Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91226E9/83DE6878D1F911EABEF28257C4F9AE02/95A974D8114211EC8333C36EC4F9AE02.roa
File: 95A974D8114211EC8333C36EC4F9AE02.roa (raw, json)
Hash identifier: R5GKoBAmMO8GLXqrLUeNWyvzaY4cD2tEOyFH8uSIYCQ=
Subject key identifier: 25:BB:95:39:C0:F0:4D:7B:50:EC:83:3C:C6:DD:6B:4C:CF:16:B2:A3
Certificate issuer: /CN=A91226E9/serialNumber=FC8ED08FC9230174E31190EDAD5852AC45C38503
Certificate serial: 078C
Authority key identifier: FC:8E:D0:8F:C9:23:01:74:E3:11:90:ED:AD:58:52:AC:45:C3:85:03
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_I7Qj8kjAXTjEZDtrVhSrEXDhQM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91226E9/83DE6878D1F911EABEF28257C4F9AE02/95A974D8114211EC8333C36EC4F9AE02.roa
Signing time: Tue 02 Jul 2024 22:09:54 +0000
ROA not before: Tue 02 Jul 2024 22:09:54 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 56264
IP address blocks: 103.151.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 19 Oct 2024 08:34:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1932 (0x78c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91226E9/serialNumber=FC8ED08FC9230174E31190EDAD5852AC45C38503
Validity
Not Before: Jul 2 22:09:54 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66847ab1-f630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:02:95:5f:91:8f:82:f0:a1:2f:a4:30:00:a6:
04:69:bd:64:8f:0d:b9:bb:09:67:f4:df:27:15:1c:
83:7d:84:c5:6e:8e:bc:31:1d:0c:20:37:c5:74:97:
53:78:ce:57:3f:32:9a:db:87:70:33:3a:36:88:c5:
7f:4a:37:c4:e3:09:6c:3b:44:b4:fe:e5:b0:7a:6b:
d3:2d:6c:3a:e4:a1:5a:b0:41:0b:ed:3a:79:9d:db:
57:31:db:05:76:9b:1c:8b:45:50:44:8d:72:b8:32:
3c:d6:ee:e7:82:b0:cb:b3:29:25:75:32:bd:0d:43:
fd:e1:4a:a8:80:f0:c7:8f:c4:8c:10:1e:50:e2:78:
b3:db:48:90:34:3d:3a:e7:d9:ee:70:26:7f:66:72:
6a:6a:88:f6:b9:05:f3:b2:24:28:67:ac:b1:3b:49:
18:af:22:4c:f9:d9:b7:3e:ba:46:ed:fd:a0:a5:8c:
6f:7a:d7:37:bc:a0:3b:b2:0b:4d:fe:d3:10:57:89:
dd:de:5e:7c:d7:d4:66:0a:d0:d6:c1:35:f8:7d:7c:
5e:a7:58:ad:dd:07:63:59:f2:3b:c1:fe:4a:96:47:
70:ee:fb:1e:bb:48:ed:14:1a:84:b7:53:ab:78:7c:
ff:fc:13:c4:25:74:3e:bc:f3:5b:28:cd:dd:4f:06:
f9:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:BB:95:39:C0:F0:4D:7B:50:EC:83:3C:C6:DD:6B:4C:CF:16:B2:A3
X509v3 Authority Key Identifier:
keyid:FC:8E:D0:8F:C9:23:01:74:E3:11:90:ED:AD:58:52:AC:45:C3:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91226E9/83DE6878D1F911EABEF28257C4F9AE02/_I7Qj8kjAXTjEZDtrVhSrEXDhQM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_I7Qj8kjAXTjEZDtrVhSrEXDhQM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91226E9/83DE6878D1F911EABEF28257C4F9AE02/95A974D8114211EC8333C36EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.169.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:f8:9b:d1:b8:2d:9d:9e:29:e7:63:f0:80:da:31:03:f1:e7:
62:4b:97:f1:f2:e8:46:1d:18:c4:07:2a:3d:a5:1c:e1:eb:b9:
f5:ee:da:b4:e3:2d:94:1b:d3:46:11:05:2e:a5:f5:52:5f:55:
21:75:87:41:e0:16:d7:3f:cb:17:c3:ce:39:bb:fc:33:00:93:
f1:30:60:2f:34:72:a2:fe:41:27:ec:1b:43:cc:35:f7:90:24:
06:5d:78:2a:79:f1:e7:f6:2b:f3:82:8a:97:5e:01:54:8b:3c:
83:e4:59:a9:8a:a4:8a:d1:0b:01:e1:ca:21:7f:2b:63:a5:2a:
57:02:f7:a5:47:07:03:aa:82:27:85:15:97:5c:a9:3c:53:92:
b7:67:a1:cb:73:b1:7e:7e:83:52:61:ab:86:1d:ec:d4:4d:36:
f9:e6:97:f6:07:7c:66:37:ef:da:4b:6d:3b:ea:7b:da:84:76:
0a:d7:9a:6c:7d:98:f0:32:26:8a:12:ce:66:8d:31:5c:96:0b:
b6:96:9e:5e:8b:30:7f:82:ba:c3:88:9d:2a:7c:fc:66:2d:65:
dd:24:4c:d7:45:6c:ca:5e:ca:0f:25:ff:2d:4e:54:6d:a1:56:
b7:f4:0f:60:a4:43:0e:a1:e6:44:39:9b:7e:8d:5c:a4:57:79:
f2:12:4b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 19 10:24:28 2024 by rpki-client on console-ams.rpki-client.org