Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/E0A68C80CD7011EAA2547645C4F9AE02.roa
File: E0A68C80CD7011EAA2547645C4F9AE02.roa (raw, json)
Hash identifier: Bg21HdYn69aH8rjWWqwX6UIhu8mBsI6jzn2fhhFpKFg=
Subject key identifier: CD:83:96:2D:13:DB:BB:EE:A9:27:5E:75:A2:A3:72:FE:48:09:9C:43
Certificate issuer: /CN=A918FCE2/serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B
Certificate serial: 07AE
Authority key identifier: DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/E0A68C80CD7011EAA2547645C4F9AE02.roa
Signing time: Sun 18 Aug 2024 21:39:35 +0000
ROA not before: Sun 18 Aug 2024 21:39:35 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 140949
IP address blocks: 103.153.170.0/23 maxlen: 23
103.153.170.0/24 maxlen: 24
103.153.171.0/24 maxlen: 24
2001:df4:5280::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 22 Sep 2024 15:20:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1966 (0x7ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918FCE2/serialNumber=DAFDE0BC6E0AD3A895BC756D6C31A1E61B6D383B
Validity
Not Before: Aug 18 21:39:35 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66c26a16-ba76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c8:b0:1d:d7:5c:85:23:8f:37:4f:90:7a:28:
64:48:de:10:f0:61:64:24:75:68:2b:0b:fc:35:fe:
09:ab:28:04:53:22:63:c1:6d:5d:ad:0e:82:3e:0f:
d8:da:81:bf:75:9c:dc:69:0f:e0:c2:dd:84:1a:00:
29:8d:3b:21:43:21:4a:98:93:af:6f:ef:0e:5d:7a:
fd:36:b1:ae:af:da:9e:5f:12:d3:b7:f3:dc:90:bb:
0e:30:e6:6a:50:76:f2:dd:ca:d0:2e:47:f0:d2:b7:
67:79:5d:9e:98:49:d9:9a:75:01:76:81:8e:76:47:
a2:56:b7:26:d0:69:1a:3c:b8:4f:65:e9:19:24:9a:
e3:83:cd:50:db:57:19:11:61:6a:ad:5b:47:24:80:
63:23:58:c5:01:83:27:6a:9e:f6:f5:70:eb:01:b6:
9e:f9:91:77:b3:0d:99:2b:c3:7b:51:b2:18:2c:67:
87:b1:73:99:7b:f7:5f:e9:91:5b:43:eb:db:fc:8c:
5c:04:dd:94:84:70:af:20:d7:78:53:1b:41:06:15:
50:b3:12:65:04:38:68:d9:96:84:9a:e7:df:39:ae:
1b:9b:40:97:e9:b9:24:61:19:05:cc:4e:4a:36:d9:
9e:ff:98:4f:a8:54:68:3e:0e:b3:26:43:2a:02:78:
31:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:83:96:2D:13:DB:BB:EE:A9:27:5E:75:A2:A3:72:FE:48:09:9C:43
X509v3 Authority Key Identifier:
keyid:DA:FD:E0:BC:6E:0A:D3:A8:95:BC:75:6D:6C:31:A1:E6:1B:6D:38:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/2v3gvG4K06iVvHVtbDGh5httODs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2v3gvG4K06iVvHVtbDGh5httODs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FCE2/6180C0A2CD6F11EA97548043C4F9AE02/E0A68C80CD7011EAA2547645C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.170.0/23
IPv6:
2001:df4:5280::/48
Signature Algorithm: sha256WithRSAEncryption
0b:29:a5:15:c7:8b:73:e9:71:e6:3c:08:f9:be:b8:b5:b9:56:
a4:4c:e7:4d:d7:80:d1:a0:ef:65:11:95:df:94:71:44:9a:51:
5c:fb:25:13:90:70:94:4e:ae:91:3c:81:a1:91:e3:98:8f:00:
f0:da:32:5e:60:99:08:73:d8:9b:94:6c:fc:58:b5:fa:4f:21:
d8:8c:ce:b5:e0:67:65:d7:ed:69:85:b6:20:c2:27:fd:3f:a2:
7a:4d:72:c6:e6:54:e2:1d:99:fc:80:6b:c7:c0:37:b3:fa:8c:
86:8c:58:0e:96:c2:36:c7:37:57:2b:f8:49:fd:1a:7b:ed:86:
b2:3e:81:1e:f9:66:8b:a5:28:12:2a:56:bb:b5:74:b1:4d:12:
b5:18:2e:37:49:3e:39:b6:6e:06:d7:51:3f:99:2f:4a:a4:5d:
29:d3:17:d2:5d:f4:d7:c5:c2:2a:6c:3b:8d:63:20:74:a5:46:
4e:41:7f:6c:51:cc:98:86:c7:5a:ba:f8:c0:de:ad:b1:ef:f5:
3a:2a:03:48:60:51:74:85:b0:fc:bd:0e:ae:c7:e2:42:91:30:
06:b8:38:51:57:f9:c2:26:3f:57:5f:ef:ca:f2:89:2e:1c:8d:
11:89:7c:51:78:2a:c0:69:62:63:6e:ce:47:98:25:f6:d8:50:
c0:f6:cb:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 22 19:35:19 2024 by rpki-client on console-fra.rpki-client.org