Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/4A83748AB5BA11EEB22C9B1CC4F9AE02.roa
File: 4A83748AB5BA11EEB22C9B1CC4F9AE02.roa (raw, json)
Hash identifier: VhTVZaAwsVyf2mqiqjaY8LR1IX6RYKw5QztRLI2dswo=
Subject key identifier: BC:CF:23:20:E9:B8:09:13:E5:75:46:16:03:92:3D:8C:FB:16:CC:2A
Certificate issuer: /CN=A9116DDB/serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA
Certificate serial: D0
Authority key identifier: 0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/4A83748AB5BA11EEB22C9B1CC4F9AE02.roa
Signing time: Thu 18 Jan 2024 04:32:30 +0000
ROA not before: Thu 18 Jan 2024 04:32:30 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 34665
IP address blocks: 103.71.93.0/24 maxlen: 24
103.71.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 01:09:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 208 (0xd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9116DDB/serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA
Validity
Not Before: Jan 18 04:32:30 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=65a8a9de-03fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:01:b7:ac:60:32:ca:5a:9a:e1:e5:fe:54:87:
bd:5f:d6:54:5f:09:14:39:43:07:e1:e7:b3:7f:11:
ec:7c:08:7d:87:af:6f:01:d3:b0:7c:ec:94:81:f4:
4a:e8:b2:fb:f1:92:ff:ca:0c:75:a5:a0:35:18:e5:
7b:e6:b7:b8:62:a3:a8:de:bd:2e:f3:f4:fd:2c:bc:
1a:9d:c7:dd:75:b5:fa:6e:a7:32:12:06:cf:49:89:
22:9b:cf:81:2f:46:ff:c2:f1:41:df:25:97:9d:e5:
2b:d8:21:a1:c6:fb:4c:16:ed:dc:19:76:01:1a:e4:
62:89:da:92:a3:6e:ce:1f:cd:0e:e8:b4:6c:95:d3:
6b:e9:f8:35:dc:08:d2:1b:fb:18:71:bb:7c:7c:f7:
10:27:95:ae:7d:4c:0c:3b:d3:81:59:eb:d5:46:b9:
0d:1e:b0:91:de:88:63:3b:02:5d:c8:4f:1e:65:28:
82:cd:74:32:05:03:c8:d1:ec:8f:e2:81:3c:cb:a2:
53:87:63:a4:1e:41:09:b4:1a:04:d6:34:02:4b:91:
0b:44:d7:37:0a:53:aa:14:d3:c6:0c:af:a4:42:b8:
f4:d1:39:32:19:71:5f:dc:8c:f2:a7:17:dc:df:d4:
3b:ed:86:13:c0:27:6a:f9:57:e4:9e:6d:71:18:92:
71:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:CF:23:20:E9:B8:09:13:E5:75:46:16:03:92:3D:8C:FB:16:CC:2A
X509v3 Authority Key Identifier:
keyid:0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/4A83748AB5BA11EEB22C9B1CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.71.93.0/24
103.71.95.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:da:41:c5:de:c2:ac:9d:9e:1f:cc:ff:a6:d7:90:b9:b9:96:
8c:f1:db:79:eb:9d:37:81:9f:cc:b5:5b:a6:61:1e:2f:00:a6:
6c:eb:0c:01:a6:e4:5a:1a:e0:5f:65:f9:b9:d0:f8:9a:8d:cf:
4b:3d:33:98:d0:cf:90:ab:c2:15:fd:37:5b:c4:4b:40:6b:a4:
ca:35:1f:0b:6a:87:65:a3:13:c2:c4:a4:e7:28:42:e0:99:5f:
96:7c:01:24:65:91:d5:4e:2b:ca:bb:d8:54:d4:53:6c:cb:ef:
c6:c0:11:3c:be:3f:8d:86:c0:c7:91:f3:ae:55:d5:51:32:4f:
41:67:50:ea:74:7d:b8:29:26:81:3c:de:64:8a:37:1e:07:81:
77:85:3b:04:ee:35:d9:c4:91:d5:b1:e8:49:17:41:85:e3:81:
f9:6e:11:86:eb:3e:7b:60:83:be:10:0c:52:b0:b5:89:e4:82:
b5:fc:1c:df:23:53:84:02:74:95:4e:d8:d5:7d:ef:8b:36:7b:
48:cf:b9:79:4f:41:40:c0:77:bb:35:db:13:e1:92:c7:f1:ba:
f6:90:7e:df:e1:c7:75:13:93:81:e8:e7:2d:ab:00:d8:3e:78:
42:6d:49:c6:12:97:5a:37:94:07:76:ad:b5:3c:2c:6e:03:b1:
bb:71:d5:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 02:09:00 2024 by rpki-client on console-fra.rpki-client.org