Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/37A4000AB8A311EEBDA30041C4F9AE02.roa
File: 37A4000AB8A311EEBDA30041C4F9AE02.roa (raw, json)
Hash identifier: k+2fgxLdDTyl9PA1O/vOzMwvbwCHo2TP9M/7VbegDW0=
Subject key identifier: F9:BF:18:18:49:B3:74:C1:ED:0A:6A:34:E4:68:68:5A:E2:C6:B4:43
Certificate issuer: /CN=A91BE6D7/serialNumber=70CD02B6642479A874462715706E6AA9A89DA2C9
Certificate serial: 0A
Authority key identifier: 70:CD:02:B6:64:24:79:A8:74:46:27:15:70:6E:6A:A9:A8:9D:A2:C9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM0CtmQkeah0RicVcG5qqaidosk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/37A4000AB8A311EEBDA30041C4F9AE02.roa
Signing time: Sun 21 Jan 2024 21:22:45 +0000
ROA not before: Sun 21 Jan 2024 21:22:45 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 397165
IP address blocks: 103.175.26.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 08 Feb 2024 23:36:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BE6D7/serialNumber=70CD02B6642479A874462715706E6AA9A89DA2C9
Validity
Not Before: Jan 21 21:22:45 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=65ad8b25-c5cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9c:ae:70:77:27:bd:a4:b6:b8:45:ab:88:9c:
d7:09:50:e3:ba:aa:66:7d:2d:97:78:98:2d:29:11:
df:f9:7f:c6:df:eb:1b:ab:16:e1:90:92:0b:57:e3:
38:69:7b:3a:27:ed:7d:93:0c:cf:f3:d0:1d:41:69:
5d:71:ef:ad:ac:6a:f6:ab:cc:da:77:f8:e1:e5:76:
35:46:69:62:74:2a:fc:c9:59:22:51:45:8a:16:39:
d3:23:01:4f:c2:75:3a:c5:d9:e4:40:8f:7a:99:77:
58:dc:e6:9c:b6:46:c1:df:2c:31:5d:53:2f:48:fc:
5d:d5:66:cc:cb:2d:f6:16:29:3d:ba:b5:23:84:a7:
e3:7a:67:79:cb:b8:34:bb:4f:36:b6:47:13:fe:f8:
b3:55:fe:f7:77:44:86:53:0c:2e:d3:f4:2e:76:c2:
2b:14:c9:dd:f4:b3:98:c7:ff:e8:f9:87:ab:da:e5:
81:fd:02:4a:e2:b3:fc:3b:44:98:e5:cd:5b:db:5b:
e4:30:34:c2:df:5e:ff:c4:3b:16:ec:91:95:7f:fd:
a8:f1:1b:cc:9e:7b:2b:6d:80:2b:0b:7b:af:70:6f:
06:14:fd:08:1c:ea:3a:d0:c0:28:a0:5e:10:6a:80:
e1:7b:8f:8a:12:fc:3d:7e:d8:4c:cd:76:48:7a:c0:
11:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:BF:18:18:49:B3:74:C1:ED:0A:6A:34:E4:68:68:5A:E2:C6:B4:43
X509v3 Authority Key Identifier:
keyid:70:CD:02:B6:64:24:79:A8:74:46:27:15:70:6E:6A:A9:A8:9D:A2:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/cM0CtmQkeah0RicVcG5qqaidosk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM0CtmQkeah0RicVcG5qqaidosk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/37A4000AB8A311EEBDA30041C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.26.0/23
Signature Algorithm: sha256WithRSAEncryption
7f:ac:55:7b:ef:9f:bb:30:47:b7:33:88:1d:44:d1:fd:22:48:
16:01:80:d6:7a:f8:93:40:34:11:43:08:8a:12:3f:6a:10:29:
77:c3:64:48:d0:d0:92:a7:9b:f9:e0:0e:b0:c9:8a:e8:84:b0:
a8:74:25:10:3f:bd:a4:3b:c0:13:f2:e4:f5:34:da:d1:e1:13:
8a:5d:68:20:f3:c4:1f:17:f8:73:7f:de:51:b6:df:6f:b7:45:
52:27:f5:af:9c:2c:b7:b6:2b:f1:bb:61:49:07:ee:81:01:d6:
c4:00:7e:f9:a4:03:12:48:34:17:1b:2a:40:ba:b9:ea:45:f6:
eb:73:76:98:7a:d3:ff:07:c8:ec:cf:37:9d:79:94:ac:23:4d:
63:3a:18:95:db:3f:63:77:22:3e:60:08:3f:d5:f6:d1:4a:30:
04:bb:a4:a6:ad:04:1a:60:48:12:f2:06:c1:66:3e:b6:36:89:
be:f0:ca:63:53:0d:27:e3:fe:f1:4a:54:17:44:e8:44:9f:9c:
6c:b8:ad:57:ce:5f:bc:54:c9:93:14:d7:0a:64:0c:c2:a1:b8:
3d:be:e3:de:18:b5:41:28:aa:78:36:f1:c7:fb:0b:5f:19:d6:
ae:c7:37:63:17:92:7e:3a:8b:ca:c3:69:78:e1:dd:69:f5:96:
50:7e:0d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 9 03:18:44 2024 by rpki-client on console-fra.rpki-client.org