Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/2526264A61C511EE9BB7F05FC4F9AE02.roa
File: 2526264A61C511EE9BB7F05FC4F9AE02.roa (raw, json)
Hash identifier: ibib+UQJ2WcRDDmHBgYNY7C6TOMiExkkWIHjnYVR4zs=
Subject key identifier: 5C:9D:0D:2B:97:33:2A:8E:31:67:FB:FB:C1:F8:83:FB:33:3B:1E:5C
Certificate issuer: /CN=A9174589/serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234
Certificate serial: 06
Authority key identifier: 45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/2526264A61C511EE9BB7F05FC4F9AE02.roa
Signing time: Tue 03 Oct 2023 20:45:20 +0000
ROA not before: Tue 03 Oct 2023 20:45:20 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 151835
IP address blocks: 103.240.2.0/23 maxlen: 23
103.240.2.0/24 maxlen: 24
103.240.3.0/24 maxlen: 24
2001:df2:fbc0::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 14 Dec 2023 19:31:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9174589/serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234
Validity
Not Before: Oct 3 20:45:20 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=651c7d60-a010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:89:6c:ec:41:20:55:fb:d4:29:b4:5d:fd:22:
7a:0c:81:a0:b3:5f:2e:1c:5a:b2:53:0c:8c:ca:df:
9c:4a:de:14:5f:52:9d:1a:59:65:a8:a4:87:ed:96:
a4:e0:9d:5c:3e:7d:6d:68:26:42:ad:a1:78:0b:88:
ca:09:59:17:08:16:1b:db:84:77:c5:99:99:2b:10:
e1:6b:e8:69:70:e2:0e:b1:df:fa:a9:39:8a:1a:e9:
26:b3:a2:35:09:a4:2a:87:d0:e3:8c:32:34:11:b9:
4e:d7:8e:e6:e8:e3:99:79:64:e0:04:71:65:56:1c:
19:a8:66:8a:3b:83:1e:78:fe:df:70:59:50:4b:a7:
7b:5e:3b:7c:2f:90:a8:c2:47:8f:13:15:f3:2b:42:
87:5b:e8:e6:91:9c:5f:a5:29:28:6d:a3:03:48:08:
6c:41:5c:2c:ff:18:a1:07:51:a6:a3:19:74:fb:f6:
14:e1:ae:b4:9b:92:10:c3:28:5c:8c:f4:0c:f0:0b:
95:24:c7:cf:29:53:0d:e6:d0:03:ad:b6:73:93:9c:
f3:c3:74:00:be:81:10:f4:00:33:c2:d4:35:b3:02:
b3:38:51:71:db:93:1d:25:db:7b:da:3f:df:a7:6d:
34:84:8d:d7:52:52:85:75:07:a7:60:15:d4:9d:5a:
d6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:9D:0D:2B:97:33:2A:8E:31:67:FB:FB:C1:F8:83:FB:33:3B:1E:5C
X509v3 Authority Key Identifier:
keyid:45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/2526264A61C511EE9BB7F05FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.240.2.0/23
IPv6:
2001:df2:fbc0::/48
Signature Algorithm: sha256WithRSAEncryption
8c:f0:ac:a8:57:c4:59:6c:41:0e:9b:8f:69:ec:69:52:ca:cb:
89:94:b4:ae:56:7e:fc:6e:cf:fd:81:d8:d6:e5:0d:8e:9f:b4:
c0:06:dc:0f:3d:f1:3f:1b:e8:b8:e2:21:e3:da:28:4f:1a:41:
99:84:39:f3:12:e9:14:ab:31:53:b5:75:1c:72:6c:7b:27:00:
eb:1f:d1:f5:01:5b:c1:56:c7:f0:de:78:b0:29:ab:54:81:c4:
0a:bb:aa:d6:4e:86:94:fa:8e:08:90:c0:b9:ba:d0:d4:32:e4:
ef:d1:dd:67:52:87:6b:28:58:f5:61:fd:1a:6c:a4:56:bc:8d:
53:7a:2e:72:30:98:6c:7d:fd:66:f4:1f:8e:82:99:bb:4b:b5:
0f:89:a6:7a:a9:27:9b:9c:fe:b3:e7:ac:6b:4c:10:5f:ee:4b:
9e:23:9d:f6:0e:a8:f5:8b:78:c7:29:5a:b8:6b:d5:55:f7:f8:
39:bc:57:20:37:92:ea:41:33:ed:22:77:25:fb:bc:5b:12:61:
a4:34:c7:4b:3d:5a:eb:8a:95:8c:30:35:4f:12:a6:88:ae:f9:
d0:89:b9:5b:0c:d5:5d:57:04:9a:90:1a:8d:18:40:96:0d:ee:
b6:61:8a:e5:d0:50:50:f9:b5:09:ac:4b:70:d2:c7:fe:de:5c:
b5:f1:be:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:12 2024 by rpki-client on console-fra.rpki-client.org