Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/000E0ABC0F6D11EE9C6BFE46C4F9AE02.roa
File: 000E0ABC0F6D11EE9C6BFE46C4F9AE02.roa (raw, json)
Hash identifier: Uj0hSr7WCpjYO4XbVmWXevvFFyj004gJgQy+Q7aA6g8=
Subject key identifier: AB:63:1A:8A:2B:57:94:BC:10:5A:98:2F:B0:EB:CD:49:DE:36:6E:E8
Certificate issuer: /CN=A91215B3/serialNumber=914850C4B8A513B2F8E4EDC4B5578707776372AE
Certificate serial: CB
Authority key identifier: 91:48:50:C4:B8:A5:13:B2:F8:E4:ED:C4:B5:57:87:07:77:63:72:AE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUhQxLilE7L45O3EtVeHB3djcq4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/000E0ABC0F6D11EE9C6BFE46C4F9AE02.roa
Signing time: Tue 02 Jul 2024 10:55:10 +0000
ROA not before: Tue 02 Jul 2024 10:55:10 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 17539
IP address blocks: 103.48.0.0/24 maxlen: 24
103.48.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jul 2024 04:47:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 203 (0xcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91215B3/serialNumber=914850C4B8A513B2F8E4EDC4B5578707776372AE
Validity
Not Before: Jul 2 10:55:10 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=6683dc8d-08c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d1:26:3b:29:8e:1e:b3:87:e2:3f:43:b7:c4:
c8:22:73:e3:3b:2b:89:93:39:6a:ad:36:72:4b:36:
61:10:78:00:b2:16:3e:76:df:4b:0b:e5:5c:00:2f:
df:87:5d:ba:2a:4c:51:af:fe:32:13:00:83:08:7a:
a8:cc:97:4b:4e:fb:44:63:ab:12:33:0b:d5:51:e4:
1b:c3:a2:db:14:88:ce:11:53:96:25:37:af:46:ff:
d3:1c:97:0e:a6:79:21:16:63:a5:d1:35:8d:56:b8:
55:72:78:de:16:9d:5a:51:90:d5:67:ed:c2:76:13:
49:52:9a:da:56:6c:45:00:f0:32:c5:cb:e2:cf:97:
28:af:a3:63:7b:92:af:2c:1a:d2:c9:ad:62:4a:4e:
35:1d:f1:37:92:c4:2c:64:29:b7:2f:55:2b:69:a2:
fa:1d:8a:ba:bc:66:eb:05:1b:a9:de:6c:81:d3:c2:
27:a3:db:7b:83:04:a3:36:89:4a:83:17:68:b6:0f:
49:43:fc:2b:e1:47:73:b1:14:91:d3:13:7a:83:11:
c8:79:e9:c0:95:06:84:ac:84:da:f4:64:5d:d7:5f:
87:21:f3:4c:2b:c1:09:c4:37:c1:8f:83:83:49:37:
b3:06:15:fa:02:4b:81:61:73:de:b0:58:54:10:78:
5f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:63:1A:8A:2B:57:94:BC:10:5A:98:2F:B0:EB:CD:49:DE:36:6E:E8
X509v3 Authority Key Identifier:
keyid:91:48:50:C4:B8:A5:13:B2:F8:E4:ED:C4:B5:57:87:07:77:63:72:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/kUhQxLilE7L45O3EtVeHB3djcq4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUhQxLilE7L45O3EtVeHB3djcq4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/000E0ABC0F6D11EE9C6BFE46C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.48.0.0/23
Signature Algorithm: sha256WithRSAEncryption
64:63:99:04:68:7f:d5:c1:f5:6c:17:62:7a:ef:7e:8f:a7:99:
b6:3a:f4:42:ad:f1:d8:42:f7:7c:f9:8b:9e:82:a8:8a:b6:a2:
65:7c:48:bf:fa:cf:4e:a7:8f:2c:20:9f:dd:6d:45:e9:aa:be:
02:ce:22:fa:a4:57:08:93:c2:1f:8e:60:c9:73:94:08:e4:5e:
67:29:d4:f2:0a:d7:91:b2:70:fb:c0:a7:db:83:47:da:35:b5:
01:5a:0c:88:ca:7e:13:87:a0:38:73:07:c8:f1:bf:e0:6c:c3:
c7:13:08:9a:7f:59:2a:ac:7f:59:f7:0c:5a:53:1c:72:f4:1a:
da:73:73:ce:3e:86:27:5b:e9:d9:db:85:74:6a:44:55:b0:9d:
b3:7e:b3:4b:19:ee:75:a5:b9:5d:01:f0:57:43:07:b4:20:3e:
8d:f5:ff:6b:3a:6b:b6:bf:fa:1e:0d:22:c1:33:36:dd:8d:cf:
b2:05:e6:d8:ba:63:c1:5d:05:a0:da:08:cb:18:fa:40:79:cf:
a1:0a:47:3c:5f:2b:7b:3b:31:45:07:f0:b9:64:fd:d5:45:84:
d6:7b:66:d1:ea:56:51:12:c6:a2:ae:33:57:fb:d5:c5:3f:c6:
3d:e6:28:23:d1:f9:ff:a4:39:d8:4b:d7:91:e7:56:bd:06:d2:
74:21:3e:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 06:38:49 2024 by rpki-client on console-ams.rpki-client.org