Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE28E/DDEA7274B73B11ED91639483C4F9AE02/14940D88B74311EDB0C38030C4F9AE02.roa
File: 14940D88B74311EDB0C38030C4F9AE02.roa (raw, json)
Hash identifier: 7zUs0Q7VlEMHWWnDemfnG/Tw3pBNA81nMpglEmAth2Q=
Subject key identifier: 55:70:F2:4B:96:DE:40:24:96:6E:D5:3E:96:DE:5F:AE:D6:F8:7C:99
Certificate issuer: /CN=A91CE28E/serialNumber=2F6138FE2DB94EF7E33EC083C6825B2A3197ACE6
Certificate serial: 03
Authority key identifier: 2F:61:38:FE:2D:B9:4E:F7:E3:3E:C0:83:C6:82:5B:2A:31:97:AC:E6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2E4_i25TvfjPsCDxoJbKjGXrOY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CE28E/DDEA7274B73B11ED91639483C4F9AE02/14940D88B74311EDB0C38030C4F9AE02.roa
Signing time: Tue 28 Feb 2023 08:37:06 +0000
ROA not before: Tue 28 Feb 2023 08:37:06 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 14618
IP address blocks: 202.37.72.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CE28E/serialNumber=2F6138FE2DB94EF7E33EC083C6825B2A3197ACE6
Validity
Not Before: Feb 28 08:37:06 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=63fdbd31-0e59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8b:3b:e3:07:5c:29:8c:c7:80:5d:e8:33:85:
a2:46:bd:55:9d:53:52:f7:b0:bf:00:aa:d8:7f:f7:
bb:bd:21:97:e5:23:02:27:19:78:a3:b2:52:68:86:
ed:83:07:17:35:35:be:1f:5a:45:72:54:e1:a7:e6:
da:cb:5e:4f:f6:df:f3:84:a7:31:d0:51:08:76:2e:
17:17:24:96:5f:1e:ac:54:7b:10:7e:dd:56:e4:87:
7d:d8:2c:23:eb:65:5f:30:42:ff:6c:0b:12:b8:d9:
5b:bd:6e:29:02:54:31:57:61:18:0a:3d:ab:7a:a7:
85:bf:fe:24:84:3e:6a:e8:24:d1:c9:2d:45:7d:8a:
b4:f6:4d:3d:27:b2:a5:fd:20:3e:03:83:63:54:80:
c3:09:58:9c:14:11:17:4f:a6:1c:26:13:52:cb:e3:
34:ec:38:88:dc:45:4b:ff:c7:41:0f:b7:ef:11:97:
b2:36:c6:94:c3:89:ad:d0:79:10:8c:5e:f0:2f:ff:
73:7b:33:fc:0e:36:ce:bc:5e:65:98:a6:70:1c:a6:
db:df:3d:92:5a:a1:34:78:2b:39:9f:38:74:e7:6a:
74:14:eb:c2:f6:1e:1b:b5:98:99:a2:42:35:b7:c3:
6d:05:12:c2:51:f5:09:6e:bf:2b:87:9d:49:27:ce:
aa:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:70:F2:4B:96:DE:40:24:96:6E:D5:3E:96:DE:5F:AE:D6:F8:7C:99
X509v3 Authority Key Identifier:
keyid:2F:61:38:FE:2D:B9:4E:F7:E3:3E:C0:83:C6:82:5B:2A:31:97:AC:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CE28E/DDEA7274B73B11ED91639483C4F9AE02/L2E4_i25TvfjPsCDxoJbKjGXrOY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2E4_i25TvfjPsCDxoJbKjGXrOY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE28E/DDEA7274B73B11ED91639483C4F9AE02/14940D88B74311EDB0C38030C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.37.72.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:3c:d5:9f:e0:11:a8:45:e6:71:02:ce:ea:07:d9:36:7b:6f:
bf:46:f7:61:ac:a9:15:93:1c:91:a2:4f:8d:75:7a:1d:11:ce:
98:85:be:85:b4:30:bb:5e:a9:f1:b9:88:c8:0c:dd:c2:7b:a0:
2e:83:f9:70:15:6e:4d:5d:21:81:1f:64:93:3d:e9:86:65:16:
12:b9:ab:45:9b:1e:dc:7f:3f:be:11:8b:e9:21:9c:52:20:d5:
80:97:8a:f8:47:11:ed:a0:9b:3e:32:32:a9:ae:10:d2:6f:a0:
52:0b:73:5d:72:4c:ce:f5:26:d5:93:22:cb:1f:de:fe:b4:ee:
db:22:bf:8f:d1:5a:5b:36:0e:90:da:bd:c9:8e:2f:b2:21:ed:
0d:df:e5:21:ee:2c:57:13:a4:04:3e:d9:3c:43:d3:f9:78:bf:
54:fa:3d:ce:c4:30:53:89:a9:e7:0f:ea:4b:12:87:b9:45:0b:
a1:94:1f:d7:5c:8f:b7:fb:52:5d:e7:9d:61:42:9b:12:8f:a9:
99:e6:05:57:91:ed:06:fe:10:e3:a4:d8:3a:e4:db:dd:70:f2:
08:bf:a2:c2:51:c3:33:83:d9:53:94:21:af:d0:b1:d3:12:b5:
1f:cd:f9:e2:26:ab:b2:fe:57:f0:be:17:8a:64:6f:68:87:36:
7a:33:34:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:08 2023 by rpki-client on console-fra.rpki-client.org