Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/9019257EB2F211ED9F71AC7CC4F9AE02.roa
File: 9019257EB2F211ED9F71AC7CC4F9AE02.roa (raw, json)
Hash identifier: giO3hJI/H6dsZY+6ZOXSzK9wS0OoUEQB2BFCvp3xW3M=
Subject key identifier: 55:C8:C8:95:A5:48:C1:B6:AC:C8:36:59:A2:57:7C:A9:B4:E8:99:DF
Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
Certificate serial: 05AE
Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/9019257EB2F211ED9F71AC7CC4F9AE02.roa
Signing time: Wed 22 Feb 2023 20:50:39 +0000
ROA not before: Wed 22 Feb 2023 20:50:39 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 834
IP address blocks: 202.139.240.0/20 maxlen: 24
202.148.128.0/20 maxlen: 20
202.148.144.0/20 maxlen: 20
203.147.128.0/21 maxlen: 21
203.147.136.0/21 maxlen: 21
203.147.144.0/21 maxlen: 21
203.147.152.0/21 maxlen: 24
203.147.160.0/20 maxlen: 20
203.147.176.0/20 maxlen: 20
203.147.192.0/20 maxlen: 20
203.147.224.0/20 maxlen: 20
203.147.240.0/20 maxlen: 20
210.247.224.0/21 maxlen: 24
210.247.232.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1454 (0x5ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
Validity
Not Before: Feb 22 20:50:39 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=63f6801f-0fa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:24:50:93:04:b4:f9:56:8b:93:14:80:13:48:
17:13:d0:6c:69:e2:b4:e9:cc:6c:69:64:04:a2:cf:
fe:08:05:5d:9c:7b:ff:c6:d7:47:bb:f5:29:33:69:
56:51:db:eb:e6:b0:d2:a0:a4:49:97:bc:b0:30:e0:
a6:b0:b3:6c:4d:18:4e:bf:9b:6b:ef:fb:83:71:d6:
56:ec:b1:a2:26:a6:8b:b5:6f:4b:b9:cb:f6:d1:9b:
e9:c2:02:45:90:ee:17:c8:0f:5e:ef:aa:06:11:20:
78:42:e0:22:3f:52:8f:d6:66:7a:9d:20:12:31:eb:
04:9b:73:fa:34:e9:23:f0:30:38:d0:a7:54:fe:5f:
10:fd:8e:e6:1b:99:7a:ab:62:2c:aa:ee:75:fc:c7:
17:20:ba:8d:86:39:d3:bd:1a:52:ca:3b:e7:3f:0c:
14:90:bb:f7:e6:56:20:1b:fd:a3:f4:f7:68:38:da:
6f:66:cd:89:1d:ed:60:45:58:70:c8:37:d9:11:c8:
bb:f5:28:0f:6e:10:c2:83:7c:ca:bb:84:f5:b9:ca:
0d:a8:24:0c:1e:11:a3:af:05:80:cd:5f:60:a3:ca:
e5:e2:f3:f2:9a:fb:a9:62:a1:05:9e:1d:e9:4f:18:
ab:43:42:a5:d0:58:56:97:93:e4:28:da:45:06:65:
23:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:C8:C8:95:A5:48:C1:B6:AC:C8:36:59:A2:57:7C:A9:B4:E8:99:DF
X509v3 Authority Key Identifier:
keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/9019257EB2F211ED9F71AC7CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.139.240.0/20
202.148.128.0/19
203.147.128.0-203.147.207.255
203.147.224.0/19
210.247.224.0/20
Signature Algorithm: sha256WithRSAEncryption
3e:dd:5c:7e:54:41:4f:e6:b5:ee:ca:97:be:b4:c3:90:c2:b1:
1b:07:a1:7e:69:a7:be:bc:47:12:7d:74:85:ff:37:5d:f5:bc:
6e:b3:2c:64:34:f1:01:89:87:cb:07:24:16:91:46:e3:0c:b6:
0a:c7:5e:2d:f8:e0:e7:67:f6:98:df:7c:bf:3b:c8:87:7c:16:
0c:63:c1:94:c1:1f:72:52:68:71:8d:48:5f:8c:9b:23:87:97:
38:16:c4:57:35:b9:64:8d:cd:44:03:5a:ce:13:c5:8d:33:b7:
88:d4:64:f2:95:0b:d2:b0:4d:fa:e7:4c:b1:6b:0e:fb:67:8c:
ae:38:39:c1:54:f2:65:ad:f4:cb:8e:6e:b7:45:1a:23:3b:e8:
19:05:6c:ac:18:27:7c:12:5b:6b:45:fa:dd:ff:47:fd:e5:31:
11:40:11:85:f5:cf:b4:89:cb:d1:c1:06:7d:ce:39:18:a6:ff:
bd:ee:2d:74:2a:83:14:ef:60:c0:aa:c1:1a:f6:43:97:10:05:
1d:b8:00:75:1b:2f:58:bf:e9:c7:72:e0:7b:98:1e:14:74:84:
7f:a9:7b:05:80:c6:ce:a2:1f:b2:ce:39:b1:c0:4a:82:dd:43:
fb:69:4c:67:c4:b9:8d:c8:23:23:71:1f:59:db:bd:50:cb:e3:
3c:16:81:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:08 2023 by rpki-client on console-fra.rpki-client.org