Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916BFAB/33A9CC9C368411EEA927F948C4F9AE02/7C3D7B1E48C911EE9C2BBD85C4F9AE02.roa
File: 7C3D7B1E48C911EE9C2BBD85C4F9AE02.roa (raw, json)
Hash identifier: h+yeBoqCZj8C4gxOKMPG4MyhMT+L7iiXEconuNw1xes=
Subject key identifier: 98:65:20:4E:D3:6D:CA:76:57:6E:C2:69:2F:3A:1B:D5:41:94:59:98
Certificate issuer: /CN=A916BFAB/serialNumber=0583A85FE313FC0D6366E22C4466B293EAD45AE4
Certificate serial: 1A
Authority key identifier: 05:83:A8:5F:E3:13:FC:0D:63:66:E2:2C:44:66:B2:93:EA:D4:5A:E4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYOoX-MT_A1jZuIsRGayk-rUWuQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916BFAB/33A9CC9C368411EEA927F948C4F9AE02/7C3D7B1E48C911EE9C2BBD85C4F9AE02.roa
Signing time: Fri 01 Sep 2023 13:16:01 +0000
ROA not before: Fri 01 Sep 2023 13:16:01 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 151659
IP address blocks: 103.251.254.0/24 maxlen: 24
103.251.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Dec 2023 13:08:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26 (0x1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916BFAB/serialNumber=0583A85FE313FC0D6366E22C4466B293EAD45AE4
Validity
Not Before: Sep 1 13:16:01 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=64f1e411-c15a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:99:53:99:d6:38:43:d6:97:61:2a:8b:f2:b6:
77:c0:a4:bf:88:0d:f6:be:df:fa:98:9f:80:f3:1d:
41:c3:04:5b:1d:f9:64:ef:1c:74:77:ed:ff:87:d0:
1b:8a:31:c8:50:14:56:47:dd:a7:24:cd:0a:de:fb:
75:5a:ff:ab:98:1e:2e:11:c5:b0:ae:9c:84:50:e3:
09:a5:61:9c:d0:66:61:2d:32:ec:2e:b9:71:17:b1:
79:88:17:4d:57:6a:cc:3e:17:fa:b9:2d:c0:36:63:
af:41:18:5c:ff:02:9a:f6:37:10:c2:ca:05:12:a4:
de:20:18:63:e9:45:18:fd:0f:7c:3f:32:ab:06:9d:
9d:0d:9c:ce:85:13:e3:14:2c:d9:0d:fa:b7:5f:d3:
13:8f:5c:6d:80:ee:c8:27:c8:15:23:b1:85:ea:7f:
ae:a5:ee:49:f6:ba:ea:73:c0:74:9d:a3:93:a3:21:
f9:61:06:c2:18:df:72:49:09:ac:e9:d1:4f:97:70:
90:10:da:83:44:15:b9:76:44:44:9f:54:4b:ad:47:
b1:b6:b6:fb:9b:70:5a:dc:b5:ab:0e:45:ed:5b:c0:
2c:ca:89:ac:31:d3:cb:12:10:56:93:03:c7:65:c0:
07:c5:99:f8:95:86:98:26:98:78:be:46:63:11:de:
5b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:65:20:4E:D3:6D:CA:76:57:6E:C2:69:2F:3A:1B:D5:41:94:59:98
X509v3 Authority Key Identifier:
keyid:05:83:A8:5F:E3:13:FC:0D:63:66:E2:2C:44:66:B2:93:EA:D4:5A:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916BFAB/33A9CC9C368411EEA927F948C4F9AE02/BYOoX-MT_A1jZuIsRGayk-rUWuQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYOoX-MT_A1jZuIsRGayk-rUWuQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BFAB/33A9CC9C368411EEA927F948C4F9AE02/7C3D7B1E48C911EE9C2BBD85C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.251.254.0/23
Signature Algorithm: sha256WithRSAEncryption
18:4d:09:22:eb:b2:1e:7a:06:b5:fc:53:7e:ce:20:26:0e:20:
5f:eb:b3:06:6e:a4:4e:d6:f8:8d:62:31:cb:de:54:30:46:22:
f5:60:c5:19:2b:b4:90:70:77:29:b8:6c:15:43:38:99:3b:72:
3c:0d:e2:00:51:6e:61:da:79:23:fa:08:cd:2e:ee:b9:96:61:
07:fc:64:05:c6:6b:ce:09:7c:a8:1d:65:d8:06:d8:f9:c2:3c:
28:e2:4e:b0:68:29:01:63:89:45:8f:3c:47:01:53:3b:e0:fa:
a5:bb:1a:7c:04:0e:e6:81:3f:c2:9e:8b:c7:ac:60:89:74:94:
86:d0:44:48:5b:19:02:9c:8c:6c:31:49:95:6f:90:2e:01:cd:
6d:83:7a:0b:99:c4:47:2e:f8:ed:ae:b0:02:8f:e1:36:c9:5a:
4d:88:9b:55:07:8b:01:a7:f4:66:26:85:9f:af:b3:f2:ef:56:
92:73:cc:04:48:18:e4:09:c6:c4:09:08:15:bf:22:36:3a:a4:
95:f7:d2:1e:07:7f:69:26:d8:ba:59:fd:24:5c:c4:1c:c5:14:
39:b1:85:5a:9f:86:4a:54:ad:6c:db:84:ef:9f:b9:6d:34:7d:
3b:cf:2c:36:27:f0:f6:e3:fb:c3:31:4a:d8:6b:3b:9d:cf:cc:
66:a6:11:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:20 2024 by rpki-client on console-ams.rpki-client.org