Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/366CD7AC5BB011EEBC27003EC4F9AE02.roa
File: 366CD7AC5BB011EEBC27003EC4F9AE02.roa (raw, json)
Hash identifier: ZdWy/QD9b4H275QmCSAQ5lpbByEwh6l2CiaQl4HeCrQ=
Subject key identifier: 32:5E:5A:58:D6:BE:42:28:5B:A8:21:3F:C1:B8:5B:07:36:1B:D9:07
Certificate issuer: /CN=A91AFF15/serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260
Certificate serial: 087A
Authority key identifier: 59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/366CD7AC5BB011EEBC27003EC4F9AE02.roa
Signing time: Tue 31 Oct 2023 21:48:28 +0000
ROA not before: Tue 31 Oct 2023 21:48:28 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 141432
IP address blocks: 103.194.92.0/24 maxlen: 24
103.194.93.0/24 maxlen: 24
103.194.94.0/24 maxlen: 24
103.194.95.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2170 (0x87a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AFF15/serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260
Validity
Not Before: Oct 31 21:48:28 2023 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=6541762c-1c7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7a:e1:47:2d:72:71:c1:28:87:0b:c1:43:19:
d4:be:a6:d8:cc:b0:fa:38:a1:06:96:54:2d:b4:ae:
0b:f3:64:51:78:84:b1:61:a6:a6:b8:bb:ec:3e:42:
a6:14:a5:21:df:92:e2:62:fd:12:7b:1f:a8:2a:fa:
7a:51:12:0c:5f:0e:3a:45:3d:e1:aa:30:2e:cb:fe:
8b:ad:7d:64:0c:a8:b3:80:54:b5:a4:b7:f6:79:32:
5d:2e:a6:e9:2d:1f:6a:77:08:2b:4c:a8:ac:eb:59:
49:f6:03:68:d9:47:70:67:bd:41:12:d4:d9:b8:2e:
58:5a:70:ae:e4:0b:2f:f2:51:bc:fa:45:19:29:e7:
df:44:e9:47:c1:3e:de:b5:23:98:f0:31:dc:32:cb:
97:0b:5c:7d:d6:d0:6c:21:c6:1f:2e:b2:fa:c8:21:
4c:f6:dd:08:67:06:88:b6:4a:2b:9d:67:21:95:d9:
57:ff:7e:07:29:37:95:42:71:9b:0a:39:29:99:21:
27:25:3a:3e:d4:65:89:98:a9:13:ee:4f:c5:72:71:
a5:9c:4a:e4:e5:2c:0a:84:ee:99:52:21:92:a9:10:
2f:ad:14:7a:69:68:99:72:40:f5:db:b7:91:f7:64:
2b:57:1f:06:f3:65:8b:de:5e:98:4f:72:84:29:3d:
1d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:5E:5A:58:D6:BE:42:28:5B:A8:21:3F:C1:B8:5B:07:36:1B:D9:07
X509v3 Authority Key Identifier:
keyid:59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/366CD7AC5BB011EEBC27003EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.194.92.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:16:40:29:f1:5e:16:07:0c:d9:1c:38:82:97:cc:e0:d6:91:
fd:30:df:b9:39:de:bd:42:c3:1f:58:8c:39:fb:8c:d1:44:7d:
54:e1:1a:67:4b:df:fc:ba:5b:ff:1e:d6:cc:96:22:ea:93:54:
7b:b7:9a:fa:b7:dd:fe:02:9e:43:80:49:d3:73:2c:9f:51:cb:
ff:e5:b6:52:12:ce:88:ab:c2:a3:aa:b2:1e:32:54:98:f3:73:
ae:9a:8b:63:10:27:fe:14:3c:1c:61:84:c5:92:3d:1f:97:d1:
68:ec:93:fc:02:5c:51:68:86:5b:33:28:61:6b:4a:52:78:aa:
d3:38:69:76:4b:48:07:a8:41:2a:c8:47:46:43:81:c2:b6:e9:
02:40:d5:f2:bd:76:fd:46:b1:e1:69:7a:c7:10:3b:ed:25:89:
6d:05:5d:b0:ac:ca:9f:3a:c6:47:3c:20:49:8c:80:00:9c:8b:
27:21:15:3b:28:3f:d5:e0:98:37:3a:81:f9:3a:2b:67:c4:bf:
92:a7:b0:db:b4:81:0c:e3:d1:53:64:8c:ff:7c:9f:ad:57:61:
05:f2:47:39:0f:3d:fc:a9:90:7d:f7:01:30:f5:8e:87:5c:8d:
13:89:7c:3f:76:e5:ad:52:b9:48:70:94:a6:01:6b:b4:9d:b8:
62:b4:7f:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 00:13:54 2023 by rpki-client on console-fra.rpki-client.org