Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/55E17360BD9E11ECAB72B033C4F9AE02.roa
File: 55E17360BD9E11ECAB72B033C4F9AE02.roa (raw, json)
Hash identifier: oMNHOGlmMX9cNHyl1IoxFfJBgaJ+NfQ8nhmrJmCAspM=
Subject key identifier: 83:94:A9:4D:7B:4B:55:B3:7C:E7:01:26:50:7E:B5:31:37:22:36:08
Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Certificate serial: 342C
Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/55E17360BD9E11ECAB72B033C4F9AE02.roa
Signing time: Sat 06 May 2023 14:50:37 +0000
ROA not before: Sat 06 May 2023 14:50:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 141342
IP address blocks: 115.186.72.0/22 maxlen: 24
115.186.94.0/24 maxlen: 24
115.186.124.0/24 maxlen: 24
117.102.11.0/24 maxlen: 24
117.102.14.0/24 maxlen: 24
117.102.15.0/24 maxlen: 24
117.102.20.0/24 maxlen: 24
117.102.22.0/24 maxlen: 24
117.102.23.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13356 (0x342c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Validity
Not Before: May 6 14:50:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6456693d-b903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:93:f7:f7:61:6b:78:0d:23:40:82:a2:d7:13:
83:77:fe:85:2f:6e:87:ef:66:0f:f3:bb:a9:42:b6:
f6:de:c2:08:a1:07:22:37:69:61:2a:5b:9f:92:05:
59:f3:af:98:83:40:11:a1:d7:20:2b:f1:58:90:45:
8a:7d:7b:d9:cb:56:fb:2b:0b:b9:c4:4d:d0:00:88:
9e:bf:35:81:0e:4b:7a:75:e4:5d:93:59:12:f6:a4:
23:53:23:99:90:50:65:f6:18:49:e3:31:92:8d:9b:
ff:bc:b9:dd:0e:b5:18:17:79:e6:d6:fc:da:21:85:
64:cf:3e:7f:55:3c:2a:67:90:2f:73:8c:46:dc:a3:
fd:1a:a7:62:6e:3e:13:51:8d:7c:45:0b:8e:bd:53:
54:26:9a:d4:dc:ad:26:81:60:06:56:5d:7f:35:a3:
17:a7:49:7c:df:af:f4:ee:81:cb:5b:64:12:70:20:
85:9b:a0:11:6c:a1:e2:70:96:f6:1e:f9:36:3a:60:
71:4a:d3:51:6a:d7:04:05:7a:d2:20:36:b8:18:ce:
b1:d1:24:37:1c:23:b3:a6:e3:8f:1a:13:89:01:f2:
4b:02:3c:07:7c:21:08:f1:55:ca:13:be:a7:9a:17:
81:f8:61:55:cd:20:f5:82:b4:75:9d:20:3c:31:16:
f5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:94:A9:4D:7B:4B:55:B3:7C:E7:01:26:50:7E:B5:31:37:22:36:08
X509v3 Authority Key Identifier:
keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/55E17360BD9E11ECAB72B033C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.186.72.0/22
115.186.94.0/24
115.186.124.0/24
117.102.11.0/24
117.102.14.0/23
117.102.20.0/24
117.102.22.0/23
Signature Algorithm: sha256WithRSAEncryption
75:96:5e:2a:61:70:28:a2:0c:17:d2:fb:8d:00:58:87:97:d9:
ff:da:1b:e7:10:c7:7a:38:89:a5:40:01:75:46:e9:73:b0:30:
69:69:8e:a0:11:2e:a8:22:82:38:5b:b1:6d:aa:ff:e3:8a:5a:
f0:bc:6c:5e:45:85:a7:4b:8e:15:c3:3a:be:fa:39:da:ed:04:
12:f8:0e:34:67:e2:f8:73:60:24:e5:52:3d:79:45:ad:a0:02:
3b:49:76:84:12:b9:0c:8f:4c:48:dd:a9:c1:24:07:ac:ae:ef:
2e:18:dd:e5:aa:f7:8b:3c:1a:d5:c7:42:b7:cb:89:bd:4f:b1:
56:4c:d2:09:6d:c9:63:e4:ad:d2:ca:9d:c1:28:ed:e2:ea:de:
38:aa:7f:0c:04:74:3b:83:38:b7:2d:3a:b1:29:2a:66:b7:01:
bc:60:48:f6:05:96:09:78:32:c0:2c:02:29:b1:63:cf:8b:66:
bc:d7:69:b9:3d:98:81:c4:eb:13:6b:86:f2:c5:3b:3a:b0:75:
fb:ef:2f:13:28:fc:2b:ac:29:f8:7c:7b:23:0d:23:42:86:4a:
6d:88:c4:e6:1e:1a:90:ed:dc:f5:4d:9c:a8:98:34:7b:ac:0f:
d4:36:d1:68:be:fc:0b:5e:ed:47:69:7d:da:55:ae:58:a2:27:
66:b4:e8:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:34 2023 by rpki-client on console.sobornost.net