Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/603F991EFBC611EEB9955A21C4F9AE02.roa
File: 603F991EFBC611EEB9955A21C4F9AE02.roa (raw, json)
Hash identifier: wG2urHwTABIry9jDZullyetIZxQvBkB+cmiuUoPzLDY=
Subject key identifier: A9:A6:C7:DA:C0:1B:EF:4F:AA:A1:AE:62:D3:92:09:3A:1B:F5:80:69
Certificate issuer: /CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190
Certificate serial: 62
Authority key identifier: AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/603F991EFBC611EEB9955A21C4F9AE02.roa
Signing time: Tue 21 May 2024 05:46:13 +0000
ROA not before: Tue 21 May 2024 05:46:13 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 56264
IP address blocks: 210.79.180.0/24 maxlen: 24
210.79.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jun 2024 12:41:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98 (0x62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190
Validity
Not Before: May 21 05:46:13 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=664c3525-0b23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:fd:ce:06:20:4e:46:71:43:7a:1e:d8:9d:c9:
55:14:e9:6c:e6:30:27:0a:b5:ce:42:75:a2:69:3c:
95:85:08:b0:c4:bf:d5:74:14:92:22:15:6c:07:8a:
31:de:b8:99:06:db:ed:36:1b:2d:79:5a:e9:c5:b1:
e6:e4:2e:0b:f0:09:87:a0:78:82:71:29:fa:5e:0f:
76:c8:57:77:f4:68:f5:a3:6f:57:7a:68:34:91:07:
64:f2:11:03:30:54:27:24:fb:8b:1f:5a:72:b6:1f:
fa:c0:16:86:6d:31:2d:c7:af:c1:cf:02:0f:d8:b0:
ab:7a:7e:84:71:95:a3:97:c9:cc:14:7b:1f:a5:60:
29:70:16:f0:9e:dd:ce:3a:fb:5b:5e:05:c2:a4:90:
fd:06:cc:f9:82:60:c7:08:d6:1c:d0:b1:0b:96:d4:
1a:c7:d5:a3:1e:a1:e4:01:cc:93:77:9d:f5:82:ad:
5a:53:9f:29:91:c0:f3:85:7c:b1:b6:d9:1b:0e:c4:
bf:54:39:f3:96:ee:5b:d1:55:0e:49:33:db:aa:d9:
91:a4:52:da:25:4e:7e:e5:98:b4:86:b7:5d:44:ff:
57:43:33:d9:10:72:59:f1:ca:da:9a:80:48:a1:bb:
d5:90:ca:d4:5e:38:ff:c2:de:f2:84:a8:c9:cb:f2:
89:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:A6:C7:DA:C0:1B:EF:4F:AA:A1:AE:62:D3:92:09:3A:1B:F5:80:69
X509v3 Authority Key Identifier:
keyid:AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/603F991EFBC611EEB9955A21C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.79.180.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:e8:1b:2a:1e:a2:af:4a:8c:74:3f:2a:2d:dd:ab:b6:30:4e:
8a:e5:da:f9:a0:d4:e9:f4:9f:67:a4:6f:4c:9c:6b:bc:f5:9f:
6b:e0:92:be:60:79:1f:bf:f4:fd:88:04:5e:7c:df:2f:74:c2:
31:80:19:a5:7d:78:b8:c2:64:ca:81:e2:49:75:4b:e8:0f:01:
af:1f:61:b9:b9:b4:81:d4:f9:cd:5b:06:1c:90:4b:0d:de:b1:
8d:bb:17:ff:ec:f1:fb:5d:6b:8f:d0:56:f7:d2:0d:27:ad:9e:
c2:92:d6:e0:7f:bb:90:ae:41:57:b9:a1:9b:b1:44:92:f6:6a:
5c:41:e0:5e:d9:7c:69:67:4f:ed:84:8c:93:da:a9:ca:14:fb:
9f:58:05:78:7a:11:6a:ec:2b:06:a2:b0:92:df:4b:15:5e:41:
8c:6c:4a:70:38:b6:bd:cb:87:8b:36:04:16:fd:f7:9b:43:89:
99:fc:75:6b:65:10:20:06:e6:96:58:70:8d:ba:67:06:3a:39:
9a:55:c0:20:43:f5:84:26:fc:00:0d:52:3c:67:7e:50:c0:13:
bd:90:db:10:55:6f:dd:23:82:db:d1:df:01:c9:51:a5:d1:80:
46:14:b5:47:82:1c:bc:f2:35:43:fe:a8:bd:e7:3f:09:1e:88:
d8:2c:c0:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:32 2024 by rpki-client on console-ams.rpki-client.org