Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/415B6804D73E11EE8C71C356C4F9AE02.roa
File: 415B6804D73E11EE8C71C356C4F9AE02.roa (raw, json)
Hash identifier: US6wF0KZYKiYHxkQh12dHaoXZ0lm5Ey1wE8dRAB6qsM=
Subject key identifier: 8F:8F:98:2D:62:EE:B0:C5:0D:90:3C:CC:37:3B:5D:DF:46:92:DF:5B
Certificate issuer: /CN=A91E015D/serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4
Certificate serial: 011D
Authority key identifier: 25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/415B6804D73E11EE8C71C356C4F9AE02.roa
Signing time: Mon 25 Mar 2024 05:27:22 +0000
ROA not before: Mon 25 Mar 2024 05:27:22 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 834
IP address blocks: 110.44.108.0/23 maxlen: 23
110.44.110.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Apr 2024 19:13:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 285 (0x11d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E015D/serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4
Validity
Not Before: Mar 25 05:27:22 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=66010b39-a8a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:12:16:ab:ca:6a:f0:fe:47:2e:b2:ef:b5:3e:
9d:15:86:ae:41:53:0a:6b:92:3a:c8:ae:a0:e4:3c:
19:8c:c9:8e:e5:ae:9c:9d:51:23:8d:19:25:e3:55:
f4:ac:05:72:a6:a9:ea:e3:bf:7a:7f:7e:88:11:d8:
02:2d:aa:a9:5a:07:e2:8d:1a:83:ec:9e:9c:11:4d:
a2:d2:3e:b2:d0:0e:21:b8:d1:e9:7d:62:0f:52:2b:
e9:f4:23:2e:d5:a7:75:fb:b1:a1:fe:d3:f0:c1:62:
1d:01:77:62:1b:44:e8:aa:71:d8:e9:39:fd:2e:f6:
60:8d:bb:b5:34:c4:ac:3d:ed:c6:f7:dd:1f:46:d8:
bc:29:20:9f:13:2b:fc:c5:05:75:61:44:0e:e1:83:
ff:b0:14:34:4c:a8:85:d4:51:25:30:03:81:83:48:
6d:98:11:bd:73:a6:55:72:9b:f5:0e:22:44:a5:5c:
9c:fe:9e:6c:4c:15:58:e1:59:96:ef:b6:3d:20:f9:
fa:2b:14:1e:cd:aa:d2:57:90:91:03:e6:74:00:57:
7c:e0:1a:7d:80:e3:c8:5d:2e:70:4b:1c:ec:0e:38:
1c:4e:15:77:51:71:41:ac:7b:83:59:96:3b:d1:7b:
d7:cf:b5:9c:3f:f0:fb:a7:2d:06:a8:1e:d5:ab:5d:
f0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:8F:98:2D:62:EE:B0:C5:0D:90:3C:CC:37:3B:5D:DF:46:92:DF:5B
X509v3 Authority Key Identifier:
keyid:25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/415B6804D73E11EE8C71C356C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
110.44.108.0/22
Signature Algorithm: sha256WithRSAEncryption
29:53:72:11:df:e0:eb:03:ac:bd:21:f8:88:1b:4d:5a:36:d2:
c6:ca:6a:3f:47:a3:a3:c3:01:03:7e:b0:61:bc:06:7a:14:da:
0d:e2:0c:02:ef:53:d4:0c:c8:63:5c:ad:18:a0:72:66:bf:d2:
8d:c2:28:b8:61:6e:cb:0c:ee:f6:02:a0:4a:d4:f2:7e:d2:60:
dc:6e:e7:64:13:e7:26:ad:ab:f7:aa:85:5b:09:2e:ec:05:48:
5c:50:9f:dc:92:f2:d7:70:70:a7:0b:e6:e5:b2:8e:a4:02:6b:
3a:15:2b:e2:90:d0:66:f4:e6:49:95:45:d1:ac:de:49:c2:3e:
06:1b:9b:4f:f3:16:d0:a3:65:05:0d:6a:98:d4:c6:39:76:92:
d0:9d:0d:99:fe:c3:12:9d:b5:a0:61:77:84:f7:53:aa:18:2b:
6c:b0:1c:f2:cc:8f:17:4a:9f:75:72:23:b8:75:08:86:63:7c:
1b:43:9f:d7:82:5a:80:cc:2e:dc:6c:63:67:d8:ba:75:af:fe:
19:bf:e5:49:f8:f5:e1:bb:49:be:dd:94:a8:09:3e:ec:1b:45:
ce:86:f1:68:44:a9:a0:fb:9c:e6:a4:31:26:0a:a8:17:5e:f5:
ba:66:e5:58:03:86:fa:6f:8f:ec:e7:5b:1f:ff:0a:6d:a9:ce:
14:4e:0c:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:32 2024 by rpki-client on console-ams.rpki-client.org