Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/134DA870DC1611ECAACFC563C4F9AE02.roa
File: 134DA870DC1611ECAACFC563C4F9AE02.roa (raw, json)
Hash identifier: y3A+47gLRsyN8TVL0KcE7fMPSBUZgLpuiO/nS+4NzXo=
Subject key identifier: 69:AB:2B:6F:98:75:46:E4:56:18:E6:3D:A8:3C:F3:9E:8F:8D:53:28
Certificate issuer: /CN=A91E91BC/serialNumber=6D5D50E88B9D65E8AFDA28C2CEA6150127038608
Certificate serial: 0271
Authority key identifier: 6D:5D:50:E8:8B:9D:65:E8:AF:DA:28:C2:CE:A6:15:01:27:03:86:08
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bV1Q6IudZeiv2ijCzqYVAScDhgg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/134DA870DC1611ECAACFC563C4F9AE02.roa
Signing time: Wed 05 Jun 2024 04:31:43 +0000
ROA not before: Wed 05 Jun 2024 04:31:43 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 38220
IP address blocks: 203.14.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Jul 2024 06:22:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 625 (0x271)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E91BC
Validity
Not Before: Jun 5 04:31:43 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=665fea2f-51ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:52:90:fc:37:cc:9f:0d:f0:c4:ca:de:19:0b:
36:d3:04:19:c2:08:9b:0e:06:50:6c:db:56:c7:2c:
50:f9:75:19:79:40:a9:51:bf:ca:54:97:91:2b:24:
4e:64:2f:a3:c3:5a:f3:50:76:fe:43:6a:9a:76:dd:
e8:7c:fe:e4:9e:df:a6:ad:67:a1:e1:49:3c:f9:8c:
04:f3:b8:08:74:f6:d6:69:72:35:b7:2b:9b:70:b2:
01:6b:fa:8d:f3:64:d4:be:6d:29:c1:16:5b:00:ec:
14:c7:ab:b1:04:5d:07:fe:fe:59:58:dd:29:ba:1b:
de:2d:f6:c4:21:7a:e5:e0:90:76:ae:c6:6b:6b:4b:
d4:28:73:8f:a3:9e:3a:da:d0:9e:bf:2a:3a:9c:71:
b3:b6:86:18:4d:c7:22:6d:0e:5a:de:99:1e:f1:8a:
7e:58:bb:d3:3c:09:68:f5:2e:f9:a4:e0:40:53:05:
72:8c:ae:4f:76:80:68:14:ad:cb:66:1d:1c:bb:a6:
71:2a:a3:f4:9c:0c:19:74:45:08:40:c3:af:9f:26:
04:c3:e1:bc:7c:5b:5f:83:06:4c:ec:41:c0:75:37:
9a:27:5a:06:a9:34:a7:76:dc:de:29:28:c9:f2:f8:
f2:f0:7e:06:ab:bd:57:84:0a:10:f5:5b:16:85:7f:
04:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:AB:2B:6F:98:75:46:E4:56:18:E6:3D:A8:3C:F3:9E:8F:8D:53:28
X509v3 Authority Key Identifier:
keyid:6D:5D:50:E8:8B:9D:65:E8:AF:DA:28:C2:CE:A6:15:01:27:03:86:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/bV1Q6IudZeiv2ijCzqYVAScDhgg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bV1Q6IudZeiv2ijCzqYVAScDhgg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/AE44D24ADBE911EC95110515C4F9AE02/134DA870DC1611ECAACFC563C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.14.153.0/24
Signature Algorithm: sha256WithRSAEncryption
44:f0:fb:11:c6:5b:fc:04:f4:49:c7:3b:76:82:36:89:26:08:
65:d1:38:82:f2:37:5e:6a:ca:09:91:ba:4d:19:43:f6:cf:02:
96:a4:95:10:6b:56:b4:4e:49:84:71:d3:ef:2e:64:59:1a:88:
bc:3a:30:c3:6a:dd:42:ac:40:02:62:5f:70:39:0d:15:5a:34:
12:bb:82:c8:4e:f8:3f:65:be:a7:25:66:85:c3:2b:6c:a6:c7:
31:ac:9e:f2:33:ac:72:53:38:b6:b9:4b:31:97:69:29:3e:ac:
26:4b:c7:3f:4c:b2:b5:e8:58:5c:49:d7:5c:2c:4e:72:a2:a8:
f7:61:62:1a:0d:7e:43:62:41:3e:c7:b4:95:f5:5c:d1:52:4a:
e8:de:db:d6:cf:fd:d6:18:bc:7f:11:7a:7d:30:2a:25:ab:0d:
2f:cb:44:bb:5c:cd:d2:6b:18:62:8c:e9:3c:43:b4:33:e4:4c:
5e:8a:d5:ef:3f:4e:dc:42:94:63:e7:e5:8c:7e:c9:57:00:83:
04:7c:7a:c5:31:c7:c1:7d:ab:12:1f:c0:02:93:da:5f:8d:65:
d0:e1:7b:2c:b6:17:ba:c0:31:6c:f7:10:ec:57:1d:87:42:4d:
7a:48:af:6f:a9:f3:cc:c3:94:19:9a:f9:27:37:a3:b0:e2:78:
e9:29:09:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:57:47 2025 by rpki-client