Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913D6C9/73FBD332481D11ECB6FEDF77C4F9AE02/B8D53D2EA2BB11ECBF4E8463C4F9AE02.roa
File: B8D53D2EA2BB11ECBF4E8463C4F9AE02.roa (raw, json)
Hash identifier: c524i3c/DWf54b1fRLli+dNVpk5uX07yMKJJN8/nGII=
Subject key identifier: 0E:74:99:3B:29:E3:31:B4:E1:93:71:6A:EB:A0:33:B6:69:F6:E0:05
Certificate issuer: /CN=A913D6C9/serialNumber=41F8B6B47BADB00F6F8FE8E7E013FF55A18E7428
Certificate serial: 0373
Authority key identifier: 41:F8:B6:B4:7B:AD:B0:0F:6F:8F:E8:E7:E0:13:FF:55:A1:8E:74:28
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qfi2tHutsA9vj-jn4BP_VaGOdCg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913D6C9/73FBD332481D11ECB6FEDF77C4F9AE02/B8D53D2EA2BB11ECBF4E8463C4F9AE02.roa
Signing time: Thu 21 Dec 2023 02:14:13 +0000
ROA not before: Thu 21 Dec 2023 02:14:13 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 138181
IP address blocks: 103.176.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 04 Feb 2024 23:22:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 883 (0x373)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913D6C9/serialNumber=41F8B6B47BADB00F6F8FE8E7E013FF55A18E7428
Validity
Not Before: Dec 21 02:14:13 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=65839f75-ba91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fb:2d:67:cc:fe:2c:38:c9:2a:31:b2:a7:93:
e3:a3:f8:b5:78:6f:e6:f6:b7:ca:94:f8:cd:28:68:
9b:4b:33:30:64:02:e4:52:a3:f9:09:a1:68:19:9b:
aa:33:19:f9:97:b1:eb:75:d1:ae:fb:d7:86:5c:d7:
60:38:35:03:5c:37:31:09:9f:95:d1:04:b2:1b:45:
24:f4:c6:f8:22:ea:d9:cd:20:80:d2:68:eb:d1:01:
0a:24:ac:6f:16:aa:28:97:e0:20:e7:4c:e4:ca:c6:
4c:e2:8e:53:5b:29:9d:5b:ed:1d:b3:ab:af:76:c6:
c2:df:2e:47:b2:39:d1:73:40:8c:ce:5d:dd:f6:95:
61:f3:18:0f:10:0c:fd:07:01:f4:23:62:7b:6d:0f:
5b:95:f5:69:27:3f:54:dd:79:02:03:c5:5f:85:6e:
d0:86:c7:0d:a7:70:1d:99:19:57:06:37:bb:ee:88:
6b:6d:a7:d3:ad:13:12:07:26:28:2b:90:37:15:0a:
e2:64:5a:0b:70:6f:6c:5c:34:58:01:dc:0c:a1:3f:
a8:be:a3:60:a8:84:fa:82:f2:3a:04:69:2d:4b:76:
de:49:62:1e:8d:93:b8:ff:e6:63:95:ff:16:72:b5:
d8:8a:4c:00:c7:4f:8a:4e:66:c2:34:76:18:76:d9:
17:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:74:99:3B:29:E3:31:B4:E1:93:71:6A:EB:A0:33:B6:69:F6:E0:05
X509v3 Authority Key Identifier:
keyid:41:F8:B6:B4:7B:AD:B0:0F:6F:8F:E8:E7:E0:13:FF:55:A1:8E:74:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913D6C9/73FBD332481D11ECB6FEDF77C4F9AE02/Qfi2tHutsA9vj-jn4BP_VaGOdCg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qfi2tHutsA9vj-jn4BP_VaGOdCg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D6C9/73FBD332481D11ECB6FEDF77C4F9AE02/B8D53D2EA2BB11ECBF4E8463C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.176.197.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:f2:c2:85:29:92:00:69:de:0d:31:cd:de:4e:07:80:bd:3d:
c8:5b:1c:6c:62:c1:95:9c:b0:d1:01:e7:1e:99:67:11:df:d4:
f1:31:34:21:83:cf:5c:53:8f:4e:4f:b3:b0:03:af:44:69:7b:
26:e5:c9:62:ff:55:fb:c7:da:5a:b2:18:61:66:5c:23:eb:42:
9f:c3:3b:d1:a9:2e:5d:a2:9f:45:4b:30:d6:bf:36:62:8f:3c:
7c:35:46:fa:41:04:70:29:91:c5:d3:64:50:e2:e4:c7:ed:8a:
fd:10:57:3c:00:a8:7a:77:00:c1:f8:6f:a5:1a:e2:55:73:7a:
55:a0:85:ef:cf:3b:60:fa:ac:9a:60:83:39:d3:7c:76:fb:72:
94:d4:96:82:c0:d3:c3:ee:23:25:40:ba:c3:81:1b:4e:aa:82:
c3:c5:59:9e:bd:d1:d3:fe:29:43:43:19:c3:6a:29:36:12:d3:
a6:d3:c3:62:fd:bf:0a:2b:ed:d4:60:61:68:cb:c0:21:d6:e0:
2a:df:e8:79:68:c8:d0:91:70:81:ce:35:04:6e:e0:65:be:1c:
47:86:22:fa:54:44:51:92:76:8e:67:6f:18:c2:15:f2:67:89:
bc:1b:0b:e8:19:52:15:cf:34:e3:56:3f:0a:28:03:42:1a:f1:
3e:c0:b3:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:03 2024 by rpki-client on console-fra.rpki-client.org