Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/29D4544A3B4311EDAB5E6382C4F9AE02.roa
File: 29D4544A3B4311EDAB5E6382C4F9AE02.roa (raw, json)
Hash identifier: YRQttWn/wKugbW5kBSX3W5FFSqwehpC0VeK/+sYNi9I=
Subject key identifier: 35:00:C1:D3:7C:23:4C:E7:65:9C:E8:45:44:17:5F:00:E1:31:53:CE
Certificate issuer: /CN=A91A97D0/serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8
Certificate serial: DD
Authority key identifier: AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/29D4544A3B4311EDAB5E6382C4F9AE02.roa
Signing time: Tue 29 Aug 2023 03:43:34 +0000
ROA not before: Tue 29 Aug 2023 03:43:34 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 17557
IP address blocks: 103.57.224.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221 (0xdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A97D0/serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8
Validity
Not Before: Aug 29 03:43:34 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=64ed6966-e682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:41:cb:7d:81:71:99:58:6e:0e:c2:6d:81:10:
00:47:a4:16:da:48:29:58:5a:a0:c9:88:eb:f0:54:
33:c4:b7:3a:4d:61:e0:0b:2b:f5:ed:60:7e:7f:3b:
c0:1d:c2:0e:7d:42:ae:32:6e:02:c8:85:a9:3f:03:
fe:c7:45:8f:3a:ef:33:14:5e:5e:19:07:6c:82:19:
d7:b1:db:82:66:30:35:9e:7b:4a:5c:5f:9a:d9:ce:
68:24:5f:b7:62:66:82:46:89:74:b9:78:c4:1b:ab:
02:53:4f:3e:73:31:a2:20:ca:20:7d:65:9f:36:5f:
30:f8:d0:ba:32:4e:fa:2c:b8:ec:e6:d6:8a:cb:b2:
99:ae:9e:4e:df:cf:af:0d:79:51:fd:63:9d:11:d7:
c4:e0:a7:95:c0:ce:a2:5b:01:17:be:bb:fe:e4:ca:
e6:be:b5:7f:84:87:57:48:e8:62:ef:ff:73:ad:d4:
a7:b0:33:50:d3:1f:b6:05:17:88:d5:62:9a:0e:37:
bc:96:4a:da:89:1d:57:5f:ab:f3:d3:e0:54:3d:42:
5c:de:bf:8b:cc:06:b5:bc:69:f4:34:8e:fd:3c:e4:
2b:f1:7f:01:27:a4:a1:a5:7a:77:ab:10:5e:38:f7:
fa:d1:de:8a:fd:10:cf:ed:b7:82:b1:68:8a:0a:a3:
ef:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:00:C1:D3:7C:23:4C:E7:65:9C:E8:45:44:17:5F:00:E1:31:53:CE
X509v3 Authority Key Identifier:
keyid:AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/29D4544A3B4311EDAB5E6382C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.57.224.0/24
Signature Algorithm: sha256WithRSAEncryption
08:9a:a1:e3:3a:46:0c:5a:a9:de:92:32:e8:86:01:65:3a:20:
13:78:30:ce:75:43:4b:3a:7c:54:4f:b8:4e:95:ab:0b:f1:0f:
db:53:76:5b:6f:80:3c:03:00:9a:40:7b:01:69:ba:78:14:b0:
ca:ca:12:c4:bc:70:90:85:a9:61:78:5c:f5:87:1c:13:a1:14:
07:0a:96:e9:9a:a5:3d:c6:d3:1d:dd:09:10:84:79:e3:99:8f:
48:93:15:82:82:c4:8a:0f:96:d4:1d:bc:7a:0f:3a:33:85:df:
aa:fd:6e:1a:66:98:8b:77:94:29:8e:a5:ca:3c:40:92:8a:b1:
55:44:0f:78:6a:a9:c7:1f:23:a8:68:d5:68:08:9e:1f:58:10:
72:b5:ac:05:7e:4d:1f:2e:bc:b8:f3:f0:53:19:b1:33:4c:68:
34:a9:2e:68:c4:1e:6f:b9:7f:92:84:3e:ea:54:65:33:99:4e:
73:e9:0c:3b:45:f3:26:fc:c2:1c:0b:27:9f:ef:7d:90:5b:03:
68:fe:ad:0b:c3:1b:b2:36:5e:06:97:a7:63:e8:fb:ad:2e:46:
42:82:a4:f2:e9:34:fc:10:73:42:3a:d0:d5:c4:0a:be:90:36:
07:44:19:ff:e6:9d:1d:37:cc:fe:73:fa:6a:f0:6a:65:6c:57:
fc:c8:b9:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 23 08:53:37 2023 by rpki-client on console-fra.rpki-client.org