Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/51638C369F0D11EE829DC428C4F9AE02.roa
File: 51638C369F0D11EE829DC428C4F9AE02.roa (raw, json)
Hash identifier: ad/wFddecub8kO/0LDLKvVwdNS2xorXKjNIqZ8Pz0y0=
Subject key identifier: 52:7A:50:78:21:50:C1:16:10:64:22:A2:0F:78:32:AB:84:72:2F:F9
Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85
Certificate serial: 01E1
Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/51638C369F0D11EE829DC428C4F9AE02.roa
Signing time: Sun 25 Aug 2024 03:25:24 +0000
ROA not before: Sun 25 Aug 2024 03:25:24 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 149977
IP address blocks: 203.21.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Sep 2024 20:32:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 481 (0x1e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85
Validity
Not Before: Aug 25 03:25:24 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66caa424-d29a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9a:9d:3c:02:a9:c0:02:aa:64:b4:23:cd:fa:
80:54:c4:d0:c2:59:9e:4e:25:28:ca:5f:0b:b1:b9:
db:3c:bc:0e:93:ad:d9:5c:d0:e3:32:66:0c:c4:0a:
bd:24:f8:4b:2d:c7:62:6c:a9:b6:29:fd:22:7a:1a:
61:a3:c7:ac:2a:01:36:d8:10:9e:b4:9c:99:35:12:
ae:29:34:19:b7:98:c1:26:dc:3f:1f:48:0e:30:a3:
22:0f:c8:84:80:bd:17:8f:e4:42:d6:6f:de:19:0f:
a6:0b:9d:ab:ae:1b:c5:06:36:60:e4:6c:85:34:ae:
d8:ef:78:20:eb:9f:d9:89:8b:57:e7:ac:f9:b8:e6:
8a:37:59:e0:83:6c:ca:d1:79:2b:c7:e2:06:97:a2:
5b:39:fa:45:3e:37:99:ed:a0:2d:32:ea:cb:c3:fc:
e1:9d:1b:f5:58:76:6c:18:dd:46:62:56:57:7f:9f:
0f:6c:6c:ef:e6:ba:8a:d5:ad:4a:ee:fd:f7:0b:61:
f2:76:6c:0b:c9:ce:76:cb:4f:19:88:49:e1:c0:7c:
33:f7:96:fa:f3:e8:fa:c8:62:ac:c4:6e:f6:30:9e:
b2:9f:bb:fc:ee:e5:54:9a:8e:e3:4f:d0:86:08:78:
03:d3:eb:58:42:62:fa:bf:35:82:43:7b:d8:6e:06:
1e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:7A:50:78:21:50:C1:16:10:64:22:A2:0F:78:32:AB:84:72:2F:F9
X509v3 Authority Key Identifier:
keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/51638C369F0D11EE829DC428C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.21.72.0/24
Signature Algorithm: sha256WithRSAEncryption
86:1e:6e:eb:42:4f:e7:58:4e:81:f8:51:7a:b9:b3:3c:76:1c:
f1:2c:23:9b:ff:ee:08:d9:f3:e2:97:a1:ec:51:8f:ef:1f:7c:
d7:bf:3b:93:10:13:03:7d:fc:8a:09:8b:d3:ce:d4:1c:bd:ef:
1b:d1:5f:d5:a4:85:04:6d:8b:b2:75:3e:4e:e9:71:09:7f:44:
f4:da:26:68:88:6b:83:9b:96:e7:07:a2:ed:59:ef:ce:c5:f5:
59:f0:84:49:79:9f:03:6c:ef:b5:b0:e5:8f:16:a9:c6:8c:f0:
6e:f9:be:7f:f8:23:8c:64:69:13:b5:f1:30:b3:6a:f6:58:a2:
74:47:8b:6d:d1:ac:fb:8a:3c:cd:6d:a8:b1:11:09:f7:f2:e2:
ee:04:94:1b:93:86:f7:18:7f:3f:4b:30:c5:99:1c:cc:10:69:
4f:e0:a4:79:1a:aa:16:dd:de:a4:0e:b3:c3:8e:2c:a4:ad:0f:
fd:0b:e1:9c:7b:86:df:db:c1:44:10:7a:c5:0e:d9:12:e6:ad:
c4:61:87:ac:50:92:46:10:36:49:58:29:a5:5a:ac:1e:b8:94:
10:29:e0:9a:97:a6:c9:40:38:56:ec:98:a2:89:4b:2a:b2:e1:
49:44:ab:9a:f7:77:0e:56:15:3a:13:ef:dd:53:62:7f:8b:98:
81:71:c0:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 22:27:47 2024 by rpki-client on console-fra.rpki-client.org