Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/0B02EE20023C11EF9AF7B734C4F9AE02.roa
File: 0B02EE20023C11EF9AF7B734C4F9AE02.roa (raw, json)
Hash identifier: C5kEYwMC1GgBvk2lgBlvvLN7OSe8rMbJmr+sD5sPTXE=
Subject key identifier: A1:5A:C0:F2:E2:6B:1C:A4:29:94:0F:EC:BD:3C:71:FC:DA:74:21:BA
Certificate issuer: /CN=A9179BF7/serialNumber=7FCDEC31FAFA7E527DA7A9703932040F84558159
Certificate serial: 0254
Authority key identifier: 7F:CD:EC:31:FA:FA:7E:52:7D:A7:A9:70:39:32:04:0F:84:55:81:59
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f83sMfr6flJ9p6lwOTIED4RVgVk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/0B02EE20023C11EF9AF7B734C4F9AE02.roa
Signing time: Fri 13 Sep 2024 05:15:37 +0000
ROA not before: Fri 13 Sep 2024 05:15:37 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 140934
IP address blocks: 103.190.16.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Oct 2024 16:34:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 596 (0x254)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9179BF7, serialNumber=7FCDEC31FAFA7E527DA7A9703932040F84558159
Validity
Not Before: Sep 13 05:15:37 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66e3ca79-cdff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:17:e4:87:c7:db:db:4f:28:64:08:8d:a0:36:
7b:05:92:96:27:ca:0a:b8:03:27:2a:f8:7a:5a:79:
07:84:d6:28:f6:a4:0a:78:46:2d:96:88:3c:73:93:
b9:3b:d8:0a:b5:ca:7f:c2:ca:3a:9d:b9:2a:b7:52:
3d:4f:ad:15:43:a9:5e:60:9a:0b:a2:72:fe:b1:89:
f6:40:67:09:56:6a:c0:4c:6b:0f:d0:33:7b:c1:92:
58:98:a2:57:c3:88:31:14:e7:42:6e:6a:d1:5c:c8:
28:f7:51:82:d1:62:ab:ea:3b:c5:55:2a:53:42:6b:
cb:df:a9:99:20:c1:ed:e2:34:12:c2:9b:43:a9:50:
25:09:ad:e6:15:66:e4:1c:48:93:52:d9:9e:a9:be:
b8:16:ff:44:4c:f2:27:7c:90:03:d1:06:1e:c3:19:
17:96:ae:cc:46:71:59:9c:01:0c:2d:e7:09:08:57:
67:d7:aa:73:54:84:1d:6a:f3:a1:40:a3:27:66:f2:
e7:1f:c5:2e:c0:a5:e8:3a:10:d6:ee:f3:82:49:0c:
70:69:f8:7e:74:46:63:7d:5f:1d:21:e3:a2:38:c3:
f5:a7:4d:8e:4e:8b:62:e0:bd:e5:72:39:7b:0e:50:
fc:27:55:2d:e4:a0:bc:08:c9:e0:ee:dc:f3:c4:50:
49:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:5A:C0:F2:E2:6B:1C:A4:29:94:0F:EC:BD:3C:71:FC:DA:74:21:BA
X509v3 Authority Key Identifier:
keyid:7F:CD:EC:31:FA:FA:7E:52:7D:A7:A9:70:39:32:04:0F:84:55:81:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/f83sMfr6flJ9p6lwOTIED4RVgVk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f83sMfr6flJ9p6lwOTIED4RVgVk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/0B02EE20023C11EF9AF7B734C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.190.16.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:8f:c6:53:1a:5b:15:6b:3e:67:62:df:d7:ad:1d:07:13:8e:
9e:e4:9e:2d:38:fd:0f:f9:0b:28:5b:93:d2:24:d9:a8:68:e3:
36:c0:f5:94:2d:22:88:4f:d3:a2:03:10:78:44:89:ee:29:58:
94:39:f7:c4:05:f7:89:fa:81:8a:1d:67:f7:1e:aa:76:a0:d2:
f5:b9:69:ec:01:cd:af:fe:0b:bc:bb:0c:1f:ad:88:30:c5:b6:
76:ad:ff:fa:8c:17:1c:af:bf:b2:2f:26:e7:26:e4:13:7c:a7:
00:11:e9:76:a1:5e:c8:4e:2b:a6:98:cd:9e:88:22:5f:db:c6:
53:6a:a8:7b:b8:b6:95:3a:0f:16:e4:ca:b9:58:0c:da:92:de:
b2:d7:88:71:ec:1f:92:bb:01:dd:2d:d4:7e:b3:e6:aa:ec:df:
8f:35:3e:0c:ad:e7:2d:32:ac:42:05:d2:ff:a1:00:f4:dc:99:
99:8f:5f:cf:98:0d:bd:71:ed:71:f5:28:f3:16:fd:98:03:a4:
9a:da:c2:e9:68:a4:b8:1e:be:a1:33:af:4e:f7:c4:ea:58:55:
49:77:2a:81:9b:2d:db:31:a6:95:53:70:83:82:97:6e:6e:58:
3f:85:3e:bc:99:22:5c:63:e1:1a:6b:09:81:7f:29:50:9f:91:
9f:f2:bf:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 14:46:28 2025 by rpki-client