Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915B5B1/ED629F0CD7E811EC92A94F4CC4F9AE02/440D7064116E11EFAE9EDF64C4F9AE02.roa
File: 440D7064116E11EFAE9EDF64C4F9AE02.roa (raw, json)
Hash identifier: Y8CJkNFWOA7nVUTCz1ZKOsO+vxIhSch7716AlTkb7Ao=
Subject key identifier: 81:0C:A4:AD:E5:D9:15:EE:31:10:AB:68:C7:BA:AB:80:FA:DD:58:77
Certificate issuer: /CN=A915B5B1/serialNumber=DFDC3ADB33CAA8591EFAF2776C3B0C556C08A2B6
Certificate serial: 02B2
Authority key identifier: DF:DC:3A:DB:33:CA:A8:59:1E:FA:F2:77:6C:3B:0C:55:6C:08:A2:B6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/39w62zPKqFke-vJ3bDsMVWwIorY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915B5B1/ED629F0CD7E811EC92A94F4CC4F9AE02/440D7064116E11EFAE9EDF64C4F9AE02.roa
Signing time: Sat 31 Aug 2024 03:35:27 +0000
ROA not before: Sat 31 Aug 2024 03:35:27 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 149311
IP address blocks: 103.187.244.0/24 maxlen: 24
103.187.245.0/24 maxlen: 24
2001:df0:c240::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 31 Aug 2024 11:55:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 690 (0x2b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915B5B1/serialNumber=DFDC3ADB33CAA8591EFAF2776C3B0C556C08A2B6
Validity
Not Before: Aug 31 03:35:27 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66d28f7f-2b41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b9:7f:df:a1:4a:30:56:7a:5c:ce:1a:ef:4c:
2c:22:40:73:72:1a:bc:8e:0f:9f:e4:42:cc:22:7c:
d2:77:6a:4d:51:38:2b:86:24:3c:05:92:fe:1f:da:
83:f6:99:82:a1:31:29:02:80:de:14:87:93:f7:46:
2a:0f:43:61:9e:07:09:c4:f6:d7:5f:ab:2f:53:04:
fc:36:de:8e:75:3d:78:c4:f7:2d:75:03:37:1c:3d:
0b:82:9e:29:2e:0e:17:ba:5d:1b:e7:91:a9:19:b8:
8b:96:0b:e2:8f:a2:5b:39:a5:bf:69:8b:4e:8a:9b:
28:e2:be:a2:5a:f7:06:4d:12:9b:5e:a3:45:61:27:
ee:4c:f3:9a:1c:b6:5b:ea:45:72:75:f0:f2:74:54:
8e:07:4c:8e:33:39:d7:09:64:15:53:b5:70:54:56:
72:8b:a0:56:3b:25:94:75:ac:18:f2:d6:eb:80:ea:
5a:31:8d:d2:84:2b:38:74:5a:1a:e5:3c:64:66:4c:
cc:c0:6a:09:ac:bd:f4:e4:e3:37:e8:f2:37:fa:d7:
3b:14:03:93:a5:ae:44:47:f1:19:de:bd:8e:07:4b:
5c:99:53:f9:31:81:3c:89:52:31:41:e1:c5:e7:03:
11:d2:14:a6:e7:a4:f0:8b:c2:39:d3:bc:a7:a7:be:
7d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:0C:A4:AD:E5:D9:15:EE:31:10:AB:68:C7:BA:AB:80:FA:DD:58:77
X509v3 Authority Key Identifier:
keyid:DF:DC:3A:DB:33:CA:A8:59:1E:FA:F2:77:6C:3B:0C:55:6C:08:A2:B6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915B5B1/ED629F0CD7E811EC92A94F4CC4F9AE02/39w62zPKqFke-vJ3bDsMVWwIorY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/39w62zPKqFke-vJ3bDsMVWwIorY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B5B1/ED629F0CD7E811EC92A94F4CC4F9AE02/440D7064116E11EFAE9EDF64C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.187.244.0/23
IPv6:
2001:df0:c240::/48
Signature Algorithm: sha256WithRSAEncryption
a9:99:82:37:b2:ee:87:2a:9d:ed:88:d0:32:c9:84:59:14:72:
05:d4:c1:c8:c8:8d:86:4d:63:04:a9:a3:ac:3c:cc:f4:fb:77:
cc:63:db:39:b8:ee:ed:08:73:b5:ac:93:c1:0c:a1:4c:31:da:
57:59:fd:8d:a9:97:d2:29:c3:5f:f0:18:ab:7d:c3:f0:2b:6f:
85:27:fd:7c:94:47:68:ca:d1:2d:00:9e:12:0d:54:09:6a:a9:
60:5a:db:0b:a2:00:10:3e:e4:73:b4:1c:50:80:3d:6a:90:ab:
a5:14:73:e7:80:d5:17:7f:05:9f:a8:8f:b7:c7:b7:40:60:8a:
6c:7a:6c:3f:88:ab:a9:00:81:b7:52:b0:6e:32:00:be:af:45:
46:e1:cb:c0:a8:c6:e8:b6:de:32:20:be:85:bf:3c:32:8b:48:
16:34:5e:75:d8:59:b7:32:02:0e:4f:86:f9:ab:a3:ae:df:0e:
88:f4:e4:40:89:43:bc:0f:c5:ff:a2:60:a1:1f:78:2c:e3:99:
d6:da:b9:f5:a3:93:2c:7e:81:34:83:39:ae:62:86:51:a2:ef:
79:5d:8c:98:6f:34:7c:0e:12:55:03:73:d7:11:c9:24:ae:84:
e0:d3:1e:e5:6a:0b:87:1a:e8:00:cf:05:35:29:b9:86:1f:d6:
51:a0:fb:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 13:41:07 2024 by rpki-client on console-fra.rpki-client.org