Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/79EB047C816711EE9944837FC4F9AE02.roa
File: 79EB047C816711EE9944837FC4F9AE02.roa (raw, json)
Hash identifier: bx88REcvELkt1FUUdwwFEae28uQZ8xcpJnXb1DGF3A4=
Subject key identifier: E1:22:B3:1C:B5:51:DE:AF:A0:17:A0:85:D0:08:41:F0:37:C5:E8:B0
Certificate issuer: /CN=A91A0277/serialNumber=61D909494AAC099E5DC67BD9DECCFEBE44B77779
Certificate serial: 05B4
Authority key identifier: 61:D9:09:49:4A:AC:09:9E:5D:C6:7B:D9:DE:CC:FE:BE:44:B7:77:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/79EB047C816711EE9944837FC4F9AE02.roa
Signing time: Mon 25 Mar 2024 00:02:17 +0000
ROA not before: Mon 25 Mar 2024 00:02:17 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 136991
IP address blocks: 103.162.244.0/23 maxlen: 23
103.162.244.0/24 maxlen: 24
103.162.245.0/24 maxlen: 24
2407:1fc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 29 Jun 2024 10:42:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1460 (0x5b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A0277/serialNumber=61D909494AAC099E5DC67BD9DECCFEBE44B77779
Validity
Not Before: Mar 25 00:02:17 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=6600bf09-827c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:88:e7:e0:c9:4c:77:1b:df:4b:00:f5:34:f8:
45:0f:0c:ab:04:1b:4f:f7:95:ea:7a:7f:94:3f:aa:
5a:5c:42:0f:a2:c5:09:eb:3f:2f:92:9f:53:19:fa:
36:be:5a:ac:26:fc:21:1a:c3:39:26:1e:53:55:77:
35:5c:94:f2:c6:f9:0d:74:3c:e5:fc:4c:c1:cf:4d:
6d:1b:bd:77:a7:ef:a2:01:61:f1:8e:dd:c7:f0:fe:
e9:8b:84:9b:14:d8:05:58:54:f6:b9:fc:b7:56:88:
96:cd:ee:8c:56:27:ef:b8:47:52:d6:4c:b0:0f:4d:
30:97:59:a3:e1:79:38:b2:22:e1:64:1b:07:c3:51:
7c:c9:8f:ce:1b:05:21:a3:e6:9d:01:f5:d1:c9:49:
e1:a0:d7:02:e0:29:f5:ac:15:f7:08:30:84:f3:66:
b8:52:42:e1:9c:6e:19:4f:6e:54:ba:69:c1:3a:1b:
81:05:c7:6f:ad:ae:c0:09:31:1d:f8:13:4a:34:1d:
61:1f:a4:78:dc:65:c1:0f:48:07:36:b6:15:41:18:
70:1d:a7:db:86:47:09:86:95:6a:e3:4e:b9:e8:c1:
45:15:15:57:3e:f6:c2:80:f4:7d:6e:be:72:8a:55:
6c:6d:02:ad:2d:2a:e9:d9:ad:72:97:8e:14:49:be:
b3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:22:B3:1C:B5:51:DE:AF:A0:17:A0:85:D0:08:41:F0:37:C5:E8:B0
X509v3 Authority Key Identifier:
keyid:61:D9:09:49:4A:AC:09:9E:5D:C6:7B:D9:DE:CC:FE:BE:44:B7:77:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/79EB047C816711EE9944837FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.162.244.0/23
IPv6:
2407:1fc0::/32
Signature Algorithm: sha256WithRSAEncryption
53:69:a1:03:d6:f1:30:e6:21:35:3e:b5:96:dd:3e:8e:04:88:
e3:59:29:20:d5:1b:68:9e:c4:6c:64:71:80:04:b4:24:fe:44:
2e:62:f8:b2:5f:0f:41:89:94:62:dd:3c:06:c3:ed:f9:a6:20:
ba:37:ef:a6:ec:7c:60:ad:78:f0:28:dd:d9:69:7a:a5:40:b5:
8f:97:da:84:8d:95:c8:e0:38:4d:94:45:88:e0:77:69:7d:a4:
e0:9f:36:3c:cd:76:66:b1:c4:b3:09:33:c8:c2:2e:06:79:98:
fd:01:8c:6b:12:d0:8a:fc:db:5c:94:54:6d:f4:2f:63:4c:61:
f5:2b:5c:8b:83:34:f8:04:95:1a:25:88:da:8e:98:0f:d1:5b:
5d:ee:08:73:e3:ad:8c:81:02:70:3a:be:b9:59:66:2a:e2:48:
a2:d3:fe:b8:41:57:2b:6e:9b:5e:8b:47:f1:7e:c9:b2:bb:ff:
17:67:fa:bf:76:03:60:b4:4d:a0:d7:1a:32:6c:cf:1a:b3:63:
f8:a7:9a:6a:63:ca:c7:a1:28:0c:62:cc:8f:dc:25:47:76:2c:
cf:4f:27:8c:8a:f3:3f:9e:2a:ba:05:e2:74:54:a2:81:c9:3c:
af:c7:4f:75:81:bc:e3:77:c3:f6:4e:83:89:0d:1e:95:a8:d7:
6c:14:c9:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 29 15:00:46 2024 by rpki-client on console-fra.rpki-client.org