Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/FA3BB340A25311ED913AE766C4F9AE02.roa
File: FA3BB340A25311ED913AE766C4F9AE02.roa (raw, json)
Hash identifier: SgNxcMA2KR5mwOxNSMIgC70OsQ5CI2+ljTxzCeP/Vc0=
Subject key identifier: E4:DA:30:B2:49:B6:35:61:78:0D:F4:31:4A:C9:25:72:E3:79:EE:9A
Certificate issuer: /CN=A91C08EE/serialNumber=158B96664FB1C9AEEEB3D28707F877FE237B02DC
Certificate serial: BA
Authority key identifier: 15:8B:96:66:4F:B1:C9:AE:EE:B3:D2:87:07:F8:77:FE:23:7B:02:DC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FYuWZk-xya7us9KHB_h3_iN7Atw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/FA3BB340A25311ED913AE766C4F9AE02.roa
Signing time: Thu 31 Aug 2023 04:14:14 +0000
ROA not before: Thu 31 Aug 2023 04:14:14 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 131275
IP address blocks: 103.203.88.0/24 maxlen: 24
103.203.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Aug 2023 10:55:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186 (0xba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C08EE/serialNumber=158B96664FB1C9AEEEB3D28707F877FE237B02DC
Validity
Not Before: Aug 31 04:14:14 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=64f01396-f0db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e2:d0:6c:96:e2:56:7c:d8:f8:36:2a:b3:aa:
5b:cf:25:3c:36:5f:27:bf:81:91:03:cc:04:1b:8e:
bc:bd:af:d0:7a:d6:4a:d1:ef:a9:1c:cf:b9:04:5e:
f1:28:43:07:18:7d:49:d3:e6:8f:25:79:72:51:8e:
b7:c3:fd:6e:11:99:64:65:42:f5:54:03:c7:2c:9e:
3d:08:1c:28:4b:bb:04:10:1e:68:96:de:b2:82:cf:
02:05:f3:5e:e1:1f:f6:c2:ea:16:e7:1e:e8:9c:2d:
a4:a3:36:8b:5f:02:ae:50:2c:0b:01:55:23:07:d6:
20:2e:19:23:44:cf:78:ce:3a:b2:44:c5:4e:11:36:
47:45:9e:e4:5e:3c:93:e1:9b:bf:11:f1:a9:3e:3e:
bc:bc:d6:f7:f4:ca:fd:4f:ae:3b:ae:d0:a9:f7:d7:
17:b5:b3:2a:11:33:8f:a4:aa:89:db:48:06:4d:77:
0f:14:ea:93:a7:f0:c9:ae:d6:60:33:87:49:a2:fd:
e6:3c:c7:dd:fd:e8:6d:58:26:9e:a3:2a:2e:c5:b6:
e9:70:15:eb:f1:8c:87:6a:2d:09:cf:28:7d:58:9b:
d7:67:ae:2a:7b:dd:50:97:f4:f9:96:e2:88:a8:5a:
6b:9e:f4:9b:6b:e0:20:f1:f1:c5:5b:55:13:2d:6a:
5d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:DA:30:B2:49:B6:35:61:78:0D:F4:31:4A:C9:25:72:E3:79:EE:9A
X509v3 Authority Key Identifier:
keyid:15:8B:96:66:4F:B1:C9:AE:EE:B3:D2:87:07:F8:77:FE:23:7B:02:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/FYuWZk-xya7us9KHB_h3_iN7Atw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FYuWZk-xya7us9KHB_h3_iN7Atw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C08EE/53C678D6430011ED840B3357C4F9AE02/FA3BB340A25311ED913AE766C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.203.88.0/23
Signature Algorithm: sha256WithRSAEncryption
75:2d:ed:25:1f:af:eb:52:32:b6:87:fd:59:a6:02:86:0d:5f:
a9:20:75:39:af:0f:ae:4f:cd:fb:6f:2b:d8:b6:2d:09:c4:2a:
ee:cf:83:c0:b8:8c:f2:84:bb:0d:f4:9e:7f:14:07:4c:bb:cb:
c0:48:a7:98:3b:2c:c3:55:7d:88:61:a1:2b:a2:b0:eb:ed:74:
1d:5c:66:09:7d:85:23:e4:5f:83:c4:12:d3:db:fd:37:5b:34:
02:37:d7:80:37:f3:90:bb:78:ce:cd:de:10:e1:db:0b:0a:79:
bf:77:45:e0:ad:9e:db:b3:07:29:72:40:1c:c6:b3:d3:b4:d0:
69:b8:66:f4:87:4b:b5:2a:16:01:83:1c:fd:b5:c4:a5:d4:56:
39:a3:10:e8:d9:30:be:9b:02:9b:2a:8f:0f:03:c9:e2:38:c4:
fa:5f:2d:c6:ff:08:7c:e3:07:ca:8a:b5:bc:f2:9c:28:2c:f8:
fd:fa:52:7f:78:b9:95:45:be:25:38:43:a2:59:1c:27:96:1e:
e5:bd:f8:ad:e8:8d:eb:91:65:40:04:62:1d:45:6a:26:e7:31:
ac:10:1a:0e:87:81:b5:9b:0f:e9:60:b2:76:24:b7:63:64:c1:
b3:6d:14:28:a2:13:d8:e8:cf:94:68:45:7f:9e:2d:4a:09:3b:
6c:3a:b0:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:24 2024 by rpki-client on console-ams.rpki-client.org