Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/B20CEEB4D46411EF90C95649C4F9AE02.roa
File: B20CEEB4D46411EF90C95649C4F9AE02.roa (raw, json)
Hash identifier: IktBTeqUNmfVkxJy6eKvRQnASNFXnlVo8CAZuSbRMvo=
Subject key identifier: 2A:BC:08:48:A0:1D:C3:BE:D6:BA:E3:A4:05:36:41:E6:F6:8C:8F:30
Certificate issuer: /CN=A915EFDF/serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B
Certificate serial: 07E4
Authority key identifier: E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/B20CEEB4D46411EF90C95649C4F9AE02.roa
Signing time: Thu 16 Jan 2025 23:50:42 +0000
ROA not before: Thu 16 Jan 2025 23:50:42 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 834
IP address blocks: 103.72.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Jan 2025 04:19:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2020 (0x7e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915EFDF
Validity
Not Before: Jan 16 23:50:42 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=67899b52-d2f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:68:6b:86:8d:4b:5c:b1:4b:63:1f:b6:3c:99:
45:6e:f5:38:fe:32:15:e1:7c:12:a9:15:c7:de:ca:
45:a5:28:e4:32:ac:f9:c9:ae:4a:9e:ec:65:f5:d4:
21:49:66:82:c1:02:63:9c:c8:f9:9e:59:3c:d2:cd:
48:53:10:07:ba:4b:3e:f3:b9:f1:18:54:e3:1a:58:
31:c5:23:8a:56:7a:3d:88:a4:41:cc:18:dc:2a:b5:
2c:b1:0a:68:95:27:f0:16:57:ad:13:ed:a4:46:17:
5b:71:2b:df:93:4e:a3:61:d9:1c:11:06:42:1c:97:
25:4b:d5:4f:6e:c5:f6:1c:ac:54:83:c2:d3:a7:27:
b7:71:ce:e9:05:3f:07:08:06:5d:49:6e:c1:5c:64:
1c:36:94:23:32:36:ef:f8:7b:8a:e9:99:c0:a6:a4:
cd:7a:d4:d8:67:ab:6c:b8:42:e9:42:ab:da:92:12:
60:69:49:f5:6b:c0:94:4a:62:b1:28:d2:02:98:fb:
64:f6:a9:01:bd:c2:c5:a9:7c:d4:bd:3d:0f:f5:4e:
74:07:d8:dc:10:ae:a1:4a:f4:08:6b:60:7f:73:a3:
2b:19:01:ed:7e:df:92:e6:e8:08:f7:e7:04:ed:67:
bf:af:8d:b4:f1:0d:28:f4:e8:49:b1:40:1f:00:73:
c7:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:BC:08:48:A0:1D:C3:BE:D6:BA:E3:A4:05:36:41:E6:F6:8C:8F:30
X509v3 Authority Key Identifier:
keyid:E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/B20CEEB4D46411EF90C95649C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.72.103.0/24
Signature Algorithm: sha256WithRSAEncryption
50:c3:2c:a0:eb:7f:43:39:95:c4:eb:4c:ec:63:95:14:a9:33:
04:ae:a2:87:a0:aa:be:c0:fb:1b:fe:c0:92:35:b3:f1:f3:7c:
f6:38:15:f5:80:da:0d:82:ce:e9:f9:82:36:f2:1e:54:ab:1d:
13:59:69:d0:a2:95:e0:33:2a:d2:72:08:72:63:d9:bc:05:19:
56:9b:ea:96:c8:e9:b9:7b:a9:03:a2:5f:00:d8:5e:4e:0a:f0:
bc:18:bc:fd:c2:cb:c3:0e:ca:21:cc:44:25:1c:ec:23:23:70:
96:01:f9:c5:40:3b:3a:3c:de:d8:df:90:01:09:4e:b0:0c:20:
42:00:00:4f:c2:70:dc:21:56:ed:ee:4d:79:05:67:52:b0:b2:
c6:5a:e2:51:58:ca:da:2a:a5:81:1f:e0:39:97:fe:0a:86:46:
7e:ae:74:d0:b3:09:e7:41:5b:07:a6:ce:a0:6b:aa:6a:05:df:
70:a7:43:7e:26:1c:02:13:de:c2:f1:c1:60:c2:9a:75:c0:dc:
1d:68:37:1a:f5:36:0b:4e:78:45:1d:36:29:d3:57:73:44:7b:
fa:fe:31:5d:99:c1:ba:00:6f:8b:89:10:75:40:97:ea:25:f4:
13:3d:d3:a9:4b:61:2c:96:22:02:a7:ae:52:83:6e:a1:ac:ce:
99:9e:9f:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:50:00 2025 by rpki-client