Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9114899/EF2326C6141811EB928F8F66C4F9AE02/82DC81B8141A11EBA65C6D68C4F9AE02.roa
File: 82DC81B8141A11EBA65C6D68C4F9AE02.roa (raw, json)
Hash identifier: x+fR12XHiW3us4vn3Nz1liy8A7i3HI0YONF1fVV5tdk=
Subject key identifier: 30:80:9D:6E:74:C5:96:65:B8:0E:2D:7A:84:50:3A:D9:93:BF:1F:53
Certificate issuer: /CN=A9114899/serialNumber=625ED4DBDF2746322F559385728E8E8E5FF8BAC2
Certificate serial: 070E
Authority key identifier: 62:5E:D4:DB:DF:27:46:32:2F:55:93:85:72:8E:8E:8E:5F:F8:BA:C2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yl7U298nRjIvVZOFco6Ojl_4usI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9114899/EF2326C6141811EB928F8F66C4F9AE02/82DC81B8141A11EBA65C6D68C4F9AE02.roa
Signing time: Wed 16 Oct 2024 21:40:53 +0000
ROA not before: Wed 16 Oct 2024 21:40:53 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 139035
IP address blocks: 103.142.174.0/24 maxlen: 24
103.142.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Jan 2025 15:15:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1806 (0x70e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9114899, serialNumber=625ED4DBDF2746322F559385728E8E8E5FF8BAC2
Validity
Not Before: Oct 16 21:40:53 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=671032e5-a51a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e6:8b:41:59:37:d6:3e:4b:c0:53:a1:1c:ab:
79:99:08:58:71:d5:e7:30:5a:bb:bb:cd:b0:7d:9d:
9a:e6:7d:77:d3:a9:cd:53:19:b9:62:b8:6c:bb:96:
93:a2:48:78:a1:9e:de:9a:ab:36:11:21:11:27:92:
05:75:de:77:6e:16:eb:da:d6:69:98:56:95:65:42:
a5:bd:c0:f7:8c:1f:8e:a7:13:16:68:fa:97:bf:40:
7d:ae:69:13:a9:41:99:36:e9:94:02:f0:43:61:6a:
28:1a:c2:36:c4:80:e0:d3:21:44:ba:15:41:38:d4:
8a:3b:4c:42:21:41:90:38:50:cc:b1:da:89:51:74:
b9:b7:93:78:62:00:f0:bc:0f:93:f4:c3:37:cf:6d:
3a:80:58:3d:15:d9:06:41:d2:97:b7:44:4b:88:49:
b1:e7:73:d2:f6:55:7e:28:4f:44:ab:95:44:cc:28:
da:6b:cb:21:91:a9:c7:77:94:9c:56:22:78:76:75:
dc:3a:f7:d0:16:c3:40:bf:91:92:7e:87:1c:fd:d2:
57:a4:83:0b:e0:ce:48:57:7a:a8:8f:e5:8f:c7:03:
39:23:03:42:1f:69:97:f4:a1:33:5a:b1:10:90:f7:
db:2e:98:22:24:15:d7:3a:1a:3a:3b:fa:99:7c:03:
ea:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:80:9D:6E:74:C5:96:65:B8:0E:2D:7A:84:50:3A:D9:93:BF:1F:53
X509v3 Authority Key Identifier:
keyid:62:5E:D4:DB:DF:27:46:32:2F:55:93:85:72:8E:8E:8E:5F:F8:BA:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9114899/EF2326C6141811EB928F8F66C4F9AE02/Yl7U298nRjIvVZOFco6Ojl_4usI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yl7U298nRjIvVZOFco6Ojl_4usI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114899/EF2326C6141811EB928F8F66C4F9AE02/82DC81B8141A11EBA65C6D68C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.142.174.0/23
Signature Algorithm: sha256WithRSAEncryption
74:27:9a:7d:73:c6:71:d9:26:d7:26:7c:c6:70:f4:a9:9e:e7:
01:a9:50:47:7f:73:e3:a2:a2:af:c8:a0:28:23:89:4a:ac:ab:
15:45:12:99:49:af:f7:90:a2:9f:28:85:33:fa:71:4a:1e:e7:
f1:27:61:53:eb:c0:07:28:35:91:7e:85:c4:e9:ca:a2:7d:08:
bb:e6:c2:87:7d:f4:62:33:2c:ef:72:d2:41:bc:7d:b4:92:de:
fc:56:41:04:11:e0:35:0f:28:4e:1f:bf:ce:2b:7d:6b:87:c9:
69:ec:7d:e3:2e:f8:e0:a4:c7:17:90:e4:76:c6:e8:37:9d:2d:
5d:00:cf:76:bc:eb:7f:d4:27:a9:f7:cf:cd:a2:a4:f5:0f:45:
b6:4f:1b:c7:e7:04:1b:30:e1:52:da:bf:79:4b:df:67:32:5c:
90:5a:bb:26:9e:69:07:68:d5:9c:f6:ad:53:21:78:0f:c5:e6:
c9:b5:24:6b:2c:de:1f:0f:30:e3:21:c8:3f:0c:03:82:e3:b7:
b3:67:4b:07:83:ef:e0:a1:3b:41:98:68:76:59:4b:26:0d:7c:
5a:e6:0b:98:4f:04:55:70:c4:ea:a9:00:50:46:e3:f4:9f:21:
aa:f9:b1:2c:59:7e:5e:d2:bb:df:39:81:0f:b9:ff:62:0c:f9:
32:fe:ac:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 05:31:37 2025 by rpki-client