Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/625BE4E2CB8911EC9C23294AC4F9AE02.roa
File: 625BE4E2CB8911EC9C23294AC4F9AE02.roa (raw, json)
Hash identifier: C9xacmN32JZnspu1Un9VVblrBLOZXgDayUsvan8mbc8=
Subject key identifier: 15:C1:68:57:22:F2:F3:E2:48:5A:B5:3D:82:9A:69:01:94:79:09:70
Certificate issuer: /CN=A91BBF7F/serialNumber=D5F6DD63C0381060AFFBC9D20ED30F07FBDE88EA
Certificate serial: 0D65
Authority key identifier: D5:F6:DD:63:C0:38:10:60:AF:FB:C9:D2:0E:D3:0F:07:FB:DE:88:EA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fbdY8A4EGCv-8nSDtMPB_veiOo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/625BE4E2CB8911EC9C23294AC4F9AE02.roa
Signing time: Tue 30 May 2023 19:28:48 +0000
ROA not before: Tue 30 May 2023 19:28:48 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 139051
IP address blocks: 103.138.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 04:49:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3429 (0xd65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BBF7F/serialNumber=D5F6DD63C0381060AFFBC9D20ED30F07FBDE88EA
Validity
Not Before: May 30 19:28:48 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=64764e70-0e4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:ec:df:47:d0:8b:0c:24:0f:df:e9:3b:38:23:
62:ff:b7:84:53:de:49:4f:bc:cb:90:a6:3b:80:df:
94:43:4c:11:90:22:ae:35:3d:8b:50:3b:59:44:81:
11:d7:01:4c:74:de:d0:79:e3:1b:26:c9:c1:58:ff:
16:9b:a8:80:02:8a:e1:c9:51:ad:55:db:fc:e7:43:
66:e9:a8:a0:45:86:86:ee:9a:6d:7b:c7:1d:03:f4:
f4:df:0d:8d:5f:6d:35:2f:90:28:41:dd:fc:c1:73:
3e:2e:0c:bc:50:eb:ad:14:ed:4f:75:26:50:63:91:
eb:b5:e1:3b:a6:9a:f2:7f:df:be:80:14:43:7e:17:
2d:9e:b7:e3:e4:bf:d5:0b:55:e4:bb:db:70:c0:96:
37:da:41:23:ef:e1:6b:ea:b9:87:f3:79:06:18:aa:
bd:af:b0:e2:11:bd:4a:18:e3:8a:1d:ce:11:0b:ee:
2d:55:ae:fc:e5:08:db:77:fc:bb:fb:b4:ef:96:f2:
ac:f5:5b:17:aa:c2:a2:f8:fa:d9:de:d5:8c:8f:11:
f9:d1:84:00:74:15:35:28:43:60:8e:d7:6a:0f:c1:
07:09:54:6c:d6:79:c6:6a:dd:34:fe:bf:2e:0b:70:
32:db:cf:de:cf:b6:89:16:0a:3d:af:df:90:44:a7:
23:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:C1:68:57:22:F2:F3:E2:48:5A:B5:3D:82:9A:69:01:94:79:09:70
X509v3 Authority Key Identifier:
keyid:D5:F6:DD:63:C0:38:10:60:AF:FB:C9:D2:0E:D3:0F:07:FB:DE:88:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/1fbdY8A4EGCv-8nSDtMPB_veiOo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fbdY8A4EGCv-8nSDtMPB_veiOo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/625BE4E2CB8911EC9C23294AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.252.0/24
Signature Algorithm: sha256WithRSAEncryption
ea:60:6b:11:9e:01:99:bb:f2:77:76:81:6d:be:c2:31:8b:ca:
c7:44:78:27:47:ed:d3:d1:b2:27:4d:a3:21:25:27:c6:75:1f:
c0:b5:b6:05:2d:2a:ba:5c:ff:04:db:c4:52:d1:da:e8:bc:4d:
31:cd:a9:d3:1a:b4:0e:5b:59:67:26:c6:ec:d6:26:69:bc:de:
c5:d5:28:92:1d:50:58:4a:ab:28:32:37:8c:5d:46:ad:12:cb:
1d:1a:d2:39:a7:d8:23:52:11:27:4d:27:79:bb:c2:28:19:10:
bb:4e:91:84:43:15:72:ef:dd:33:e1:32:56:13:c5:46:8a:11:
fc:c2:03:b8:fc:09:52:56:3f:c2:95:f8:a3:7c:13:42:96:29:
85:5f:0b:41:b4:48:20:d0:02:68:05:b1:2f:39:e0:06:69:48:
62:6c:25:41:bc:a1:b0:a7:ad:d0:25:33:0f:a9:85:0b:43:1e:
0f:40:68:b6:ef:2f:e0:fe:36:bd:ae:1e:9e:7a:55:f2:80:82:
94:d8:df:7c:cd:51:ab:17:2d:9e:95:85:2c:79:72:15:0b:82:
05:a2:5e:15:dd:71:d4:e5:93:5e:2b:37:38:fa:cd:b0:3e:eb:
dd:e4:77:c8:f7:c4:0a:48:29:9f:62:95:56:ee:82:c3:c1:0a:
49:38:91:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 8 06:40:56 2024 by rpki-client on console-fra.rpki-client.org