Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/47909A06AC8F11EFB3652353C4F9AE02.roa
File: 47909A06AC8F11EFB3652353C4F9AE02.roa (raw, json)
Hash identifier: esh3GbqrPuvHByVEMfEkUvL/Ha4cCy+qSiFuRHeLXtQ=
Subject key identifier: 69:FC:0F:F2:1B:17:35:74:65:E2:36:BD:92:62:6A:71:B8:79:63:32
Certificate issuer: /CN=A915EFDF/serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B
Certificate serial: 07C0
Authority key identifier: E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/47909A06AC8F11EFB3652353C4F9AE02.roa
Signing time: Wed 27 Nov 2024 07:14:45 +0000
ROA not before: Wed 27 Nov 2024 07:14:45 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 214174
IP address blocks: 103.72.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Dec 2024 15:36:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1984 (0x7c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915EFDF
Validity
Not Before: Nov 27 07:14:45 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=6746c6e5-be46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:91:bb:fe:38:bf:f4:9b:ab:77:52:3c:07:cb:
aa:57:01:c7:6b:37:58:5c:8d:7e:c8:29:01:cc:c9:
86:99:bc:2d:6c:06:ee:f4:a6:f7:a4:91:db:1e:95:
61:fc:73:79:67:98:64:31:16:1f:fc:1c:4d:a3:74:
ab:d3:23:15:d1:40:64:a7:60:ca:7c:69:ee:c0:fb:
25:fb:f9:64:30:ac:19:70:50:39:b8:cc:2f:c0:4a:
ec:e0:3d:27:f3:b0:ad:8d:ee:86:22:3d:a8:14:c8:
cc:d6:17:ee:b6:96:93:e8:17:c3:51:3a:b1:84:c0:
d2:d7:0c:63:a0:46:5d:63:17:0d:73:4f:e8:be:f0:
ac:d6:61:fe:46:4c:b8:dd:51:51:6b:dc:76:30:f8:
dd:b8:7e:c4:5c:b8:50:91:d0:4f:4b:5f:cc:39:d1:
65:d4:a9:51:ee:13:ea:ab:fb:0d:73:ee:63:72:b1:
8e:d0:e7:6a:75:4a:d6:1c:e3:b9:c2:1b:f0:2d:e0:
25:0d:5e:f3:22:81:60:7d:d0:d0:64:97:91:64:02:
12:c9:d9:c8:c9:56:77:3d:5d:64:93:75:ec:f1:05:
6b:28:4e:b2:40:17:01:d3:0d:44:e8:cf:5e:69:2a:
8f:24:ed:65:f6:5c:af:b5:bc:22:6e:78:4f:6c:33:
d2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:FC:0F:F2:1B:17:35:74:65:E2:36:BD:92:62:6A:71:B8:79:63:32
X509v3 Authority Key Identifier:
keyid:E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/47909A06AC8F11EFB3652353C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.72.102.0/24
Signature Algorithm: sha256WithRSAEncryption
06:19:9f:45:64:04:a1:4b:22:d1:7f:f8:02:65:9e:f9:69:3f:
33:8b:33:16:e6:0c:36:3b:f1:9c:fc:14:ab:6e:5a:1e:ad:a4:
bb:89:82:09:c6:35:4b:e8:55:d1:5c:81:a9:37:d6:84:d9:d1:
28:07:6f:9e:05:84:5b:0f:f6:71:61:74:cb:db:a6:23:38:22:
65:40:4c:41:a0:42:d1:23:84:13:0c:3c:c4:66:ee:23:28:1e:
b0:51:70:e2:d8:37:50:ab:50:39:84:e7:9f:fd:b8:5e:3a:25:
ab:d6:b3:ac:b7:ba:5b:c6:49:d2:7e:cc:10:ef:33:26:15:f5:
f4:2e:bf:65:85:9a:dc:61:12:81:3e:25:bf:9c:0c:e1:36:fb:
67:dd:19:a4:b6:78:d6:9c:61:3a:49:73:10:c2:10:e7:d5:e9:
c0:f1:12:31:1f:f1:9e:a7:44:22:42:c5:6d:6f:5f:9b:70:4f:
64:6b:a6:c7:79:63:bc:17:cd:17:c5:2a:41:d6:d7:c4:54:8b:
1c:7f:6a:08:6f:31:37:df:c0:e9:aa:31:f4:8c:48:87:50:41:
73:9a:48:5b:b0:62:1e:e6:8e:ab:b8:7b:21:03:92:d2:ad:09:
23:95:a6:f2:03:69:64:da:b3:94:1b:bf:49:64:ef:47:b1:60:
43:90:c6:ea
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICB8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NUVGREYxMTAvBgNVBAUTKEU4QzIxQjAzQjY1MDgzQjIxQkZBMzc1MjZEMTJCMzQx
RjI0OUNDOEIwHhcNMjQxMTI3MDcxNDQ1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzQ2YzZlNS1iZTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwpG7/ji/9Jurd1I8B8uqVwHHazdYXI1+yCkBzMmGmbwtbAbu9Kb3pJHbHpVh
/HN5Z5hkMRYf/BxNo3Sr0yMV0UBkp2DKfGnuwPsl+/lkMKwZcFA5uMwvwErs4D0n
87Ctje6GIj2oFMjM1hfutpaT6BfDUTqxhMDS1wxjoEZdYxcNc0/ovvCs1mH+Rky4
3VFRa9x2MPjduH7EXLhQkdBPS1/MOdFl1KlR7hPqq/sNc+5jcrGO0OdqdUrWHOO5
whvwLeAlDV7zIoFgfdDQZJeRZAISydnIyVZ3PV1kk3Xs8QVrKE6yQBcB0w1E6M9e
aSqPJO1l9lyvtbwibnhPbDPScQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGn8D/Ib
FzV0ZeI2vZJianG4eWMyMB8GA1UdIwQYMBaAFOjCGwO2UIOyG/o3Um0Ss0HyScyL
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUZERi8wQkREN0VBMkU5
MEMxMUVBOTY1QzJBMkZDNEY5QUUwMi82TUliQTdaUWc3SWItamRTYlJLelFmSkp6
SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzZNSWJBN1pRZzdJYi1qZFNiUkt6UWZKSnpJcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NUVGREYvMEJERDdFQTJFOTBDMTFFQTk2NUMyQTJGQzRGOUFFMDIvNDc5MDlBMDZB
QzhGMTFFRkIzNjUyMzUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnSGYwDQYJKoZIhvcNAQELBQADggEBAAYZn0VkBKFLItF/
+AJlnvlpPzOLMxbmDDY78Zz8FKtuWh6tpLuJggnGNUvoVdFcgak31oTZ0SgHb54F
hFsP9nFhdMvbpiM4ImVATEGgQtEjhBMMPMRm7iMoHrBRcOLYN1CrUDmE55/9uF46
JavWs6y3ulvGSdJ+zBDvMyYV9fQuv2WFmtxhEoE+Jb+cDOE2+2fdGaS2eNacYTpJ
cxDCEOfV6cDxEjEf8Z6nRCJCxW1vX5twT2Rrpsd5Y7wXzRfFKkHW18RUixx/aghv
MTffwOmqMfSMSIdQQXOaSFuwYh7mjqu4eyEDktKtCSOVpvIDaWTas5Qbv0lk70ex
YEOQxuo=
-----END CERTIFICATE-----
Generated at Sat Apr 5 22:14:54 2025 by rpki-client