Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112DEF/18F6987CB3D511ECB3A0A882C4F9AE02/2E16DE9A768F11EF8FBB300FC4F9AE02.roa
File: 2E16DE9A768F11EF8FBB300FC4F9AE02.roa (raw, json)
Hash identifier: VIZ1g7C+YSq2YB2YMSrf1aHOZBnjpRViXuvn0sygeOM=
Subject key identifier: 74:EB:99:11:06:18:90:D6:39:FB:48:86:88:7E:09:C7:39:C0:25:6B
Certificate issuer: /CN=A9112DEF/serialNumber=E3EB954B44721E411AAF0938310CC103EA4C8BB4
Certificate serial: 02F0
Authority key identifier: E3:EB:95:4B:44:72:1E:41:1A:AF:09:38:31:0C:C1:03:EA:4C:8B:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-uVS0RyHkEarwk4MQzBA-pMi7Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9112DEF/18F6987CB3D511ECB3A0A882C4F9AE02/2E16DE9A768F11EF8FBB300FC4F9AE02.roa
Signing time: Thu 19 Sep 2024 13:58:00 +0000
ROA not before: Thu 19 Sep 2024 13:58:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 151629
IP address blocks: 103.185.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 08:11:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 752 (0x2f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9112DEF/serialNumber=E3EB954B44721E411AAF0938310CC103EA4C8BB4
Validity
Not Before: Sep 19 13:58:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66ec2de7-be09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:eb:aa:fd:eb:98:a3:2e:4c:a6:fc:07:df:a3:
3b:ea:d8:91:14:40:5f:3d:f5:62:d7:9f:71:a9:57:
12:56:fb:dc:9a:f4:fe:f5:98:ed:73:a5:23:8e:ba:
ef:b0:a8:b9:b1:bd:8c:a6:49:6e:56:b9:a6:08:02:
42:46:e0:b2:9d:52:4d:80:5a:36:9f:f6:e6:a9:df:
b9:54:49:5f:9e:13:a1:a5:44:09:5c:e3:bc:10:14:
a4:05:3b:fa:78:8b:73:56:4d:b5:a0:28:60:be:9a:
0b:3f:28:f3:19:40:57:f5:b2:d2:81:cd:58:b2:a9:
1f:6e:eb:7e:a0:a0:38:42:e9:ce:d9:2d:1b:53:4b:
2f:60:7f:e2:fc:52:15:a0:d6:00:ca:cc:9b:b4:27:
95:15:2b:78:59:5b:17:11:80:56:58:35:42:e2:d5:
b2:78:fc:25:fc:9f:6c:6e:68:14:34:e6:06:85:be:
e9:43:48:68:7c:c3:e4:4d:74:3e:c0:ee:d1:95:ea:
9d:b7:d3:c5:e5:c5:7e:d5:f3:2f:a7:ed:1b:f2:d7:
e8:39:46:08:03:ee:cd:6b:93:8d:fb:da:9e:a4:b2:
d2:67:3d:c4:7f:8d:ee:dd:e2:3c:cf:00:68:cf:48:
44:75:40:5e:e3:48:69:24:e7:30:71:30:4f:6a:19:
17:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:EB:99:11:06:18:90:D6:39:FB:48:86:88:7E:09:C7:39:C0:25:6B
X509v3 Authority Key Identifier:
keyid:E3:EB:95:4B:44:72:1E:41:1A:AF:09:38:31:0C:C1:03:EA:4C:8B:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9112DEF/18F6987CB3D511ECB3A0A882C4F9AE02/4-uVS0RyHkEarwk4MQzBA-pMi7Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-uVS0RyHkEarwk4MQzBA-pMi7Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112DEF/18F6987CB3D511ECB3A0A882C4F9AE02/2E16DE9A768F11EF8FBB300FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.185.224.0/24
Signature Algorithm: sha256WithRSAEncryption
04:88:b4:48:e9:de:10:de:b5:3d:4c:01:54:0b:cc:43:03:40:
3e:fd:98:3c:25:58:c1:d0:dd:32:2e:d3:e8:61:08:f0:2d:69:
e8:fd:52:d0:3e:63:87:71:b4:98:1d:dd:51:6b:5f:17:2b:37:
a1:7f:ae:5a:8b:52:a7:80:ac:8a:5b:73:03:1a:d2:69:74:c1:
d5:03:6d:16:86:1e:db:15:82:12:3a:af:03:ab:50:2d:81:2e:
13:42:a3:49:b1:48:80:d9:0b:1a:42:1c:28:59:4d:43:2b:c3:
68:00:41:17:18:bb:c2:3c:95:12:18:91:17:43:a2:9c:a8:f1:
ee:e7:fd:b3:e5:2b:76:15:7b:46:26:4d:bc:b2:7e:10:68:ce:
3e:d7:7d:ec:90:69:f4:c6:c0:99:70:4a:f5:09:ad:6d:47:7d:
aa:7f:6c:cf:b1:d1:bd:f6:56:05:ed:c5:39:c0:9b:18:2b:e6:
6c:48:f8:48:68:94:13:7f:aa:a8:f1:4a:82:78:30:77:35:4d:
38:9b:14:83:fc:94:94:27:43:42:c6:48:12:8d:44:37:74:89:
0b:cd:20:d1:9b:41:90:84:5a:7d:eb:73:d4:87:7c:3e:db:aa:
60:31:a2:27:64:77:c6:09:4c:10:42:5c:1e:8b:b1:89:00:e3:
30:a6:8e:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 24 12:04:17 2024 by rpki-client on console-ams.rpki-client.org