Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/114346E27E3C11EEB731D481C4F9AE02.roa
File: 114346E27E3C11EEB731D481C4F9AE02.roa (raw, json)
Hash identifier: pWkmMDhsCUSAYFM1KPTTLXxBMf5wa33RL1SrCm6Is2w=
Subject key identifier: 30:04:3B:D4:17:32:16:C0:B7:15:CD:D9:D9:98:CC:B4:62:C8:75:02
Certificate issuer: /CN=A91A27AB/serialNumber=59D588125A716698738D1D1E9E6D8A68D7409B27
Certificate serial: 4E
Authority key identifier: 59:D5:88:12:5A:71:66:98:73:8D:1D:1E:9E:6D:8A:68:D7:40:9B:27
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdWIElpxZphzjR0enm2KaNdAmyc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/114346E27E3C11EEB731D481C4F9AE02.roa
Signing time: Wed 08 Nov 2023 13:38:15 +0000
ROA not before: Wed 08 Nov 2023 13:38:15 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 60117
IP address blocks: 103.99.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Dec 2023 13:40:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78 (0x4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A27AB/serialNumber=59D588125A716698738D1D1E9E6D8A68D7409B27
Validity
Not Before: Nov 8 13:38:15 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=654b8f47-6e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:81:90:77:cf:31:67:de:72:b1:48:75:87:4f:
96:e2:6d:ce:71:62:cc:db:5f:33:15:fb:48:6d:6c:
55:38:4c:7f:c5:20:57:07:09:59:2b:f6:54:4e:ad:
2a:16:f4:6f:22:0e:14:70:3e:e6:91:c5:6e:46:3d:
e3:f5:96:12:83:3f:d6:cd:43:d8:ba:2b:ba:7a:18:
1a:80:a4:59:0e:4b:38:e4:23:78:f7:2a:12:05:e2:
aa:ab:7e:22:47:af:3f:3c:be:8e:c7:44:e8:83:bb:
65:48:c3:4d:aa:61:98:62:8e:69:cf:2b:86:d9:75:
c1:25:e4:98:44:34:bf:2f:ba:99:a5:09:63:d1:b0:
94:64:a5:d2:56:bf:6e:1f:ff:38:0c:64:79:b0:41:
cf:9b:b1:71:fb:f4:59:03:e7:33:20:ab:92:47:f7:
53:af:0f:14:58:0b:07:b7:7a:9e:59:31:64:09:7c:
59:ed:07:0e:66:b3:39:e8:b1:65:d6:28:d1:a9:a2:
a1:0d:25:db:bf:1b:2b:6e:90:b2:1f:88:ec:74:07:
ed:6c:3e:51:06:07:37:1d:bf:5b:4d:bf:f7:4b:95:
db:7b:49:2f:b0:0b:ef:f1:2b:2e:ad:18:3b:24:73:
ce:76:de:98:d3:63:fe:19:df:50:3f:67:5b:53:50:
8e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:04:3B:D4:17:32:16:C0:B7:15:CD:D9:D9:98:CC:B4:62:C8:75:02
X509v3 Authority Key Identifier:
keyid:59:D5:88:12:5A:71:66:98:73:8D:1D:1E:9E:6D:8A:68:D7:40:9B:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/WdWIElpxZphzjR0enm2KaNdAmyc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdWIElpxZphzjR0enm2KaNdAmyc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/114346E27E3C11EEB731D481C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.52.0/24
Signature Algorithm: sha256WithRSAEncryption
15:b3:3d:1b:98:af:ee:f8:20:c8:e1:95:0a:ee:a1:33:b0:cd:
67:f9:ec:c6:8f:62:c7:97:7b:c7:ce:2f:3f:37:89:6c:8b:39:
62:1c:b9:61:aa:dc:9a:cb:7b:a7:4d:c5:9e:88:69:cc:ca:b7:
fe:91:d7:3e:e6:b1:79:bf:1c:35:77:fb:91:a4:02:f7:dc:a6:
36:66:ac:26:7b:ff:26:a0:bd:b9:10:75:64:c0:66:13:c4:ea:
7c:b7:47:51:bc:3b:97:04:01:cb:a2:17:bd:8a:1f:96:a1:81:
1a:d9:3d:cc:61:88:81:6a:d3:31:c1:7d:e1:7e:08:01:ff:5e:
d0:f9:26:0a:03:61:ec:e7:3b:25:5c:18:ce:d9:62:46:b1:74:
79:c7:bc:ce:56:2c:f4:78:8a:7c:35:e9:7b:68:d9:4a:b3:f1:
31:4a:57:74:99:92:d1:40:b2:d1:c4:29:49:9d:43:d0:8c:48:
e3:4b:24:f0:23:14:ba:ed:c4:02:a2:60:57:d7:3d:d4:da:ca:
4d:7d:31:a5:c5:59:4c:47:54:4f:3f:6e:20:97:83:f3:d1:21:
7a:a1:0f:b5:f6:4b:b1:31:da:ad:55:ac:30:5e:83:b9:f1:bb:
d1:92:a5:e2:b5:43:c4:3e:6b:d7:8a:5f:ac:40:29:7f:e3:1d:
f5:77:7f:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:53 2024 by rpki-client on console-ams.rpki-client.org