Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/7ECE8268C3F111EDAB69B855C4F9AE02.roa
File: 7ECE8268C3F111EDAB69B855C4F9AE02.roa (raw, json)
Hash identifier: B2/KPH0WEjyo+apyLT74mr6VEWpaPtH6OM13RVwAgNI=
Subject key identifier: 99:34:1D:23:99:7A:04:7F:28:29:3D:D4:63:11:E5:E1:41:3E:30:48
Certificate issuer: /CN=A911DE88/serialNumber=BE3F8BDF81B66B4ED2E1C74EB5D5FB01B5F77641
Certificate serial: 02
Authority key identifier: BE:3F:8B:DF:81:B6:6B:4E:D2:E1:C7:4E:B5:D5:FB:01:B5:F7:76:41
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-L34G2a07S4cdOtdX7AbX3dkE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/7ECE8268C3F111EDAB69B855C4F9AE02.roa
Signing time: Thu 16 Mar 2023 11:55:50 +0000
ROA not before: Thu 16 Mar 2023 11:55:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 133211
IP address blocks: 103.112.42.0/23 maxlen: 23
103.112.42.0/24 maxlen: 24
103.112.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jul 2023 10:44:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911DE88/serialNumber=BE3F8BDF81B66B4ED2E1C74EB5D5FB01B5F77641
Validity
Not Before: Mar 16 11:55:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=641303c6-ab47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:b9:74:7c:6b:d1:15:9f:80:3b:b2:ed:0e:fc:
b0:62:f1:e7:0c:8e:d2:81:62:cb:7c:2e:9a:13:85:
16:c1:9a:52:b2:b3:d2:42:0d:14:37:51:8f:4c:ff:
3d:b7:92:02:69:7b:65:cb:3c:c9:58:8a:b8:32:f1:
3b:f4:8c:45:2e:0a:94:65:4d:b4:ba:7b:90:87:38:
9f:94:61:7e:ea:4c:be:c2:3e:be:8d:1a:6d:c3:87:
97:2b:50:04:ea:16:3d:d0:62:99:3d:3b:a0:48:97:
74:76:1d:b3:3a:49:85:ad:e3:f9:cb:d0:bb:1b:dc:
66:9e:35:4c:db:cf:09:f5:08:a2:61:46:82:82:55:
9f:c4:6e:9d:ff:3a:d4:6c:bc:9f:ee:ac:d7:ef:2c:
87:67:2e:52:b8:18:ac:51:ac:4e:04:ae:34:55:1b:
07:4e:a0:ee:50:ca:2d:35:d7:85:d0:f1:7e:93:13:
aa:de:7b:f3:7a:18:4f:0a:45:1b:30:62:7a:8f:a7:
3f:84:d2:ab:db:07:e0:2f:a0:59:77:1b:0e:5c:9f:
bc:bf:97:0c:b3:c9:04:e9:b1:63:fa:ae:a2:b6:39:
0f:0c:59:77:1f:ee:94:4d:2e:2b:3d:da:50:c9:5e:
20:26:69:d8:1f:1b:38:b8:55:4f:ff:d1:f0:ce:0f:
77:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:34:1D:23:99:7A:04:7F:28:29:3D:D4:63:11:E5:E1:41:3E:30:48
X509v3 Authority Key Identifier:
keyid:BE:3F:8B:DF:81:B6:6B:4E:D2:E1:C7:4E:B5:D5:FB:01:B5:F7:76:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/vj-L34G2a07S4cdOtdX7AbX3dkE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-L34G2a07S4cdOtdX7AbX3dkE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/7ECE8268C3F111EDAB69B855C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.112.42.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:e0:12:ca:89:b1:b5:52:2c:8f:f1:47:fd:4f:c7:07:02:f0:
05:f4:ec:7f:8a:74:54:6e:52:27:8d:55:20:9d:d8:61:00:93:
dc:90:4f:66:a6:58:f7:11:46:cf:d3:ab:23:ee:de:0b:35:db:
f8:26:17:eb:0c:6e:12:c4:c5:5f:d1:b2:b1:fd:d1:48:56:c2:
54:74:8c:69:04:a2:5e:30:97:1f:14:9f:75:7d:75:93:f9:f1:
5f:40:08:e6:56:dd:26:4c:7a:6a:5f:8a:b4:db:6e:13:bf:4e:
56:4f:9a:bc:85:5b:8f:14:8d:18:a7:0d:ab:31:62:a2:4b:25:
c6:d7:ef:4c:a9:8c:f4:85:09:93:54:f5:01:50:21:aa:b3:51:
01:36:67:69:4d:59:de:f5:54:7d:e2:59:ef:50:5d:ac:df:21:
17:52:8e:23:ae:30:1e:f0:a3:b0:b1:ed:a4:7f:d3:a4:89:1d:
a5:4a:ee:8d:59:50:6c:36:b6:b9:de:e8:33:5b:b5:e8:a4:da:
22:7b:1d:28:63:d7:97:88:59:19:d9:6b:d5:63:bf:19:8f:5c:
37:73:69:5b:e1:99:26:90:41:8a:f2:dd:f7:f4:c2:71:57:9d:
ad:b8:0f:c3:23:58:a1:e2:d4:13:f5:e9:54:16:22:0c:86:d1:
8f:4d:aa:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:56 2024 by rpki-client on console-fra.rpki-client.org