Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/5F915A8A58BE11EE99A09F38C4F9AE02.roa
File: 5F915A8A58BE11EE99A09F38C4F9AE02.roa (raw, json)
Hash identifier: bQseX17jclnMoDi4LRpFfQ4E4gBakrSTPw7uG/trGEY=
Subject key identifier: B5:5D:E1:35:96:74:2D:E8:C2:C9:86:68:38:A7:46:4A:CF:6C:3F:7E
Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
Certificate serial: 06AC
Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/5F915A8A58BE11EE99A09F38C4F9AE02.roa
Signing time: Thu 26 Oct 2023 00:25:50 +0000
ROA not before: Thu 26 Oct 2023 00:25:50 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 5065
IP address blocks: 202.139.232.0/22 maxlen: 24
202.139.240.0/22 maxlen: 24
202.139.244.0/22 maxlen: 24
203.147.224.0/23 maxlen: 24
203.147.232.0/23 maxlen: 24
203.147.234.0/23 maxlen: 24
203.147.238.0/23 maxlen: 24
203.147.252.0/22 maxlen: 24
210.247.128.0/21 maxlen: 24
210.247.160.0/21 maxlen: 24
210.247.192.0/22 maxlen: 24
210.247.208.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Feb 2024 23:33:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1708 (0x6ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
Validity
Not Before: Oct 26 00:25:50 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=6539b20e-3c91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1c:e7:5a:62:c5:f0:d9:56:db:ed:db:ce:7b:
69:6d:0b:c9:12:8d:d9:86:ef:d9:b3:f6:09:fc:5a:
e1:58:9b:45:08:1e:23:0d:49:55:72:75:b7:60:a2:
6a:e8:93:84:51:fb:89:a8:8d:85:04:b6:bd:15:ab:
fa:dc:30:b8:72:50:09:67:61:f4:15:06:1a:10:ad:
f4:f7:e5:7b:55:82:05:df:a2:b8:ef:51:52:b0:1c:
41:b6:a1:81:7d:2f:d2:79:32:ad:d9:6c:66:b7:3f:
3f:ce:30:3d:b7:5e:74:dd:e8:73:3a:24:52:35:33:
bc:03:bd:83:25:72:7f:9a:52:63:59:27:a2:cd:bc:
06:51:ba:07:83:3b:b6:01:6c:c9:e9:16:ec:b5:f1:
46:36:8b:93:a9:a0:95:31:af:70:5f:3e:5d:ea:6b:
ec:83:3e:0c:20:e7:f0:bb:e3:ac:3a:2b:1f:05:38:
f5:c7:11:66:ed:fc:22:6c:2b:66:20:73:2b:d0:b6:
e1:37:86:e9:fe:11:b1:9a:56:31:57:0d:c1:6f:bd:
4c:a3:ea:95:6a:27:7b:4a:57:ed:a7:96:24:10:60:
a7:fb:42:b3:32:91:3c:3a:bc:ce:2d:11:fe:c8:a4:
4f:96:12:c2:dd:4a:be:9a:d6:e6:c8:5d:a2:87:1a:
d2:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:5D:E1:35:96:74:2D:E8:C2:C9:86:68:38:A7:46:4A:CF:6C:3F:7E
X509v3 Authority Key Identifier:
keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/5F915A8A58BE11EE99A09F38C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.139.232.0/22
202.139.240.0/21
203.147.224.0/23
203.147.232.0/22
203.147.238.0/23
203.147.252.0/22
210.247.128.0/21
210.247.160.0/21
210.247.192.0/22
210.247.208.0/22
Signature Algorithm: sha256WithRSAEncryption
67:0b:43:d8:7c:6c:f6:2d:75:fa:f8:d6:22:b4:db:d9:7e:b5:
b0:bc:bf:ed:ed:7d:d1:1e:87:c0:5e:a6:a5:c9:1c:49:e0:e5:
dd:dc:eb:13:03:9c:d1:0f:e0:ac:49:eb:f9:24:93:38:28:ad:
6e:8c:2c:7f:9a:f0:a3:dd:33:7d:12:86:72:2f:e0:38:58:b2:
44:a1:23:82:49:37:bd:44:53:64:97:b7:09:bf:11:1c:5f:98:
0d:a2:74:cb:58:76:3f:3e:bd:2e:94:0f:a9:45:ce:73:84:9d:
e9:5c:07:0a:4e:24:8e:45:29:25:82:c1:c5:6a:17:d4:01:6e:
8b:ad:0d:93:91:13:b6:af:9e:67:bd:af:9e:64:2d:1e:48:bb:
24:e1:33:a7:c0:a5:8a:74:a9:d5:8a:15:0f:10:ef:80:c4:09:
95:5e:12:0a:3c:b1:f6:32:cb:3b:15:5e:05:20:63:9a:bc:f1:
19:b5:87:23:b5:3c:88:9f:01:88:6c:01:16:de:2b:6e:27:d7:
93:4d:bb:62:a9:56:f2:15:06:73:a5:1c:1c:7b:7c:ec:b3:23:
f3:8a:9e:3c:15:96:88:9f:67:26:3f:25:5b:a9:8f:38:36:61:
f1:89:39:22:50:06:06:53:24:0f:01:4d:6f:c7:99:93:63:e5:
7e:d7:e1:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 00:58:03 2024 by rpki-client on console.sobornost.net