:1a:cd:
93:57:62:11:6e:b0:39:15:0e:cc:ca:47:32:be:c5:f4:f8:e6:
12:25:77:81:5a:55:ab:c9:af:bf:90:b9:f3:c5:df:79:bc:bc:
af:db:03:23:73:4d:ad:16:af:d0:2d:42:6b:5a:70:37:3d:b6:
25:6c:4c:b7:00:13:c3:c7:3b:3a:93:75:eb:f7:e3:1e:39:ae:
58:3b:a3:79:e8:b2:0e:1b:96:3d:dc:ec:f5:f4:6d:63:78:22:
8f:0a:95:bb:8b:a0:aa:96:19:f2:f7:05:d2:25:08:2d:e5:95:
7f:ca:d2:13:93:bb:af:6e:60:de:2c:34:4c:c6:6c:a2:d1:09:
82:9f:f5:09:53:aa:8b:e8:df:6d:81:80:91:12:0b:f2:5f:ab:
eb:b5:48:82:e3:19:2d:f0:45:af:6c:77:4a:1e:21:c2:5c:4d:
0c:bd:fc:72:64:ee:bc:f1:08:22:e5:e4:6b:3d:82:6a:0e:30:
c6:ff:96:9a:d3:2c:a2:86:fa:ff:66:1a:f4:a8:5c:09:55:e7:
f1:8f:a6:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:05 2023 by rpki-client on console-ams.rpki-client.org