Route Origin Authorization
$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa
File: 3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa (raw, json)
Hash identifier: T7la58STSjvGF11HZncIqiZlj89Ai0sihEWcu8eQJCc=
Subject key identifier: B1:56:72:C1:EA:A4:1D:6A:B4:6E:A2:15:BC:A6:B4:35:83:7A:B7:A4
Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1
Certificate serial: 543148EF2AF03CED2271DC65B6DA84786553C3C8
Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer
Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa
Signing time: Fri 22 Nov 2024 00:00:01 +0000
ROA not before: Thu 21 Nov 2024 23:55:01 +0000
ROA not after: Fri 21 Nov 2025 00:00:01 +0000
asID: 24021
IP address blocks: 203.147.108.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 23 Nov 2024 12:00:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:31:48:ef:2a:f0:3c:ed:22:71:dc:65:b6:da:84:78:65:53:c3:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1
Validity
Not Before: Nov 21 23:55:01 2024 GMT
Not After : Nov 21 00:00:01 2025 GMT
Subject: CN=B15672C1EAA41D6AB46EA215BCA6B435837AB7A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:05:46:9c:14:c1:09:e4:1b:75:66:d6:5a:e7:
69:b2:0c:41:c9:3f:bc:80:e1:78:3d:fe:9b:69:ae:
3f:cc:72:d1:03:cb:a0:b4:fe:a3:59:3a:a9:9b:84:
2f:ed:68:80:21:60:b4:da:06:f6:d3:c3:45:17:de:
29:87:f6:86:31:b8:7d:9c:dc:34:d2:10:3d:ee:01:
d1:91:48:1c:c4:ba:08:0f:f4:4a:26:04:2a:94:5d:
05:7c:89:90:ed:d5:7e:1b:ac:3c:69:56:ea:71:69:
e3:37:2a:b0:66:39:a0:26:e6:c0:ae:f0:4f:05:0c:
a7:a3:fb:c3:3f:c0:a4:0f:ea:3c:18:fa:71:fb:d3:
42:02:e4:01:5a:38:8d:d5:ea:78:4c:c5:90:54:cc:
9b:fe:35:5e:db:90:1e:03:bc:2e:6a:28:14:d0:cc:
ac:28:ff:9b:91:71:59:31:bd:fd:70:50:d1:04:98:
74:2b:f6:ec:d3:32:52:58:8d:42:6b:7b:96:32:76:
c7:2d:6d:47:06:ff:a6:c5:57:67:b0:fd:5d:f2:68:
e6:5d:35:1c:c3:30:80:9c:89:3e:a4:de:52:be:7a:
2e:c4:41:b9:17:1e:78:eb:b6:d2:05:15:0d:72:91:
fa:26:af:29:53:1e:a3:4c:c5:7f:fc:76:e2:03:be:
c2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:56:72:C1:EA:A4:1D:6A:B4:6E:A2:15:BC:A6:B4:35:83:7A:B7:A4
X509v3 Authority Key Identifier:
keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.147.108.0/23
Signature Algorithm: sha256WithRSAEncryption
76:f1:fb:03:90:19:9e:1e:ca:14:0b:19:9f:eb:9d:e9:50:8e:
b2:cb:5b:52:6a:bf:34:a0:9a:62:b8:66:6b:77:7f:33:54:fc:
eb:97:f3:22:01:22:b8:d1:41:eb:ec:19:51:a5:a0:2d:d3:5b:
d0:d6:8b:e1:f4:97:cb:69:77:14:bf:dd:dc:58:fa:5d:22:df:
8a:56:1d:47:e7:fe:58:35:3e:96:08:29:63:cf:8d:b0:18:18:
29:68:c4:2c:df:5e:a1:99:5e:83:1c:a0:1c:46:da:a9:13:02:
44:08:68:c0:77:2e:65:1a:98:f1:b6:77:be:34:0a:be:60:bd:
a2:29:95:b8:ae:9c:df:af:60:c7:8c:8f:21:6f:1c:84:f9:31:
e5:aa:95:cb:76:73:33:db:58:30:c1:a8:1b:b1:a3:33:61:fb:
4e:5e:60:f2:56:91:4f:87:99:ea:a8:e7:fb:e8:3e:79:9c:e4:
66:05:8f:a4:10:66:31:0f:fa:cf:f6:02:e8:35:3b:58:cc:35:
9f:60:ad:c9:02:17:1e:7d:8d:66:ee:df:5c:5e:8d:53:b3:b4:
e8:9e:13:29:d4:58:e2:f4:c7:d9:b5:01:29:42:88:4f:14:38:
87:49:94:26:ce:c3:53:69:ba:db:fa:68:67:94:bf:12:86:24:
d3:f0:cb:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 13:18:14 2024 by rpki-client on console-fra.rpki-client.org