Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/6B4135EA8E5411EF86959F3CC4F9AE02.roa
File: 6B4135EA8E5411EF86959F3CC4F9AE02.roa (raw, json)
Hash identifier: f/aLxC339rV6ueKTmhpTfzT8kqLwJhJbjwDBg5ryE0k=
Subject key identifier: 4F:65:C9:31:56:DF:3A:0B:D2:44:2C:F9:F2:9C:80:8E:6A:A5:9E:F9
Certificate issuer: /CN=A9155647/serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB
Certificate serial: B0
Authority key identifier: AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/6B4135EA8E5411EF86959F3CC4F9AE02.roa
Signing time: Tue 26 Nov 2024 17:54:16 +0000
ROA not before: Tue 26 Nov 2024 17:54:16 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 151734
IP address blocks: 43.231.207.0/24 maxlen: 24
103.72.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Jan 2025 19:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176 (0xb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9155647
Validity
Not Before: Nov 26 17:54:16 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=67460b48-8614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d8:ef:b3:34:1a:d0:d8:1f:ef:5d:0f:b7:07:
3a:02:8d:66:b5:1d:e7:ee:45:58:9a:8e:34:ad:06:
2c:af:3b:6d:22:de:c6:0f:49:ae:4b:ef:80:c8:57:
ce:56:80:a2:54:ae:96:6a:e9:61:0d:e1:a7:01:ae:
d6:5d:3f:95:be:18:9a:29:c5:96:9f:dc:50:05:e6:
84:64:7e:a7:b9:c2:d7:e6:e4:80:70:16:e1:c5:d6:
00:76:72:de:0f:cd:c0:f2:d1:45:d6:d3:4b:93:48:
d8:49:17:13:d9:9b:2b:c8:76:d6:e2:26:d1:ce:49:
a1:32:a5:f0:97:bd:90:5f:83:b0:17:02:10:4d:34:
cc:c7:9f:ba:c2:8b:7e:36:bd:56:0c:8e:4c:b1:14:
fe:aa:e7:bb:c9:73:cc:36:c5:fc:68:d6:94:6c:f8:
b4:92:00:57:ff:13:6f:52:b7:14:62:ca:67:ad:ab:
51:a6:79:b6:1d:fa:a9:e5:de:78:d7:ee:ce:a2:16:
0e:de:4e:4f:83:9c:85:1c:b6:d8:16:f9:dc:34:1b:
e5:ef:1f:eb:40:8f:a8:03:ef:1a:4b:20:a9:ed:66:
89:dc:4d:4d:67:75:8f:92:66:3b:41:a3:ff:ea:bb:
87:db:c3:cf:6d:58:48:84:b0:7f:3c:c8:e8:88:90:
14:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:65:C9:31:56:DF:3A:0B:D2:44:2C:F9:F2:9C:80:8E:6A:A5:9E:F9
X509v3 Authority Key Identifier:
keyid:AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/6B4135EA8E5411EF86959F3CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.231.207.0/24
103.72.195.0/24
Signature Algorithm: sha256WithRSAEncryption
80:83:4f:6f:f1:8d:9f:a3:33:73:9c:9d:d3:81:e4:8c:a5:93:
d1:79:9f:4c:65:7a:8e:30:4f:80:20:87:0d:ae:93:1c:5d:ce:
cb:37:a6:57:e1:78:ee:ae:89:11:00:67:1c:45:53:de:43:23:
19:16:75:f7:64:d2:ce:3b:16:d6:cc:5e:b8:10:e5:3a:06:eb:
f0:e2:fd:39:f8:57:b4:bf:56:e2:7a:17:01:d0:26:38:d7:f5:
34:63:3f:14:61:d4:b6:52:ba:1b:cd:e7:3a:e8:fd:ec:33:74:
66:ed:80:86:49:c3:43:2c:ec:ed:54:66:75:fc:a6:b2:f7:60:
1e:af:ae:9b:4a:51:bf:cf:85:35:44:f5:31:60:f9:f7:0d:c9:
c5:d4:6a:0c:11:46:12:91:f4:79:32:a2:46:c0:68:90:d2:fd:
f4:df:d6:1e:db:f8:7d:36:c8:67:a8:a1:af:f1:8c:28:a6:ee:
da:6f:a6:22:9e:72:c7:fe:0d:db:5f:0a:7c:e3:e7:c6:c8:d6:
44:65:4b:53:5e:40:2f:96:b7:1d:14:63:a6:7b:bd:23:24:9c:
74:34:47:51:fc:a1:c8:ee:ce:fc:37:ba:de:5d:d5:d3:82:b3:
90:66:a3:ac:e6:b3:f6:17:c2:c4:94:a2:1d:c4:49:7e:70:21:
49:c7:0a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:34:40 2025 by rpki-client