Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/BC180DDA747A11EE9350D44FC4F9AE02.roa
File: BC180DDA747A11EE9350D44FC4F9AE02.roa (raw, json)
Hash identifier: 3t+b3kvDP8I8QXMcKi24r5Ahh11FPu7g7VMMNeZHx38=
Subject key identifier: 49:38:6B:DE:89:1F:D3:A0:68:57:33:C8:8A:FF:F9:28:30:A2:83:34
Certificate issuer: /CN=A91DF93A/serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260
Certificate serial: 076E
Authority key identifier: 07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/BC180DDA747A11EE9350D44FC4F9AE02.roa
Signing time: Fri 27 Oct 2023 03:41:39 +0000
ROA not before: Fri 27 Oct 2023 03:41:39 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 21859
IP address blocks: 164.90.70.0/24 maxlen: 24
164.90.71.0/24 maxlen: 24
164.90.73.0/24 maxlen: 24
164.90.75.0/24 maxlen: 24
164.90.97.0/24 maxlen: 24
164.90.103.0/24 maxlen: 24
164.90.104.0/24 maxlen: 24
164.90.112.0/24 maxlen: 24
164.90.123.0/24 maxlen: 24
164.90.124.0/24 maxlen: 24
164.90.127.0/24 maxlen: 24
202.63.36.0/24 maxlen: 24
202.63.39.0/24 maxlen: 24
202.63.40.0/24 maxlen: 24
202.168.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 02:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1902 (0x76e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DF93A/serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260
Validity
Not Before: Oct 27 03:41:39 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=653b3172-9dcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:41:53:f8:5e:ad:b4:90:8b:9c:d6:d8:88:86:
08:27:82:d0:0a:5d:6a:ed:be:79:05:2e:60:05:33:
da:03:a5:14:01:38:53:81:1c:19:1d:f1:df:47:8e:
3a:46:5f:68:d3:15:39:58:b6:e2:e4:32:a1:73:13:
8b:ad:37:74:bf:b4:be:57:a5:7a:17:d3:a9:1d:da:
aa:7a:5c:e0:ac:7d:23:33:bc:03:74:ed:8c:1d:65:
db:64:cd:73:40:93:b2:3b:73:cc:ff:18:95:b0:6f:
3b:ac:e0:db:35:bf:a3:86:ea:00:6f:94:b7:02:15:
d1:ef:11:e6:57:23:40:16:33:ee:86:2e:47:17:ce:
ec:3b:89:74:3e:bb:42:cc:e9:f3:d9:4c:5c:dd:4e:
99:99:4d:e4:e7:56:7c:42:ce:be:80:e6:cd:98:b2:
74:1f:ad:d6:4b:70:67:3f:93:8a:49:cd:55:27:8d:
44:8a:81:a6:80:7d:76:54:eb:ca:23:3a:83:83:23:
c7:fe:22:7c:29:3d:d6:25:e1:04:7f:27:98:95:1f:
92:16:fa:f6:dc:e2:dd:27:50:93:9b:4b:ce:1c:32:
1e:18:c9:05:96:df:c3:37:9a:30:2f:fa:ae:10:9f:
db:1d:27:c9:76:b1:08:8e:14:eb:1c:d1:23:df:20:
05:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:38:6B:DE:89:1F:D3:A0:68:57:33:C8:8A:FF:F9:28:30:A2:83:34
X509v3 Authority Key Identifier:
keyid:07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/BC180DDA747A11EE9350D44FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
164.90.70.0/23
164.90.73.0/24
164.90.75.0/24
164.90.97.0/24
164.90.103.0-164.90.104.255
164.90.112.0/24
164.90.123.0-164.90.124.255
164.90.127.0/24
202.63.36.0/24
202.63.39.0-202.63.40.255
202.168.111.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:6a:2c:97:dd:6a:27:b9:73:14:82:03:67:f4:53:6b:e6:8c:
3f:54:76:bd:39:73:40:1f:79:3b:90:c1:1d:98:13:89:0d:c4:
50:c9:a9:6e:67:bb:b1:87:a7:2c:19:16:d0:3c:c6:10:bd:ec:
4b:59:07:eb:bd:70:73:ff:9e:0d:b6:b7:77:91:5b:40:d2:57:
53:65:ca:87:df:d5:64:f1:aa:68:fd:06:77:c2:d2:33:5a:c6:
a1:49:91:48:a2:8e:f1:df:c8:97:58:77:d1:97:8a:e6:36:cd:
d0:29:50:7c:b9:61:37:64:25:58:23:f6:69:d1:e5:6d:8b:62:
63:8e:73:bb:36:74:6e:e3:61:ab:95:b4:58:01:10:b5:59:14:
58:f5:f0:05:b0:a6:f4:90:dc:82:6d:95:1b:02:82:66:05:4a:
14:98:ab:b2:81:b9:23:9d:66:ed:50:95:b6:67:1e:93:ca:17:
20:5d:c3:3a:ff:2b:c8:2c:f8:46:2c:91:84:c6:fb:72:e5:03:
6c:11:3c:df:10:24:4d:d0:e5:c7:c2:b6:c3:bc:eb:7d:fc:25:
b8:0f:4e:d5:53:08:1b:15:03:89:45:73:f0:c2:1c:13:44:03:
95:e5:d8:06:bd:0a:56:f5:19:c9:da:63:73:81:01:9a:42:41:
70:e0:6e:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:31 2024 by rpki-client on console-ams.rpki-client.org