Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/B37A1448F3AA11EEA842D01DC4F9AE02.roa
File: B37A1448F3AA11EEA842D01DC4F9AE02.roa (raw, json)
Hash identifier: nJyiE9UqNv/oQGAVmpSeSDWqTfd2xjM5p+QP8QnUCsg=
Subject key identifier: C3:6F:C3:26:52:10:D2:3D:BF:9F:C3:3C:CD:CA:D1:F3:73:DE:32:27
Certificate issuer: /CN=A91DEF41/serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98
Certificate serial: 04
Authority key identifier: 33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/B37A1448F3AA11EEA842D01DC4F9AE02.roa
Signing time: Sat 06 Apr 2024 00:14:58 +0000
ROA not before: Sat 06 Apr 2024 00:14:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 203.170.90.0/24 maxlen: 24
203.170.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 03:23:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DEF41/serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98
Validity
Not Before: Apr 6 00:14:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66109401-fe44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b3:fe:e2:12:eb:8c:83:b8:30:65:e1:da:ae:
86:4d:e9:61:71:ee:31:54:b5:27:27:34:d7:2d:ab:
45:0d:40:a6:22:c0:cc:31:9b:cb:64:ce:ac:0d:5d:
40:7a:2c:09:df:90:53:b1:28:69:22:60:5c:ad:7f:
ea:78:21:18:f9:75:d9:13:5a:cb:3e:11:00:c6:01:
01:f1:a2:b3:8c:1b:a6:99:9b:91:ab:12:2b:a1:a7:
67:24:82:56:d1:09:b7:98:59:c5:97:9d:2d:1a:21:
ba:5a:b1:25:c0:af:ac:8f:e4:fe:c6:58:da:28:77:
5d:08:ac:32:e6:e2:c8:8a:f4:a1:e3:36:c8:3a:6a:
6c:2d:ab:a5:f8:fe:4b:f2:68:04:03:bb:01:74:d0:
d2:88:4b:c4:de:12:7c:6d:e5:fa:f2:db:26:ed:05:
be:f5:11:03:a8:84:df:e2:01:8e:d4:5d:78:5f:fe:
b7:94:74:81:4e:56:94:36:a9:0d:45:f7:29:72:89:
88:5e:6a:de:d1:bf:2d:41:89:a0:38:53:96:c6:f6:
6f:e0:d8:5e:52:ee:bf:cc:ae:9b:2f:58:7f:f0:b0:
6d:e9:5c:29:e5:45:f5:fb:fc:c0:15:c4:d3:b9:f1:
a5:8a:c9:93:af:fb:37:b1:3a:0f:52:85:4e:b2:ed:
12:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:6F:C3:26:52:10:D2:3D:BF:9F:C3:3C:CD:CA:D1:F3:73:DE:32:27
X509v3 Authority Key Identifier:
keyid:33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/B37A1448F3AA11EEA842D01DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.170.90.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:a6:44:dc:f6:10:10:c3:b9:4e:28:06:cb:94:29:db:15:17:
0f:38:d2:ae:c6:40:7d:b0:75:e6:a2:db:b5:12:84:ae:55:20:
06:56:e2:4d:62:2b:87:64:24:9b:8a:50:01:fe:04:36:51:c1:
fa:67:f7:00:e3:f3:75:e3:31:99:47:df:09:3a:07:0c:41:ce:
ab:90:6f:f8:5c:e2:3a:c5:41:b4:c4:98:14:75:73:26:5e:16:
c0:fa:c7:45:ec:ed:c7:b7:2a:98:de:76:2f:67:88:d9:3b:a9:
26:1b:56:e6:f9:94:59:e0:54:67:f3:d8:8f:35:8b:8d:95:30:
4c:a7:d3:46:58:ef:b8:35:81:65:5b:fe:93:e0:b7:14:cb:89:
df:13:1c:bd:35:9e:15:e3:27:ef:5d:0c:17:b1:27:24:ef:5a:
48:b8:0e:f1:5f:28:02:5c:86:a5:76:22:99:5f:93:c0:f2:6b:
01:be:2b:d3:58:aa:c9:d2:87:a3:b0:6c:ae:8b:37:11:99:9d:
5f:23:02:22:bb:4e:4e:1d:98:30:bf:d1:42:b0:6a:41:df:37:
65:9c:1a:87:b0:db:c3:a4:e9:8a:e8:51:8c:a7:6e:6f:5d:e7:
28:b4:82:fe:e9:c9:da:ec:83:38:b1:53:ca:9e:51:10:55:a9:
99:ca:ed:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 6 06:27:00 2024 by rpki-client on console-ams.rpki-client.org