Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/5361C076B68611EEBCAA6255C4F9AE02.roa
File: 5361C076B68611EEBCAA6255C4F9AE02.roa (raw, json)
Hash identifier: 0qeyCggpCAZjHHPLgQgrvWrJLlQfB+5IFflr94dtMww=
Subject key identifier: 9D:15:30:D8:9E:73:FE:25:2A:7E:22:06:DB:2D:EE:44:AC:88:59:57
Certificate issuer: /CN=A9116DDB/serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA
Certificate serial: D3
Authority key identifier: 0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/5361C076B68611EEBCAA6255C4F9AE02.roa
Signing time: Fri 19 Jan 2024 04:50:54 +0000
ROA not before: Fri 19 Jan 2024 04:50:54 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 49600
IP address blocks: 103.71.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 01:09:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211 (0xd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9116DDB/serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA
Validity
Not Before: Jan 19 04:50:54 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=65a9ffad-a80d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:07:62:80:e8:11:aa:d9:ab:05:6d:43:eb:fc:
6e:49:58:c5:52:a2:a7:dc:e2:93:7d:f9:fa:5a:48:
d7:b0:96:c8:3b:60:bb:1e:fc:32:bc:f3:82:cc:e5:
be:67:32:bd:ff:b1:c5:3d:01:f3:ae:ad:aa:72:53:
3d:26:b8:37:07:48:d4:cd:e6:86:d7:7f:6a:a3:6c:
4e:05:1a:f7:97:7a:69:61:35:2a:95:22:50:89:06:
f0:ba:62:04:74:0e:3c:55:64:ec:28:1e:94:9a:8e:
cd:52:73:26:61:e4:ca:ce:69:02:4c:e7:1e:32:a5:
66:2b:e6:63:7a:82:36:1d:0b:92:9e:27:9c:de:cb:
7d:8f:19:ec:90:91:79:50:ce:ba:45:16:fc:3a:68:
29:1a:56:78:78:5c:f7:7c:7e:63:f8:05:83:69:36:
10:f5:1a:0b:2c:15:bf:30:57:a5:3c:e5:b6:17:90:
a2:ae:b6:36:a3:f1:76:24:9c:d3:1e:41:ce:40:f1:
f9:6c:f4:88:a4:92:54:bc:c0:e2:e3:15:58:d5:00:
7c:5e:3b:22:86:a0:d6:58:8d:c4:27:a4:1e:d7:d1:
f1:dd:65:e6:25:ed:61:35:37:23:15:1c:df:b4:2c:
a9:17:42:48:65:3b:2f:63:c6:a2:4b:33:33:20:b9:
b7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:15:30:D8:9E:73:FE:25:2A:7E:22:06:DB:2D:EE:44:AC:88:59:57
X509v3 Authority Key Identifier:
keyid:0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/5361C076B68611EEBCAA6255C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.71.93.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:58:6e:fd:f3:e4:3d:20:14:6e:89:16:0e:d3:0f:d8:2f:fe:
65:7f:32:e5:4b:24:19:60:6d:02:e4:fe:be:9c:84:ef:30:45:
d3:0b:3a:a2:3d:8f:bc:97:35:51:09:2d:83:88:1f:6a:f0:e6:
01:9d:b2:2e:32:18:a7:69:89:c1:2a:a0:d4:40:fc:0d:50:15:
ee:06:5e:39:6f:c2:45:ad:6e:0c:79:a1:17:02:42:16:cf:41:
8a:98:30:57:6e:2b:6f:cf:ee:de:c0:01:ad:a7:95:82:80:57:
84:ee:4c:50:67:f7:77:2e:7d:57:6e:52:60:16:95:ec:a6:50:
79:0a:dc:23:3e:5b:09:14:68:9a:20:05:c5:5f:ad:43:85:6d:
31:ad:28:0b:36:9e:70:7a:8b:7a:91:8a:1f:b1:39:53:8a:b8:
3c:c0:57:b0:7c:ee:db:cc:ca:3b:c0:25:f1:7a:4e:be:ff:c7:
5c:17:3d:ea:00:f5:dc:1e:c6:a4:ab:88:e0:af:79:88:85:a4:
78:66:89:29:95:39:1d:54:3b:6f:a3:8a:6a:f6:ea:15:f1:4d:
ab:93:71:f3:07:e2:59:0f:f0:83:d8:fd:f0:df:bc:fd:34:14:
39:f0:2d:90:0d:ec:80:a9:8f:c6:da:63:22:79:b7:35:c6:18:
39:b2:db:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 02:06:18 2024 by rpki-client on console-ams.rpki-client.org