Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/14513A36CB4C11ED883B0131C4F9AE02.roa
File: 14513A36CB4C11ED883B0131C4F9AE02.roa (raw, json)
Hash identifier: mAj9IrLj7AcT4deUFFXgpz+6CV2fBj7MTqXF/4gaSyA=
Subject key identifier: F9:04:1C:72:06:53:B0:11:98:70:27:5B:19:8C:1D:65:53:F4:C1:BF
Certificate issuer: /CN=A919400C/serialNumber=195B267D6D153AF7D02B6BEB22CE1593D925B636
Certificate serial: 0557
Authority key identifier: 19:5B:26:7D:6D:15:3A:F7:D0:2B:6B:EB:22:CE:15:93:D9:25:B6:36
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVsmfW0VOvfQK2vrIs4Vk9kltjY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/14513A36CB4C11ED883B0131C4F9AE02.roa
Signing time: Wed 29 May 2024 01:36:24 +0000
ROA not before: Wed 29 May 2024 01:36:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 142028
IP address blocks: 103.166.88.0/24 maxlen: 24
103.166.89.0/24 maxlen: 24
2001:df6:8580::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 30 Aug 2024 12:27:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1367 (0x557)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919400C/serialNumber=195B267D6D153AF7D02B6BEB22CE1593D925B636
Validity
Not Before: May 29 01:36:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66568698-2259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ff:9d:68:93:cf:5d:36:98:b6:f0:8c:84:e2:
8f:49:47:12:d7:4c:ef:09:e7:0f:5e:dc:1f:32:57:
23:95:30:58:d3:de:a5:c8:d2:78:1d:7c:28:db:9b:
eb:e0:92:fb:62:ec:74:66:b0:f5:6a:e3:d1:dc:19:
ae:cd:43:43:7f:d0:8b:f5:99:66:98:40:cc:de:6f:
40:72:6f:b3:89:5f:df:78:3d:82:44:bf:0f:ee:01:
82:35:97:d8:f0:5c:b8:94:39:14:a8:34:5c:0a:83:
a1:00:79:a6:4d:40:c6:2f:8a:8a:bc:31:2d:b0:5e:
33:e4:0f:bd:87:9e:ce:fb:53:0b:07:12:fe:e1:8e:
77:38:35:31:64:ca:f2:de:e6:11:23:78:5a:a9:05:
0e:2b:c9:c8:7f:92:89:53:ac:3c:72:ca:57:be:49:
49:26:9b:0d:be:47:b0:e0:98:b0:8f:dc:94:82:7a:
e8:83:8b:b6:ed:2f:14:98:af:e4:7e:b5:7e:5e:07:
1b:f9:16:57:21:75:6e:10:c7:d3:bb:35:e3:06:9b:
9d:c6:fa:7a:09:20:26:e4:49:df:92:15:7e:a8:b0:
bc:7a:5a:a5:a8:21:67:30:79:df:40:10:1f:f8:b0:
8d:f3:be:9e:5f:33:c5:f0:ec:a8:96:ec:0f:7e:68:
a1:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:04:1C:72:06:53:B0:11:98:70:27:5B:19:8C:1D:65:53:F4:C1:BF
X509v3 Authority Key Identifier:
keyid:19:5B:26:7D:6D:15:3A:F7:D0:2B:6B:EB:22:CE:15:93:D9:25:B6:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/GVsmfW0VOvfQK2vrIs4Vk9kltjY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GVsmfW0VOvfQK2vrIs4Vk9kltjY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919400C/C3ECD968A67411EB8C43226FC4F9AE02/14513A36CB4C11ED883B0131C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.166.88.0/23
