Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1D085680913B11EF8A31146AC4F9AE02.roa
File: 1D085680913B11EF8A31146AC4F9AE02.roa (raw, json)
Hash identifier: jILKXFAScABZAfIxdoVp5mRL/M8OhZKm8TpQXVZKS9U=
Subject key identifier: F7:82:E2:C2:29:5C:96:A8:7F:70:80:3E:CF:CB:69:92:B1:4E:C6:0D
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 9C0A
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1D085680913B11EF8A31146AC4F9AE02.roa
Signing time: Wed 23 Oct 2024 12:34:15 +0000
ROA not before: Wed 23 Oct 2024 12:34:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 137586
IP address blocks: 103.106.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Oct 2024 11:25:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39946 (0x9c0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: Oct 23 12:34:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6718ed47-bb0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:a5:df:b7:6d:f8:62:ac:01:e7:cb:07:46:86:
1a:df:c3:3f:28:8b:4c:7d:6f:f5:8a:39:f7:73:a6:
ce:5f:da:48:b8:f6:82:a4:aa:59:0b:cc:6f:28:33:
1d:47:c3:cf:f8:56:2d:1a:f4:8d:03:92:5b:2e:63:
07:09:6d:d3:30:55:c5:74:99:c2:65:c0:8a:a9:5f:
0f:66:eb:45:e4:97:6a:e3:41:40:a2:d5:9b:f8:ab:
9f:d9:30:8b:a3:00:cb:28:36:62:12:44:1a:5f:0e:
5b:74:aa:69:64:90:4c:b8:90:bd:73:42:e6:9f:ca:
2f:38:b7:ae:5c:9f:ea:58:37:2d:89:9a:fd:d3:fd:
c0:de:ce:d8:8b:4e:03:24:77:d6:9b:83:7a:ba:3b:
13:83:0c:ab:0b:b4:3c:8d:9d:aa:dd:7b:7d:b9:8c:
c2:1d:3d:36:e0:a2:f2:ef:04:44:99:18:6c:70:b2:
c2:46:77:f0:e9:46:3a:dd:6c:f3:fd:b2:e6:f4:f3:
57:f2:29:f2:24:c5:ff:7f:c9:21:5e:de:a6:f1:e2:
f2:71:42:2a:da:da:e9:11:67:8c:f5:fb:3d:ad:1d:
31:7c:3b:50:6a:15:6d:f4:f8:70:ea:64:51:e2:5b:
06:63:89:82:8d:af:48:41:03:63:e0:b1:78:be:66:
48:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:82:E2:C2:29:5C:96:A8:7F:70:80:3E:CF:CB:69:92:B1:4E:C6:0D
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1D085680913B11EF8A31146AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.106.176.0/24
Signature Algorithm: sha256WithRSAEncryption
36:e3:a0:7a:cf:eb:97:06:79:d8:fb:95:fd:3f:f2:d7:96:75:
87:6c:7e:b9:22:39:2c:62:6a:51:0d:e3:d8:86:0a:4e:58:80:
35:19:55:35:5b:fb:d0:8e:c0:f1:71:78:0f:5a:08:60:44:02:
6c:31:0f:da:b6:ca:d6:34:b9:69:ee:4c:bf:7d:3e:4d:bb:1d:
f8:11:1d:d0:a9:a1:18:18:c1:12:39:9a:a8:e3:51:c5:b0:1c:
f8:53:03:85:8d:89:cd:85:c7:4e:b6:d1:d1:a9:24:6b:54:45:
7f:56:87:de:c7:89:4f:dd:26:46:cd:44:d1:bf:df:74:43:ad:
f0:5d:71:aa:9f:ee:60:dd:7f:09:4a:e8:37:fc:b5:bc:28:97:
67:df:72:b3:bf:2d:8c:1e:c7:c9:0e:fa:55:0f:7a:97:cb:21:
96:4f:f0:5c:02:6d:ad:f0:26:20:6a:d0:d5:17:b6:74:40:5f:
0c:6e:ac:e1:a7:57:e2:80:a3:74:9c:58:bb:ff:28:b9:cd:9f:
40:ba:e1:8e:f5:a9:7c:de:6e:94:c3:42:70:e8:32:81:35:79:
72:c5:a7:23:fd:e6:fa:5e:f1:0d:84:5b:a5:39:b3:87:dc:09:
d0:37:6a:64:d2:dd:b5:bc:ad:01:3c:48:be:d1:1a:a8:71:36:
01:9b:ab:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 22:10:48 2025 by rpki-client