Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/287F00965C9D11EEB4B2F029C4F9AE02.roa
File: 287F00965C9D11EEB4B2F029C4F9AE02.roa (raw, json)
Hash identifier: n7J58qLTKRrsu5L2qmQJTH0MovHLSdfFn4LDH1wcxVk=
Subject key identifier: CB:FC:90:80:44:DF:FB:78:1F:95:B8:75:41:41:9E:0D:90:80:8B:E5
Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85
Certificate serial: 0104
Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/287F00965C9D11EEB4B2F029C4F9AE02.roa
Signing time: Tue 26 Sep 2023 18:47:36 +0000
ROA not before: Tue 26 Sep 2023 18:47:36 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 398343
IP address blocks: 203.18.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Sep 2023 19:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 260 (0x104)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85
Validity
Not Before: Sep 26 18:47:36 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=65132747-5cf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:00:da:b9:9b:a5:5b:c7:10:09:1c:cc:a9:2d:
30:49:75:b2:ee:6e:af:ca:41:97:97:56:df:41:00:
8f:35:88:16:2d:3d:52:bf:04:96:8c:e6:c0:bd:b2:
99:31:1d:21:63:b1:0a:ba:4a:bd:12:d7:04:0e:bf:
9b:b9:8c:bb:2c:f2:de:69:10:a2:3d:56:3b:a2:4b:
07:68:ae:a1:4b:c3:4c:73:fa:04:74:28:c1:2d:e5:
5d:cb:f3:f4:bf:3a:de:0b:b0:f1:04:de:2a:61:4f:
fb:8a:56:6c:97:0d:80:9c:14:d9:2e:11:06:e9:97:
bd:bc:5b:cf:bd:25:a4:6b:21:bc:f1:61:f4:1f:1f:
e4:b4:47:1b:0b:52:e9:c0:77:e9:e7:d0:44:11:05:
af:b1:4f:f1:be:f0:80:1f:47:79:14:c8:1a:5d:58:
2a:a0:54:d5:27:ae:81:46:c9:18:f6:b5:9d:eb:85:
fb:b6:4b:4c:47:cf:18:80:f3:71:2e:9d:92:53:79:
b0:36:44:c0:66:fe:c6:2f:cb:9a:73:07:4a:25:f5:
26:bb:8d:bd:46:6c:7e:a0:4e:89:f7:77:ff:ab:55:
9c:ac:93:db:e7:d3:19:31:62:6b:1a:48:78:2a:a8:
fa:d4:bb:05:1b:18:dd:6c:13:95:eb:85:9c:c0:0d:
3b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:FC:90:80:44:DF:FB:78:1F:95:B8:75:41:41:9E:0D:90:80:8B:E5
X509v3 Authority Key Identifier:
keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/287F00965C9D11EEB4B2F029C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.18.98.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:30:fc:e7:71:a3:e9:39:b0:48:39:fd:1b:c0:ad:00:7e:ce:
89:b4:ed:81:15:ab:cb:34:45:fe:71:8b:f3:b9:68:27:9c:cb:
8d:b8:bb:d5:46:16:e1:7c:b3:70:85:f8:91:b4:31:a3:df:b0:
59:31:f0:05:53:d7:b3:f9:6f:d6:51:8a:d8:fa:35:dd:ef:f6:
1e:a5:56:97:50:2e:1c:c9:72:a7:4b:83:12:4a:08:d8:ea:55:
25:bc:5a:8e:05:89:d2:cd:5e:44:04:b8:4b:28:fd:8c:52:b4:
0b:f2:26:78:75:14:6f:fa:66:e4:25:68:4f:ca:84:b9:e1:30:
48:bb:0f:26:d8:1b:2d:4a:c6:08:29:be:3f:7c:66:93:0f:c2:
da:56:8b:b4:72:d0:5a:fc:37:23:25:d2:61:7b:10:2d:a8:ac:
a4:b6:8e:99:c1:d4:f7:a2:78:18:6a:8b:24:b9:29:29:1f:12:
17:ab:eb:c8:eb:f4:4a:93:21:fd:d7:69:f0:14:33:7c:86:92:
60:a3:27:97:9a:a8:63:2b:65:34:cc:6f:87:d6:c4:4b:a8:ca:
96:9b:1b:a2:84:db:9c:f0:1e:08:40:44:cd:b3:99:8e:44:de:
23:25:79:c2:34:63:43:57:d6:ec:df:a2:26:d9:c2:23:8b:ea:
e7:ff:d2:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:29 2024 by rpki-client on console-ams.rpki-client.org