IPv6:
2001:df6:8580::/48
Signature Algorithm: sha256WithRSAEncryption
0c:92:57:44:2b:e4:4d:21:2b:aa:5f:25:e8:5e:d5:b0:ad:f2:
ff:87:56:6f:38:60:ac:ee:85:46:0f:44:11:23:09:ea:33:54:
8a:60:17:cb:1b:ae:d1:03:29:9f:af:f2:8f:4c:99:ab:12:5f:
31:0c:52:25:82:58:1d:92:e3:f6:e0:9e:ee:47:ab:7b:d8:45:
0d:c8:b5:ab:33:8e:7f:95:13:8d:89:03:dd:f3:0c:b5:5d:02:
3a:fd:3f:d3:7f:85:8a:4a:74:cf:79:33:45:30:28:f0:28:e1:
61:94:bf:b2:e3:26:0f:7b:99:0f:13:c2:b5:de:96:8c:a8:84:
53:b3:74:ea:51:e9:00:3a:bb:92:8e:b2:8f:90:c2:d4:f6:aa:
fe:13:c9:5a:d0:df:37:83:92:19:30:9d:c4:2c:b5:06:37:ce:
2c:f2:aa:42:5a:51:97:23:53:56:dd:4f:1c:94:39:d0:03:1a:
3c:d9:c5:49:9e:1a:47:63:b3:bf:6f:9f:c5:c5:be:a5:ab:bd:
3d:db:b9:4d:5c:c4:e8:c2:86:ed:fe:ce:ee:b6:dd:5d:11:fc:
4e:0d:e9:b4:42:2e:be:eb:89:01:99:d4:02:8e:af:9b:e1:3c:
92:d5:c2:c2:cc:f5:4e:77:70:7b:6a:34:db:76:02:54:11:25:
6c:9a:9f:3d
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICBVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTQwMEMxMTAvBgNVBAUTKDE5NUIyNjdENkQxNTNBRjdEMDJCNkJFQjIyQ0UxNTkz
RDkyNUI2MzYwHhcNMjQwNTI5MDEzNjI0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjU2ODY5OC0yMjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAnv+daJPPXTaYtvCMhOKPSUcS10zvCecPXtwfMlcjlTBY096lyNJ4HXwo25vr
4JL7Yux0ZrD1auPR3BmuzUNDf9CL9ZlmmEDM3m9Acm+ziV/feD2CRL8P7gGCNZfY
8Fy4lDkUqDRcCoOhAHmmTUDGL4qKvDEtsF4z5A+9h57O+1MLBxL+4Y53ODUxZMry
3uYRI3haqQUOK8nIf5KJU6w8cspXvklJJpsNvkew4Jiwj9yUgnrog4u27S8UmK/k
frV+Xgcb+RZXIXVuEMfTuzXjBpudxvp6CSAm5EnfkhV+qLC8elqlqCFnMHnfQBAf
+LCN876eXzPF8OyoluwPfmihrQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPkEHHIG
U7ARmHAnWxmMHWVT9MG/MB8GA1UdIwQYMBaAFBlbJn1tFTr30Ctr6yLOFZPZJbY2
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDAwQy9DM0VDRDk2OEE2
NzQxMUVCOEM0MzIyNkZDNEY5QUUwMi9HVnNtZlcwVk92ZlFLMnZySXM0Vms5a2x0
alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0dWc21mVzBWT3ZmUUsydnJJczRWazlrbHRqWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTQwMEMvQzNFQ0Q5NjhBNjc0MTFFQjhDNDMyMjZGQzRGOUFFMDIvMTQ1MTNBMzZD
QjRDMTFFRDg4M0IwMTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBAFnplgwDwQCAAIwCQMHACABDfaFgDANBgkqhkiG9w0BAQsF
AAOCAQEADJJXRCvkTSErql8l6F7VsK3y/4dWbzhgrO6FRg9EESMJ6jNUimAXyxuu
0QMpn6/yj0yZqxJfMQxSJYJYHZLj9uCe7kere9hFDci1qzOOf5UTjYkD3fMMtV0C
Ov0/03+Fikp0z3kzRTAo8CjhYZS/suMmD3uZDxPCtd6WjKiEU7N06lHpADq7ko6y
j5DC1Paq/hPJWtDfN4OSGTCdxCy1BjfOLPKqQlpRlyNTVt1PHJQ50AMaPNnFSZ4a
R2Ozv2+fxcW+pau9Pdu5TVzE6MKG7f7O7rbdXRH8Tg3ptEIuvuuJAZnUAo6vm+E8
ktXCwsz1Tndwe2o023YCVBElbJqfPQ==
-----END CERTIFICATE-----
Generated at Fri Aug 30 13:52:13 2024 by rpki-client on console-fra.rpki-client.org