Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/8D76260A142611EFB5E7B624C4F9AE02.roa
File: 8D76260A142611EFB5E7B624C4F9AE02.roa (raw, json)
Hash identifier: U8xL5OhdwaC27QtL3QhFO/g/2hfi6wwcXrjMZe9zaE4=
Subject key identifier: 45:0D:B0:20:09:E4:02:01:68:5E:42:E3:1C:9A:28:22:79:94:AF:76
Certificate issuer: /CN=A9133CD2/serialNumber=9AAC156FA918B4305741DAE9D5DBA2933746CE87
Certificate serial: EF
Authority key identifier: 9A:AC:15:6F:A9:18:B4:30:57:41:DA:E9:D5:DB:A2:93:37:46:CE:87
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/8D76260A142611EFB5E7B624C4F9AE02.roa
Signing time: Fri 17 May 2024 08:22:09 +0000
ROA not before: Fri 17 May 2024 08:22:09 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 135607
IP address blocks: 103.179.144.0/24 maxlen: 24
103.179.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 May 2024 06:24:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 239 (0xef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9133CD2/serialNumber=9AAC156FA918B4305741DAE9D5DBA2933746CE87
Validity
Not Before: May 17 08:22:09 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=664713b1-f1c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4b:08:c0:ae:6e:ad:c4:76:1b:2b:0d:d8:3f:
c6:ff:2d:19:5e:47:80:a9:8f:a0:c4:10:0f:43:16:
2a:23:b3:cd:d0:24:aa:9f:50:80:7f:06:df:cb:a7:
8a:3f:00:05:ad:31:0f:36:b3:dc:73:46:9d:40:1d:
98:c1:d0:a3:97:04:05:57:ff:b4:f9:4c:f2:ad:16:
67:18:a5:ce:17:a8:e8:24:65:63:01:28:23:a4:4e:
2c:2e:4d:87:cb:f2:c5:49:fc:8a:31:7f:93:23:86:
7f:76:d0:60:67:22:5a:67:51:36:25:d1:44:c3:b1:
25:15:0c:cb:71:5f:9d:33:cf:c0:02:28:95:3d:03:
8e:35:87:53:4f:93:bc:63:e5:c2:18:c9:bd:fa:d6:
a0:32:e6:dc:63:01:8e:9f:01:7f:2b:38:01:f2:42:
36:3a:dd:9a:0a:9d:1e:bd:fd:b6:ec:4b:36:1f:b7:
f5:33:db:d3:e6:31:ce:de:0e:37:f1:b9:83:a8:69:
20:25:fc:58:4a:0c:73:ff:58:13:b6:21:5b:1f:09:
78:47:67:c5:94:a0:76:d0:72:ba:68:12:ca:15:cc:
59:16:9d:3e:15:af:49:e1:ee:2b:d8:31:31:90:5b:
1f:da:b6:2e:8a:df:27:86:e2:f1:b7:df:e3:9a:74:
ce:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:0D:B0:20:09:E4:02:01:68:5E:42:E3:1C:9A:28:22:79:94:AF:76
X509v3 Authority Key Identifier:
keyid:9A:AC:15:6F:A9:18:B4:30:57:41:DA:E9:D5:DB:A2:93:37:46:CE:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/8D76260A142611EFB5E7B624C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.179.144.0/23
Signature Algorithm: sha256WithRSAEncryption
76:41:ba:78:e1:9c:2e:fe:c9:d1:e6:51:0b:60:81:08:05:85:
7a:82:57:56:fb:71:5b:ab:ed:02:65:5c:17:3b:19:81:ac:1a:
4e:c4:13:d9:0f:3d:8d:be:37:7a:2b:e6:0a:7d:37:a4:d2:bb:
6c:a3:25:4d:bd:86:ce:ac:2c:c1:e3:43:78:75:47:58:c3:97:
f4:f7:db:d6:54:e9:61:ff:fd:80:22:f7:63:cc:c3:98:6f:bd:
6a:a7:2d:85:d7:a7:32:ee:c9:21:f7:51:df:a8:5d:ac:cd:bc:
59:72:4b:64:93:88:db:3a:9b:44:73:5a:84:5f:c9:29:0c:a3:
13:00:93:88:78:f0:28:b7:a2:46:f2:30:87:e5:36:67:15:98:
4a:a3:5e:a8:3e:a2:3b:27:15:66:1d:e0:36:56:a7:b3:9e:60:
c4:7f:6e:bb:f7:9b:9c:84:a7:41:67:ec:5c:cd:8b:2a:4f:c0:
01:d0:42:3e:72:85:cd:27:16:ae:d7:1e:a8:fd:ac:e0:38:b5:
76:99:3f:18:3e:ee:3c:94:c2:73:bd:c0:b1:0d:b5:c4:d5:28:
45:58:11:c5:84:68:1b:d3:68:35:e9:bc:43:e5:c7:67:4a:f1:
a8:7e:35:95:4f:cf:57:7d:47:c3:3a:66:44:ca:37:f5:f7:a0:
ef:b7:d2:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:58 2024 by rpki-client on console-fra.rpki-client.org