Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/A326DFC0E66911EE978CE43DC4F9AE02.roa
File: A326DFC0E66911EE978CE43DC4F9AE02.roa (raw, json)
Hash identifier: ONnZVNS66/Ria+9L6xQHbLaEo2uf2+Zb336thudyUAo=
Subject key identifier: 56:E5:59:DF:D5:9F:48:35:4E:E4:A8:99:D8:7C:64:55:52:98:1C:AB
Certificate issuer: /CN=A9116DDB/serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA
Certificate serial: F5
Authority key identifier: 0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/A326DFC0E66911EE978CE43DC4F9AE02.roa
Signing time: Wed 20 Mar 2024 03:26:28 +0000
ROA not before: Wed 20 Mar 2024 03:26:28 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 46573
IP address blocks: 103.71.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 01:09:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 245 (0xf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9116DDB/serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA
Validity
Not Before: Mar 20 03:26:28 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=65fa5764-d5c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:48:a1:a1:85:7e:ea:6e:39:0c:9c:7e:ca:dd:
a9:9c:14:e7:b0:f0:46:0f:df:27:2b:bc:f9:f5:c1:
67:0f:d4:bc:11:f9:39:46:e1:8e:b1:84:4a:b3:cb:
9a:af:0b:e4:a2:bb:86:19:37:53:8d:bf:74:69:f6:
af:53:f9:f8:65:de:70:63:85:51:19:1b:84:8d:67:
89:f6:81:4d:fd:d5:a0:c3:a0:3d:c6:5e:43:23:72:
70:7c:e1:5d:21:e1:59:be:17:0b:9d:54:8e:32:a5:
69:4e:76:9e:1e:37:41:d5:39:00:cb:fb:d3:be:aa:
91:38:1e:73:47:a9:1e:9b:53:c4:37:19:7a:e5:4f:
54:97:28:17:c6:f1:81:d7:04:71:8e:79:80:6d:e8:
47:fe:61:bd:0c:5e:75:b3:44:fa:11:75:85:31:74:
ff:26:96:44:aa:2c:42:13:16:54:52:03:d3:9a:0a:
93:22:51:e0:dc:6a:62:76:81:ac:81:73:37:24:d9:
e1:63:2f:f2:9b:fa:e3:95:8d:a6:6d:39:af:66:22:
3e:f4:5b:87:ea:c3:7d:5c:7c:08:a5:6f:97:89:aa:
2e:5c:9e:45:70:b5:d4:97:93:42:f7:7c:74:d0:9a:
a1:e0:fc:64:08:8c:68:fd:2d:34:d4:4d:3f:06:1a:
ca:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:E5:59:DF:D5:9F:48:35:4E:E4:A8:99:D8:7C:64:55:52:98:1C:AB
X509v3 Authority Key Identifier:
keyid:0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/A326DFC0E66911EE978CE43DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.71.93.0/24
Signature Algorithm: sha256WithRSAEncryption
91:79:67:57:1c:bd:45:d4:d6:89:2f:7d:4a:e1:a7:38:6a:5b:
e4:9c:fe:3e:43:06:c1:1a:9e:d6:b0:bd:3f:e7:c2:75:b1:ee:
33:81:b6:21:6b:bd:73:17:5d:c5:96:a0:b9:b0:56:be:4b:cf:
c1:2c:0d:41:59:f9:61:87:c3:ef:d4:9f:d5:cb:52:ff:f4:fc:
57:43:34:8a:1b:30:e8:7c:3b:bc:52:1d:16:68:28:7c:37:f1:
2c:0f:fd:2f:75:91:93:cc:4c:ee:8f:06:84:f8:e3:57:03:ce:
11:e7:84:03:14:61:9a:13:bf:8a:32:eb:60:44:29:93:f9:34:
08:13:7a:5e:5d:99:16:f5:db:a9:1b:f7:3b:ad:7e:bb:00:e3:
f3:be:92:b7:b0:13:5c:6f:2f:49:00:39:75:6f:fb:b0:77:e9:
cd:db:b3:70:00:6e:98:cc:38:98:26:03:a1:95:77:41:d1:45:
2f:21:5d:4c:0e:e3:1d:ca:4e:e8:e0:90:8d:d3:0b:72:6e:e1:
f7:01:13:2a:27:5b:32:76:69:96:e2:71:4a:e6:c5:c3:5e:4e:
32:ba:14:f7:cd:e3:d0:27:6a:5e:5f:6a:dc:2c:bf:80:f3:0e:
3e:ab:11:09:a7:75:08:0c:45:5a:8c:a7:f2:b8:3a:42:e9:71:
e2:d4:46:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:55 2024 by rpki-client on console-fra.rpki-client.org