Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/F9D55614579211EE8190645BC4F9AE02.roa
File: F9D55614579211EE8190645BC4F9AE02.roa (raw, json)
Hash identifier: t2W8O2AZ8dI2QebcbsbQXBhr1T3xMxFVzSd2BFx9BIk=
Subject key identifier: 77:4D:95:F1:E2:7C:64:37:D3:24:1F:76:BD:24:C1:10:34:F2:0F:C9
Certificate issuer: /CN=A91DF93A/serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260
Certificate serial: 0766
Authority key identifier: 07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/F9D55614579211EE8190645BC4F9AE02.roa
Signing time: Mon 23 Oct 2023 02:21:36 +0000
ROA not before: Mon 23 Oct 2023 02:21:36 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 21859
IP address blocks: 164.90.70.0/24 maxlen: 24
164.90.71.0/24 maxlen: 24
164.90.73.0/24 maxlen: 24
164.90.75.0/24 maxlen: 24
164.90.97.0/24 maxlen: 24
164.90.103.0/24 maxlen: 24
164.90.104.0/24 maxlen: 24
164.90.112.0/24 maxlen: 24
164.90.123.0/24 maxlen: 24
164.90.124.0/24 maxlen: 24
164.90.127.0/24 maxlen: 24
202.63.36.0/24 maxlen: 24
202.63.39.0/24 maxlen: 24
202.63.40.0/24 maxlen: 24
202.63.50.0/24 maxlen: 24
202.168.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Oct 2023 03:41:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1894 (0x766)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DF93A/serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260
Validity
Not Before: Oct 23 02:21:36 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=6535d8b0-394f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:c2:80:2b:cb:08:54:29:a9:4f:6e:9e:a5:2a:
0e:44:aa:09:93:e5:16:94:d5:2f:cb:a1:11:28:b5:
83:10:98:44:12:62:53:53:1e:d8:fb:7a:26:02:8d:
e9:f4:ec:d9:4a:36:14:ed:bf:2a:35:41:9a:92:e3:
96:e5:6d:6d:1a:f9:5a:26:f3:27:b4:c1:5a:60:ee:
97:2e:48:66:65:ac:33:02:49:15:da:8d:5a:6b:f8:
da:1a:cb:f8:c2:78:8a:ff:b7:f1:fb:93:c4:16:f7:
de:81:ff:f9:68:52:9d:39:94:6a:21:af:e8:b6:2e:
d0:2d:6e:a4:8b:c4:5d:fc:34:91:18:84:68:e3:6b:
d9:41:0b:c3:96:66:38:d3:f2:03:3d:33:b3:ec:14:
e9:e2:3f:60:4c:c8:9a:7a:b8:54:79:22:96:b8:6e:
85:d5:7c:1c:7f:4c:2e:f2:16:cd:11:f7:5c:b6:31:
87:2f:1c:8c:d9:af:a5:66:e7:14:74:6d:78:01:ec:
39:35:b5:e4:ef:2e:82:35:9b:ec:d9:5d:3d:cc:61:
e2:82:88:82:55:03:f9:db:94:4c:c8:32:78:66:14:
9f:a6:33:3e:af:7c:c6:3d:ad:2a:89:ca:10:e9:7a:
c8:a2:a1:a2:5b:f2:f5:af:32:f9:38:99:41:cc:af:
1c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:4D:95:F1:E2:7C:64:37:D3:24:1F:76:BD:24:C1:10:34:F2:0F:C9
X509v3 Authority Key Identifier:
keyid:07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/F9D55614579211EE8190645BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
164.90.70.0/23
164.90.73.0/24
164.90.75.0/24
164.90.97.0/24
164.90.103.0-164.90.104.255
164.90.112.0/24
164.90.123.0-164.90.124.255
164.90.127.0/24
202.63.36.0/24
202.63.39.0-202.63.40.255
202.63.50.0/24
202.168.111.0/24
Signature Algorithm: sha256WithRSAEncryption
94:14:6a:c9:f7:c5:cb:f2:16:15:be:ee:b3:70:95:55:8d:22:
d8:7a:af:02:ff:ed:ad:ad:2a:18:d4:3f:ee:ba:25:d5:20:e8:
f5:18:78:bb:73:d5:52:b2:bb:a3:3e:13:f1:b7:d8:52:e8:18:
b6:6e:e7:f4:08:61:e6:41:86:3c:a2:c9:9f:ef:3b:4f:44:8b:
7b:8c:31:3e:5a:67:9f:31:b5:52:72:eb:f5:78:01:fb:4e:75:
a4:5c:76:bf:58:67:c1:6c:35:9a:e2:6c:c5:89:93:99:84:40:
5b:57:a3:42:fa:e1:ce:65:a0:60:fa:51:b8:3e:74:a9:82:7f:
a8:b2:dd:f7:ff:0b:2f:b4:3f:3c:10:2d:c6:e4:19:f4:91:b7:
37:15:a3:5e:d0:05:28:ef:6a:7e:12:4b:33:b1:73:50:41:82:
1d:dc:d3:11:d5:d8:bd:4c:4b:fb:26:ce:2f:83:30:92:ec:a5:
63:14:aa:6f:21:d4:22:6c:d6:d2:96:a4:be:d0:ac:74:76:41:
98:fc:17:75:0d:a1:b7:23:d1:39:1e:f5:71:8b:fe:87:49:91:
3f:bd:f7:5e:2e:3d:8a:19:be:4b:fe:4e:f2:98:6d:10:37:f0:
3c:74:ef:ff:81:39:c6:fb:65:95:f8:af:cf:55:36:43:67:a7:
67:46:55:a1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:43 2024 by rpki-client on console-fra.rpki-client.org