Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/95CAF920931311ECAC468E3EC4F9AE02.roa
File: 95CAF920931311ECAC468E3EC4F9AE02.roa (raw, json)
Hash identifier: VOhMmKmmkDtzm6YlOeWpc54POkuo82VN67vuZm3q5ro=
Subject key identifier: BF:35:63:A7:CB:0F:78:14:D0:4F:DF:D7:4A:AC:AB:52:66:9B:E4:59
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 8C91
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/95CAF920931311ECAC468E3EC4F9AE02.roa
Signing time: Thu 30 May 2024 16:11:51 +0000
ROA not before: Thu 30 May 2024 16:11:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 139537
IP address blocks: 103.144.188.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Feb 2025 06:18:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35985 (0x8c91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: May 30 16:11:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658a547-5c07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a1:af:31:a5:ed:f5:7c:6b:3f:1e:54:82:0c:
18:46:c0:40:0e:e8:f5:ea:74:b3:10:7b:44:a2:c8:
95:71:77:58:94:0e:f8:e0:cc:97:be:c3:83:65:39:
69:f1:b2:95:d9:a2:9f:73:af:bd:94:83:0b:1e:4e:
95:a2:f7:52:d4:82:ec:e3:a2:d4:30:b5:b7:b6:43:
78:cc:0c:1d:6d:4e:2a:58:aa:1f:4c:71:ec:56:1a:
ba:d4:02:12:07:58:6b:31:1c:cb:0d:9f:54:d2:e0:
e2:0c:40:0d:36:43:56:6d:68:a8:e7:ab:52:88:2c:
43:bb:07:3a:35:7d:3f:5a:6f:03:f1:91:73:76:a2:
5c:6b:53:c4:d3:de:43:ed:36:ad:af:14:4c:f7:20:
ee:7e:3d:ac:6c:e6:93:c8:98:c5:65:76:b6:9a:65:
33:f7:cb:1a:b7:bb:d5:9c:77:79:af:b7:f0:9a:89:
66:34:c7:4b:a7:74:5a:33:d5:db:ed:b8:52:a3:c0:
92:17:f5:f5:02:8f:3a:4f:ab:02:55:f1:21:ed:23:
ed:41:6e:e5:a1:e4:06:4f:54:aa:5b:8e:fa:33:f2:
fd:92:b2:24:26:cb:74:9e:ed:5f:9b:b3:84:04:6b:
c7:43:87:66:c1:91:cc:b6:97:6e:c2:0e:9d:9a:9d:
14:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:35:63:A7:CB:0F:78:14:D0:4F:DF:D7:4A:AC:AB:52:66:9B:E4:59
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/95CAF920931311ECAC468E3EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.144.188.0/23
Signature Algorithm: sha256WithRSAEncryption
88:43:c6:87:ec:4e:fe:3e:b4:06:b0:84:36:7e:09:49:89:86:
1f:d7:93:92:c9:32:28:fe:65:bb:69:90:a4:c3:e4:24:e3:35:
af:63:d1:f1:12:2a:37:77:13:66:19:44:29:ea:f9:18:31:66:
00:15:e4:d3:ea:ad:62:78:ef:75:e7:58:c9:e6:23:49:10:7f:
e9:0f:33:6c:a2:45:01:78:f2:33:e9:2b:a7:9d:5a:b6:41:9a:
86:02:65:30:4a:b7:56:7a:39:a0:d8:60:44:23:a6:31:8b:74:
93:4d:40:22:e5:79:17:8f:be:1f:a4:47:ce:50:ca:05:da:25:
f4:34:ad:ca:a7:03:11:e3:a4:55:d3:cd:f2:2a:18:5d:32:95:
f1:ea:38:20:0d:37:75:ac:4c:85:31:19:4d:c2:3a:6a:cd:ac:
8a:8e:30:c7:92:58:75:36:4f:6f:9b:94:9a:e9:bc:10:11:fc:
ff:c5:04:77:bc:6f:15:31:17:84:df:0a:14:7c:f2:72:b4:38:
5b:2b:70:28:30:e7:eb:37:94:28:dd:fa:ea:9a:f4:53:fe:72:
8b:ea:07:88:69:99:dc:9c:85:60:78:2e:ba:96:28:a6:b3:08:
27:48:f3:26:2a:b9:5b:c8:fc:1c:09:6b:56:15:c8:0a:db:07:
2a:24:96:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:36 2025 by rpki-client