Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/E73131A43F7211EFAA8D2F2AC4F9AE02.roa
File: E73131A43F7211EFAA8D2F2AC4F9AE02.roa (raw, json)
Hash identifier: cHVAnbAAZkxxvDbaZ0/vXTAfraTJSVRsAmDN10groi8=
Subject key identifier: 83:C4:F3:D0:1E:65:B6:D5:19:74:F5:52:C9:89:C3:2F:D3:3A:05:07
Certificate issuer: /CN=A91A3AB3/serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3
Certificate serial: 01D4
Authority key identifier: E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/E73131A43F7211EFAA8D2F2AC4F9AE02.roa
Signing time: Thu 11 Jul 2024 10:49:08 +0000
ROA not before: Thu 11 Jul 2024 10:49:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 152599
IP address blocks: 103.185.147.0/24 maxlen: 24
2001:df0:9840::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 03 Feb 2025 10:59:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 468 (0x1d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A3AB3
Validity
Not Before: Jul 11 10:49:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=668fb8a4-d55d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4a:4d:d1:f5:66:66:bf:ae:96:d6:1e:cc:8a:
bc:49:2a:2a:5f:29:f6:38:c0:61:59:50:d5:f6:4b:
00:25:4e:d2:72:be:e2:7b:c9:87:44:34:b6:ed:3f:
eb:bb:ac:dc:31:98:48:a3:a5:73:de:f1:0a:1d:5c:
90:0b:28:65:47:f8:33:10:38:fb:39:8a:42:a2:25:
77:19:f7:16:03:e5:b7:cf:2d:36:38:9b:0a:61:7a:
15:d5:5f:d0:5e:e7:10:be:14:e1:08:95:10:ea:cb:
26:4e:05:03:12:f4:04:02:76:92:c4:80:77:b7:79:
ff:b2:0f:63:53:ef:ef:fd:13:77:e4:25:4c:f6:9e:
04:4b:ad:73:ed:3e:79:64:1c:0a:2f:93:d5:7a:5e:
1e:76:83:27:74:cd:a0:11:5a:e5:2f:63:4a:a5:2c:
07:2d:e4:8a:89:3a:8d:a8:9d:b4:77:46:75:c0:87:
88:0c:6a:eb:18:75:79:f5:15:9f:64:14:df:91:de:
8b:24:cc:98:5a:80:d5:0e:88:12:0a:fe:85:f9:51:
7c:c4:ed:fb:3b:12:19:c4:7e:90:a2:11:56:bf:00:
9b:8a:36:cd:99:db:7c:83:b7:60:c6:21:f2:87:c7:
b7:3c:38:86:66:79:07:70:2d:4f:da:9a:a8:ee:8c:
77:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:C4:F3:D0:1E:65:B6:D5:19:74:F5:52:C9:89:C3:2F:D3:3A:05:07
X509v3 Authority Key Identifier:
keyid:E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/E73131A43F7211EFAA8D2F2AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.185.147.0/24
IPv6:
2001:df0:9840::/48
Signature Algorithm: sha256WithRSAEncryption
03:4b:3e:d5:62:cf:f2:63:9f:aa:d4:8b:30:b3:ef:16:11:a1:
f9:69:49:97:d5:32:41:73:97:43:07:1e:83:9b:76:f6:dd:63:
3b:e2:24:1c:f5:2d:7d:5e:c4:9e:11:2a:42:a0:85:2c:35:00:
1d:e2:b0:82:7f:9e:33:6d:29:34:75:b1:eb:da:a3:9f:28:59:
06:6c:e5:e4:83:9a:54:b0:1c:ce:83:7c:59:a9:fd:a7:81:10:
fd:04:2e:84:b6:42:cf:bd:87:ac:9a:68:62:1b:09:d5:87:30:
cc:b4:dc:00:f4:d5:48:0c:9b:9d:6e:21:6f:ec:38:dc:d0:04:
f8:6a:6c:00:93:9a:f9:74:87:4e:7d:31:f6:e3:27:8d:2d:5a:
25:b7:eb:9c:71:8b:6a:58:5d:dd:7c:ee:be:7e:d3:fa:de:a8:
d9:46:43:d0:d8:a2:a9:5f:b4:79:3e:16:75:1c:fa:83:2d:ea:
57:1e:af:bd:f3:b0:95:97:e1:00:1c:36:3e:d0:d3:eb:f0:1f:
5a:e3:3f:1e:62:32:84:fe:fe:10:23:82:85:38:07:11:67:a2:
76:3b:57:27:5c:8c:28:a1:31:79:8f:b7:a8:1b:dc:e3:de:03:
68:c1:1b:68:43:13:74:4c:cf:cf:ee:cd:05:4f:a0:26:60:a2:
b5:dc:1b:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:13:30 2025 by rpki-client