Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/C47BE4C8AA2C11EE994E981EC4F9AE02.roa
File: C47BE4C8AA2C11EE994E981EC4F9AE02.roa (raw, json)
Hash identifier: ZSdoiJ++CyVN6XWeCVbOl8v8l6oN/e/LZieX1L0Y0EI=
Subject key identifier: B6:34:C5:24:1D:55:5B:15:08:79:0B:58:5E:F5:2C:10:A5:C3:53:A6
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0EDC
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/C47BE4C8AA2C11EE994E981EC4F9AE02.roa
Signing time: Wed 03 Jan 2024 11:39:35 +0000
ROA not before: Wed 03 Jan 2024 11:39:35 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 202972
IP address blocks: 113.203.233.0/24 maxlen: 24
180.178.185.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
223.29.229.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3804 (0xedc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jan 3 11:39:35 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65954776-85f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ee:2d:c3:ec:9a:52:4a:be:f9:86:b3:90:94:
e5:46:00:ea:ea:a8:fa:c9:bf:95:43:7f:72:a5:2f:
30:3a:c1:59:58:e5:3c:72:f9:cc:1b:02:23:ea:c2:
ac:43:17:ae:60:f5:ca:a6:fa:ca:da:9e:b2:75:89:
23:68:c9:90:9a:0c:8e:7d:a2:6e:05:dc:94:72:3c:
e3:cb:e2:28:2a:24:69:b0:29:13:6e:0c:2f:42:1d:
90:4e:5e:8f:77:a3:65:3b:53:28:94:f2:4c:5d:8b:
c7:8a:89:f6:aa:81:3f:ba:89:28:47:db:6f:f8:30:
9c:9e:14:06:26:63:7b:3d:ac:5a:4a:b8:68:72:68:
4f:2d:b5:1a:fd:f3:2f:e2:21:0e:37:1c:18:7b:84:
29:dc:3b:43:7c:54:af:11:e4:a9:d3:d4:7d:dc:ae:
88:42:af:87:10:bd:31:a8:50:05:cb:44:44:91:1b:
f9:9f:0d:75:ca:93:02:d0:3b:b4:3c:7e:93:76:06:
24:00:c9:16:7c:47:c6:d4:f1:ff:f6:8d:dd:09:fb:
42:fa:8c:62:ba:91:fa:db:e0:df:3f:e2:08:69:53:
44:bb:f4:dd:88:45:4d:f9:a9:f5:96:9b:55:8d:69:
48:b0:27:44:d9:2c:de:83:4f:1b:0d:60:e0:bb:57:
5c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:34:C5:24:1D:55:5B:15:08:79:0B:58:5E:F5:2C:10:A5:C3:53:A6
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/C47BE4C8AA2C11EE994E981EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.233.0/24
180.178.185.0/24
180.178.189.0/24
223.29.229.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:00:b3:93:79:28:44:5a:77:f2:01:d2:5a:b2:55:d3:3e:e7:
c3:8d:0a:41:78:bb:aa:d1:ee:b0:30:e3:6e:aa:17:cc:7b:38:
d8:ae:8c:67:66:ab:7c:b1:1e:b2:3b:1f:59:29:b7:25:d0:9d:
00:52:b5:74:13:71:84:22:3b:16:8a:65:ca:59:fc:a2:73:0c:
55:30:39:d6:42:03:3f:7f:41:7f:31:3e:c8:ab:f4:4c:e6:dc:
c7:16:be:62:8c:dc:92:49:0e:23:18:7a:7b:5a:34:b8:d1:27:
19:47:0f:d5:6a:b9:65:0f:3f:e7:30:5a:04:73:da:49:36:2b:
e2:5b:22:6e:9d:1e:6a:d8:0c:f7:c5:b1:17:0e:2d:d5:4d:9a:
0c:a6:5d:aa:67:36:f8:8f:a9:75:30:c3:2d:28:4a:f6:21:6b:
3c:2f:e3:67:d4:2f:8e:59:cb:c5:30:5a:64:c1:32:f9:6a:e4:
16:f8:1e:91:a2:62:4b:72:23:0e:c8:11:b7:cb:4e:5a:c5:40:
bb:9c:ee:17:65:95:27:2b:5d:25:46:c8:99:61:8b:78:fa:83:
4d:4a:ed:fd:33:6f:4c:ed:e0:64:26:fe:d8:fd:03:54:38:bc:
9c:1b:cf:3a:3a:bb:ca:c3:62:b0:f3:35:71:dd:70:9f:2b:ce:
cb:51:9e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 5 20:14:51 2024 by rpki-client on console-fra.rpki-client.org