Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112DEF/18F6987CB3D511ECB3A0A882C4F9AE02/E386F672068711EDA1C2070DC4F9AE02.roa
File: E386F672068711EDA1C2070DC4F9AE02.roa (raw, json)
Hash identifier: WhTxgudrWHbPy8Peehl9VQJ4nvXO7Vlm6snSvAmhDC8=
Subject key identifier: A6:51:F9:EA:A0:F5:F3:9F:B1:14:AE:6E:ED:08:E4:75:32:9B:5E:0B
Certificate issuer: /CN=A9112DEF/serialNumber=E3EB954B44721E411AAF0938310CC103EA4C8BB4
Certificate serial: 02C1
Authority key identifier: E3:EB:95:4B:44:72:1E:41:1A:AF:09:38:31:0C:C1:03:EA:4C:8B:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-uVS0RyHkEarwk4MQzBA-pMi7Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9112DEF/18F6987CB3D511ECB3A0A882C4F9AE02/E386F672068711EDA1C2070DC4F9AE02.roa
Signing time: Tue 25 Jun 2024 02:53:18 +0000
ROA not before: Tue 25 Jun 2024 02:53:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 140674
IP address blocks: 103.185.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 08:14:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 705 (0x2c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9112DEF, serialNumber=E3EB954B44721E411AAF0938310CC103EA4C8BB4
Validity
Not Before: Jun 25 02:53:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=667a311d-da16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e3:81:2b:61:f3:e3:6f:32:37:7e:7b:79:b9:
17:85:64:43:04:13:58:a9:d7:2b:a6:ae:38:c1:85:
ee:37:83:cf:d4:68:b1:3d:ce:f3:66:74:e3:74:89:
d0:be:ee:66:32:cf:68:63:0b:a1:21:bf:f8:41:dd:
41:1d:1e:2c:bd:7b:2e:f8:cd:b6:84:9e:c4:ca:a3:
b0:8d:0d:c2:e0:e1:cb:28:02:8e:fd:f5:fc:13:28:
c4:30:5e:7e:9c:fb:ac:bd:d9:d6:3f:c9:28:57:b1:
96:bd:67:e5:92:01:58:fb:39:1a:11:91:4a:1d:23:
e3:74:40:a3:33:f8:7e:85:d8:ef:2f:77:5f:f3:1b:
71:43:84:03:00:9e:a9:30:e1:59:2b:f0:a3:e3:30:
9a:38:18:a2:fc:c6:a3:f7:9e:2f:12:a1:54:be:41:
52:36:a4:f0:70:17:5f:eb:53:fc:af:32:1e:11:5b:
d9:b2:ec:96:fe:83:a6:07:56:ac:3b:b1:29:0f:c5:
91:d1:48:a6:32:ae:be:fb:ae:84:fe:83:d0:68:1a:
ca:d7:75:6e:e7:cd:4b:aa:90:ea:c1:a3:09:48:89:
aa:ee:a5:fb:eb:32:0b:21:e3:e2:32:41:7b:0a:49:
81:ba:8d:91:9b:da:e2:bb:da:40:b5:6b:23:c9:30:
37:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:51:F9:EA:A0:F5:F3:9F:B1:14:AE:6E:ED:08:E4:75:32:9B:5E:0B
X509v3 Authority Key Identifier:
keyid:E3:EB:95:4B:44:72:1E:41:1A:AF:09:38:31:0C:C1:03:EA:4C:8B:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9112DEF/18F6987CB3D511ECB3A0A882C4F9AE02/4-uVS0RyHkEarwk4MQzBA-pMi7Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-uVS0RyHkEarwk4MQzBA-pMi7Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112DEF/18F6987CB3D511ECB3A0A882C4F9AE02/E386F672068711EDA1C2070DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.185.225.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:df:74:27:1e:39:d4:b8:a0:b3:a8:12:f5:1d:d6:7e:0e:8c:
9c:6e:c3:c7:52:86:a2:e5:f2:4c:6d:be:eb:cf:5e:d5:d6:2f:
d0:67:29:42:9d:fe:a9:0c:6b:16:70:4f:80:2a:4e:4b:ac:81:
54:92:60:3f:6a:96:ce:5c:af:10:c5:1b:85:06:bf:2c:06:77:
55:22:d9:a2:84:e3:4e:cf:12:68:a2:4b:0e:cb:f9:83:9e:97:
ab:8c:6d:ca:2d:48:59:4d:24:60:d9:61:ed:e6:0a:2c:fc:b5:
2e:09:4e:33:03:62:65:8d:d4:c3:ec:70:bd:c5:74:1a:7e:01:
b2:c6:3c:d8:fb:50:0d:de:76:69:29:45:c4:23:16:bf:a6:0b:
a4:59:d7:00:f4:70:ca:60:00:ea:b8:a5:5c:86:12:ca:5e:f3:
67:3b:90:9e:31:5f:a5:34:e4:18:c2:77:6a:71:12:44:74:b1:
a0:63:97:bf:5e:55:a5:33:c6:c0:02:76:c9:24:c6:51:a7:c4:
de:6f:de:a5:f4:9c:dd:28:68:73:f4:67:f6:4b:ff:0f:c3:d3:
47:69:c4:79:15:9a:a7:df:1c:b1:8a:0c:e6:4d:fc:b7:87:96:
26:14:1f:f2:0a:ea:7e:47:95:0f:98:fb:3e:ad:71:51:f7:4c:
0a:c0:80:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 20:21:08 2025 by rpki-client