Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/0BEA53F841AE11EAADED2C2CC4F9AE02.roa
File: 0BEA53F841AE11EAADED2C2CC4F9AE02.roa (raw, json)
Hash identifier: Xal6fa55uRdpaV1fTcIu1tXAgUBRAbdmpUD7wGHGQGA=
Subject key identifier: 45:B3:E5:E3:5F:75:BF:A3:EA:91:67:DE:56:42:36:7D:6C:D2:A3:A8
Certificate issuer: /CN=A9194E03/serialNumber=E39AB1D07B50DBB9ABE2CB51CD9B1E3A5A854521
Certificate serial: 3425
Authority key identifier: E3:9A:B1:D0:7B:50:DB:B9:AB:E2:CB:51:CD:9B:1E:3A:5A:85:45:21
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45qx0HtQ27mr4stRzZseOlqFRSE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/0BEA53F841AE11EAADED2C2CC4F9AE02.roa
Signing time: Wed 02 Oct 2024 15:21:23 +0000
ROA not before: Wed 02 Oct 2024 15:21:23 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 17819
IP address blocks: 103.3.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Oct 2024 02:44:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13349 (0x3425)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9194E03/serialNumber=E39AB1D07B50DBB9ABE2CB51CD9B1E3A5A854521
Validity
Not Before: Oct 2 15:21:23 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=66fd64f2-0536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1d:3f:14:a0:2b:96:b0:50:9d:80:b2:10:f7:
8f:fb:71:c9:50:68:7f:ba:c3:3e:b6:83:06:57:8c:
c3:60:76:84:14:15:2d:14:3b:6e:81:39:5a:86:33:
95:26:d2:c4:59:cd:4b:ad:fd:6d:97:15:22:32:53:
b1:e1:70:75:ff:71:65:57:44:c6:8f:be:5b:fc:e7:
ca:da:e8:8b:cf:8c:d6:00:ba:c7:68:9d:72:44:95:
7a:26:fc:f8:c5:8c:28:84:8c:e0:1e:29:33:10:b8:
a1:e6:2b:ee:33:3b:3d:06:a0:fb:2d:80:31:cf:89:
46:3a:14:12:ad:4c:30:de:57:61:81:62:34:b0:3c:
06:53:fc:c6:81:36:18:9e:a6:68:02:87:a4:ea:63:
f1:bd:cb:a4:59:9e:29:d4:c5:63:52:45:bd:b8:95:
cc:d0:ea:2b:31:81:a0:0f:e4:77:22:4f:67:3b:85:
6e:b5:3e:30:c1:f2:46:c0:42:18:4d:6f:26:1f:dc:
00:30:c4:87:1b:ce:29:56:5d:55:a8:e7:00:ae:a2:
e3:24:64:db:57:65:01:2e:51:17:92:72:30:86:3d:
48:ee:26:6b:f1:45:ee:b8:1b:ab:07:95:5d:a8:11:
b5:9b:cc:c7:12:4c:25:0b:06:09:31:30:06:08:58:
02:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:B3:E5:E3:5F:75:BF:A3:EA:91:67:DE:56:42:36:7D:6C:D2:A3:A8
X509v3 Authority Key Identifier:
keyid:E3:9A:B1:D0:7B:50:DB:B9:AB:E2:CB:51:CD:9B:1E:3A:5A:85:45:21
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/45qx0HtQ27mr4stRzZseOlqFRSE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45qx0HtQ27mr4stRzZseOlqFRSE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194E03/3F48F2241DA611E29A075D9D08B02CD2/0BEA53F841AE11EAADED2C2CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.3.18.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:05:35:0d:f8:f4:58:7a:f6:03:91:90:48:9a:fb:9a:c4:11:
60:46:4c:01:80:b7:e3:74:a4:18:47:4d:2b:82:87:ec:4b:ab:
2a:52:9a:05:01:0c:6a:f8:8b:24:7f:a7:7e:83:e3:c1:1d:f4:
9c:b5:22:ee:35:47:ce:f4:6b:b2:85:21:e2:84:a1:7a:53:a8:
ae:25:c7:83:2e:0e:fe:25:22:44:a5:63:01:8f:aa:f2:be:d1:
b6:88:90:3f:db:c9:24:4d:0e:f7:ee:95:74:50:20:32:82:1f:
11:35:ce:df:4a:0a:00:34:1c:ed:aa:38:98:38:5e:d3:4b:90:
cf:a1:05:e2:e6:a5:96:5e:82:4f:be:9b:69:b0:83:b7:a0:9a:
f1:ab:49:4f:3d:25:7d:26:f1:03:d4:54:0a:30:c4:38:62:bc:
18:05:48:10:bc:ce:63:06:f5:c1:ca:9b:0e:00:2f:41:00:8b:
e1:aa:c4:6f:7c:93:e8:ff:0c:85:e4:a4:f2:e1:7f:7a:14:22:
35:19:b2:25:86:81:43:45:ce:76:e4:79:0b:03:1a:59:d9:84:
8c:80:f5:0d:20:9f:4a:0c:e1:53:bf:42:94:63:8f:a9:81:d3:
1b:36:38:5b:05:ec:a4:bd:1e:e8:2d:7c:cb:14:9a:4f:49:e3:
dd:4c:11:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 7 06:38:32 2024 by rpki-client on console-ams.rpki-client.org