Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2F459208AC5A11EDA8C03215C4F9AE02.roa
File: 2F459208AC5A11EDA8C03215C4F9AE02.roa (raw, json)
Hash identifier: HOQ5J3ulFQB71izkq58Wq2ksQYMMQrQogXl5U71+W8Q=
Subject key identifier: 5A:EB:46:F8:66:60:D2:1C:6E:91:9B:AF:AC:29:1D:D2:D7:F9:7E:5B
Certificate issuer: /CN=A91912DD/serialNumber=DAE7508D11E47228DA1FE0032597BBD29F75890C
Certificate serial: 1666
Authority key identifier: DA:E7:50:8D:11:E4:72:28:DA:1F:E0:03:25:97:BB:D2:9F:75:89:0C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2udQjRHkcijaH-ADJZe70p91iQw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2F459208AC5A11EDA8C03215C4F9AE02.roa
Signing time: Wed 08 Jan 2025 17:04:47 +0000
ROA not before: Wed 08 Jan 2025 17:04:47 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 132861
IP address blocks: 103.63.188.0/24 maxlen: 24
2001:df3:e000::/48 maxlen: 48
2402:8d80::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 17 Jan 2025 01:58:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5734 (0x1666)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91912DD
Validity
Not Before: Jan 8 17:04:47 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=677eb02e-87d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:36:11:c7:d9:b9:64:61:8d:dc:0c:e6:af:01:
3e:14:45:68:95:ea:3a:56:22:5f:c0:e2:d1:72:01:
c6:11:c4:2f:66:ea:9c:27:da:89:3a:17:c5:36:bc:
1f:d6:2c:6a:42:8d:47:7d:ad:aa:33:4e:9a:01:50:
b5:91:35:9c:3b:c4:77:a9:63:dd:72:b0:45:7c:f4:
1b:8d:94:42:32:0a:92:c1:27:4e:86:73:52:1f:7e:
9d:87:e8:8d:57:70:f1:83:c0:74:7d:4d:a7:73:3b:
ea:71:29:30:d2:da:76:ab:7c:d9:62:04:67:f7:98:
7b:2f:ce:a2:dd:ed:dc:8d:00:b3:d4:c7:4e:01:a8:
c0:f8:09:cf:5d:db:14:ba:6a:7b:7e:4b:30:d5:2c:
77:5a:1e:7e:83:e3:d3:57:38:89:aa:7c:d1:4c:61:
99:38:f8:b1:4f:02:97:d3:23:e6:a2:64:a6:a4:dd:
22:20:8c:2e:03:d9:ef:f9:c2:70:0c:f3:7e:35:b3:
e0:40:3c:dd:cd:d1:4b:55:4a:ba:47:95:5b:57:5e:
62:3b:2a:d2:42:07:33:ab:5d:3b:1b:a9:18:65:fa:
f2:f5:dd:e5:40:cd:96:00:c6:8d:61:84:09:02:e2:
4e:9a:8a:22:ad:75:68:b1:e1:c8:45:a1:f6:7e:7d:
7f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:EB:46:F8:66:60:D2:1C:6E:91:9B:AF:AC:29:1D:D2:D7:F9:7E:5B
X509v3 Authority Key Identifier:
keyid:DA:E7:50:8D:11:E4:72:28:DA:1F:E0:03:25:97:BB:D2:9F:75:89:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2udQjRHkcijaH-ADJZe70p91iQw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2F459208AC5A11EDA8C03215C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.63.188.0/24
IPv6:
2001:df3:e000::/48
2402:8d80::/32
Signature Algorithm: sha256WithRSAEncryption
8e:ff:d9:01:a6:c0:f3:a8:d2:d1:93:aa:ee:24:1a:a3:10:61:
eb:75:9a:10:f4:a8:1d:6e:3c:fa:7e:3b:df:c4:c5:6a:e7:4b:
4b:4a:71:6a:0d:a1:6e:5b:af:ae:53:fa:81:08:d9:7f:2c:fc:
2c:e4:85:80:0d:9e:02:99:26:70:0b:b7:8f:a0:59:31:57:6f:
be:15:54:1f:bd:36:1e:fb:ae:91:ae:85:2a:1c:fa:b3:5c:ad:
fa:54:21:ee:9b:db:a7:35:6f:62:76:d0:d1:64:06:ec:5c:3f:
92:a3:80:8f:82:1c:25:9f:d1:c2:08:ff:21:c7:07:d0:74:bc:
13:5e:ca:e8:2c:c1:b3:9f:a3:bf:a6:9e:f1:ed:0b:54:cf:fc:
03:20:ee:49:a0:12:22:d3:46:1c:1c:38:a5:3c:83:29:c6:05:
34:2d:b4:7e:4a:67:15:18:cf:57:fc:82:50:57:d8:80:5b:9c:
3b:c3:69:41:97:c2:52:34:c2:45:8c:e6:66:0f:81:2e:16:8e:
30:6a:72:61:f3:0f:1b:76:88:3e:6d:ea:82:26:46:73:74:70:
77:eb:d6:d0:c3:f6:e7:1b:14:bc:71:c8:a6:04:1b:cd:07:f8:
e6:5c:35:e8:d8:81:e4:0c:e8:fa:f9:c9:8b:e0:97:d1:57:bf:
3e:aa:e6:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:54:01 2025 by rpki-client