Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/7EB315E0ED2711EE9037471EC4F9AE02.roa
File: 7EB315E0ED2711EE9037471EC4F9AE02.roa (raw, json)
Hash identifier: F1fY2dgo7ra72OxrYCj2OpXpC2nxwiaeU91apypKwlA=
Subject key identifier: 6E:0C:BE:83:B5:3B:52:7D:50:13:D0:D9:CB:C9:68:5D:6D:81:82:88
Certificate issuer: /CN=A919F9A8/serialNumber=87B62C34E8DC5D40238C0F6BDE91156E5D06A44B
Certificate serial: 0E
Authority key identifier: 87:B6:2C:34:E8:DC:5D:40:23:8C:0F:6B:DE:91:15:6E:5D:06:A4:4B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7YsNOjcXUAjjA9r3pEVbl0GpEs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/7EB315E0ED2711EE9037471EC4F9AE02.roa
Signing time: Thu 28 Mar 2024 17:20:38 +0000
ROA not before: Thu 28 Mar 2024 17:20:38 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 48266
IP address blocks: 103.190.232.0/24 maxlen: 24
2400:9320::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 29 Mar 2024 11:24:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14 (0xe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919F9A8/serialNumber=87B62C34E8DC5D40238C0F6BDE91156E5D06A44B
Validity
Not Before: Mar 28 17:20:38 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=6605a6e6-d74a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:23:02:8b:4c:71:82:0f:4d:84:a3:0f:15:95:
55:fe:cc:7e:90:fc:94:d7:39:4a:94:3e:9d:ee:8d:
dd:c5:72:cb:46:7d:a5:56:d6:a1:91:c4:bb:90:50:
2d:0d:76:7b:42:8e:67:35:d0:d0:29:a3:1b:7d:55:
54:6f:b1:df:f0:a7:ee:aa:92:ee:9e:2f:f1:f1:5b:
b6:7e:ec:63:5f:0a:eb:13:1c:55:23:9a:0d:4e:74:
28:0e:c7:5d:06:2a:f0:d9:13:ef:80:46:b4:4e:a9:
36:89:ed:0b:a0:76:ce:81:c9:62:f8:e6:53:22:86:
4e:6d:2f:40:5e:ac:e5:6d:8d:df:19:43:45:b0:95:
d4:84:40:00:f6:e0:ef:7e:49:af:44:98:ce:52:57:
ae:c9:aa:c7:56:8e:bf:b2:32:ec:2d:26:5c:63:65:
db:ef:4b:3c:3a:f5:8c:9c:1d:42:e8:eb:3b:75:46:
9c:f7:da:a2:5b:e3:85:e7:cc:b6:4c:17:78:0f:49:
82:16:ea:f5:b4:a9:b0:26:97:1c:d9:01:26:8b:53:
53:5e:c9:15:b8:bb:d8:88:d3:96:d1:ed:f5:7d:b0:
cc:2e:0f:d5:95:b6:72:e2:26:64:15:7e:7d:21:f3:
cc:91:eb:dd:c1:67:3e:55:7e:64:c1:ab:2e:12:d9:
8c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:0C:BE:83:B5:3B:52:7D:50:13:D0:D9:CB:C9:68:5D:6D:81:82:88
X509v3 Authority Key Identifier:
keyid:87:B6:2C:34:E8:DC:5D:40:23:8C:0F:6B:DE:91:15:6E:5D:06:A4:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/h7YsNOjcXUAjjA9r3pEVbl0GpEs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7YsNOjcXUAjjA9r3pEVbl0GpEs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/7EB315E0ED2711EE9037471EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.190.232.0/24
IPv6:
2400:9320::/48
Signature Algorithm: sha256WithRSAEncryption
78:1d:49:5f:bc:17:7f:22:37:dc:dc:37:b2:37:23:b0:40:9c:
ad:41:e2:25:0e:89:3b:e1:ec:a2:24:d8:b5:7c:3e:c7:3f:12:
0f:cc:54:b4:97:83:f1:b0:f7:9a:98:73:75:5d:4d:f1:4a:bd:
4e:29:38:7f:cb:93:16:d2:84:c8:ba:a7:66:01:37:ef:97:a6:
f9:1f:ff:e5:4a:1d:1d:e7:ae:a0:4e:d7:b1:3c:4d:da:c6:f0:
36:40:8b:ee:ad:bd:c7:9c:ca:f7:17:4b:75:86:c3:98:fb:a6:
46:ff:af:8f:f0:5a:99:1a:ae:ba:41:72:5e:5e:45:75:36:75:
9e:ee:02:4c:74:29:6c:39:df:4c:51:fc:ea:7c:7a:f3:59:fe:
f2:45:6e:22:00:97:ea:ef:8c:f3:bf:15:24:e3:1d:de:0d:83:
07:0d:97:b5:f5:92:9c:15:58:c6:f2:b6:60:32:5b:b3:43:89:
0e:33:21:2d:64:48:51:69:7d:9b:91:af:58:d6:42:1b:48:6b:
0b:c6:3e:92:71:10:cb:ad:d9:b3:49:f0:aa:c0:69:74:87:73:
07:9e:c8:3b:ca:55:d1:99:93:bd:5c:6c:61:c9:7b:ca:c4:c9:
ff:a0:94:8b:1c:bd:45:75:6f:d4:11:b6:e7:d9:76:ea:73:3a:
c4:be:ca:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:50 2024 by rpki-client on console-ams.rpki-client.org