Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/01104CF47A2F11EE867CE132C4F9AE02.roa
File: 01104CF47A2F11EE867CE132C4F9AE02.roa (raw, json)
Hash identifier: sZ9l8HqoUzZHMSBQ50ygog9jz2uZpnIBR75iS1lo1WY=
Subject key identifier: 40:42:ED:5D:37:88:C0:68:EC:1C:D5:F3:A6:04:A8:6E:52:3C:C0:25
Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60
Certificate serial: 104F
Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/01104CF47A2F11EE867CE132C4F9AE02.roa
Signing time: Sun 23 Jun 2024 16:54:54 +0000
ROA not before: Sun 23 Jun 2024 16:54:54 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 216047
IP address blocks: 103.140.8.0/24 maxlen: 24
103.140.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jul 2024 09:24:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4175 (0x104f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60
Validity
Not Before: Jun 23 16:54:54 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=6678535e-8442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ed:f2:87:ed:16:06:ef:fb:c3:4b:e1:89:df:
34:cc:be:d6:86:03:2c:79:f8:e6:bc:4b:9e:10:b9:
5e:11:1e:6b:e8:2d:f7:86:82:47:79:a7:41:09:98:
6c:22:82:46:d4:77:36:97:4a:6b:e0:59:2e:c7:53:
4c:f8:c8:37:c9:f1:b5:d8:de:99:02:8d:2d:aa:82:
81:b4:f6:0f:27:33:d4:f9:67:80:e1:cd:80:da:5b:
56:62:5a:ae:c6:73:4f:a0:64:ce:08:0c:1b:b8:d5:
5c:4a:aa:85:5a:ec:9b:c2:26:ec:45:3f:d7:d2:95:
7d:eb:cb:02:75:fe:54:a1:03:93:62:e1:de:25:3d:
df:22:0f:f4:1e:ba:97:de:bf:ec:02:22:04:65:55:
c1:e7:61:d1:9b:3d:37:ba:0d:df:ff:ea:81:c3:71:
ed:c5:99:2b:30:b1:88:43:72:c0:ae:17:0f:25:fa:
b0:e5:30:55:58:82:15:e8:63:e6:7d:27:f7:bb:bc:
68:30:d8:6f:b2:26:f5:39:45:e7:59:bf:5e:68:73:
71:14:49:0f:c2:0a:4a:83:7b:78:11:74:31:59:9a:
3f:3b:11:63:23:09:97:29:f8:60:14:05:79:28:87:
b2:4c:50:c9:41:15:4d:7e:b5:68:2c:65:e9:ff:e6:
69:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:42:ED:5D:37:88:C0:68:EC:1C:D5:F3:A6:04:A8:6E:52:3C:C0:25
X509v3 Authority Key Identifier:
keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/01104CF47A2F11EE867CE132C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.140.8.0/23
Signature Algorithm: sha256WithRSAEncryption
03:82:d2:41:e4:74:93:63:f6:cf:f6:92:62:92:9c:4e:7b:41:
70:9c:96:0d:29:16:15:e5:4c:07:04:6f:65:1f:11:05:53:0b:
d0:02:c2:53:f2:60:3b:c2:06:d2:05:79:67:e3:6e:e9:c9:0f:
d8:a2:c1:b5:47:70:56:2b:43:9c:a6:d5:fc:0f:2b:65:1f:df:
fa:30:fb:b5:b8:d9:75:8f:8e:f4:41:4d:49:92:cb:39:e6:a1:
86:de:2d:02:43:c4:70:b6:83:67:ad:c5:32:3e:da:04:32:37:
16:e1:49:b6:a2:af:38:d9:cf:27:c9:c6:28:e1:09:ce:4f:db:
95:9c:99:2c:d7:f2:a1:60:70:43:36:b4:cb:e6:7b:39:2e:46:
5a:b9:c5:26:ee:19:0a:45:97:be:8b:14:31:e6:cd:40:c9:1c:
ed:bf:dd:a3:88:be:ab:3a:80:15:dc:85:30:37:1f:1e:20:8d:
f4:03:14:d1:e5:f9:7b:20:9f:e1:1a:6d:39:55:91:d1:0a:25:
91:8b:2e:97:60:a2:96:4b:4c:1b:21:6b:61:f9:03:32:16:bc:
94:f5:01:5c:d8:77:ef:a0:f0:10:d1:85:ab:a0:c6:5b:58:75:
1d:e6:41:95:cb:47:9d:d3:6d:1e:5b:00:21:cd:b4:4d:6f:4f:
60:25:30:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 11 10:27:33 2024 by rpki-client on console-fra.rpki-client.org