Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/5F12ED8A4AB711EFBE57951EC4F9AE02.roa
File: 5F12ED8A4AB711EFBE57951EC4F9AE02.roa (raw, json)
Hash identifier: mjJ0UvgKm+K7M6/eljkWleZFVUHzQOiouUt/J/yWxJA=
Subject key identifier: 6D:26:72:F0:CC:26:5B:65:C1:D8:59:F3:43:9E:AE:43:AD:D0:9B:91
Certificate issuer: /CN=A91C0E6A/serialNumber=F5459CBA31F933F9073B514C9CBBEC34F6ED2E4A
Certificate serial: E5
Authority key identifier: F5:45:9C:BA:31:F9:33:F9:07:3B:51:4C:9C:BB:EC:34:F6:ED:2E:4A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UWcujH5M_kHO1FMnLvsNPbtLko.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/5F12ED8A4AB711EFBE57951EC4F9AE02.roa
Signing time: Thu 25 Jul 2024 18:54:51 +0000
ROA not before: Thu 25 Jul 2024 18:54:51 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 150371
IP address blocks: 103.130.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Jul 2024 12:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229 (0xe5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C0E6A/serialNumber=F5459CBA31F933F9073B514C9CBBEC34F6ED2E4A
Validity
Not Before: Jul 25 18:54:51 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=66a29f7a-2841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f1:b2:aa:03:83:a1:86:6d:fd:b3:b5:7c:47:
d7:53:35:a9:6f:fa:74:76:1f:a8:5d:aa:bc:79:5f:
85:1a:d3:70:b5:88:e3:50:d4:e2:33:a4:d7:76:65:
ec:fb:2f:16:82:8d:08:83:96:57:b8:4a:4f:11:cd:
99:fc:3b:1e:0c:6b:92:f7:17:22:b9:7e:f6:60:ac:
fb:27:ce:ab:4f:73:1d:12:7e:4d:af:17:4f:7d:72:
b7:b2:db:86:b0:35:d1:ce:9d:b8:fb:94:8e:fc:1b:
bc:e5:5a:35:8a:f6:e3:a3:d1:91:18:98:98:02:d8:
64:b7:2a:95:46:ff:4f:f2:aa:23:da:8c:78:1a:49:
fe:32:05:ed:8a:d7:19:db:a2:47:5c:91:0e:31:ea:
52:3b:f4:8e:55:72:7c:4b:d5:51:5b:97:2c:54:08:
a6:34:e0:0c:48:0a:f9:77:05:d6:3a:b5:ec:8d:05:
c7:38:5b:15:d2:8a:24:24:a3:fd:f3:7d:9e:7b:0a:
a2:fc:ae:1a:43:78:5e:27:09:3a:d7:de:78:4f:45:
e5:9b:7d:cc:91:49:ee:39:e0:05:1e:51:24:f9:bc:
73:d0:12:84:e5:0f:07:01:03:85:c4:16:bf:ce:2c:
49:a3:20:2d:04:ee:f5:9a:7f:54:24:4b:56:77:f8:
3e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:26:72:F0:CC:26:5B:65:C1:D8:59:F3:43:9E:AE:43:AD:D0:9B:91
X509v3 Authority Key Identifier:
keyid:F5:45:9C:BA:31:F9:33:F9:07:3B:51:4C:9C:BB:EC:34:F6:ED:2E:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/9UWcujH5M_kHO1FMnLvsNPbtLko.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UWcujH5M_kHO1FMnLvsNPbtLko.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/5F12ED8A4AB711EFBE57951EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.239.0/24
Signature Algorithm: sha256WithRSAEncryption
24:2a:cd:85:e6:ec:e5:4a:87:55:1f:15:d2:6f:9b:e7:94:df:
f4:76:84:dd:07:c7:b3:1f:fa:fc:93:4d:aa:0c:cc:87:2a:11:
d7:2e:fc:0d:b1:dc:f3:ef:d3:c8:62:3d:32:35:f2:dc:e8:47:
02:df:cc:61:fa:00:38:58:66:72:ec:53:37:05:ea:9f:e2:58:
2d:02:c3:dd:ee:2e:77:1a:41:77:35:c4:63:0b:fc:24:1a:27:
36:67:bf:d3:a3:7f:dc:b3:c0:8d:c0:0f:ce:e5:ca:9e:14:0b:
d3:71:90:82:4f:58:2e:cf:e7:48:d5:55:9b:06:5c:e5:46:9a:
f0:3d:8d:82:5e:0b:7e:71:94:98:c4:e6:84:3a:79:98:29:0d:
dd:67:49:f3:17:d5:60:fe:0a:ca:5b:47:b6:6b:ee:d1:09:3c:
81:ef:26:ee:10:b2:ed:9c:d4:b1:6e:8b:ec:4f:ce:41:32:f9:
50:3f:09:8a:a1:55:4b:ae:fd:5f:31:74:87:c7:47:d7:4d:ea:
41:da:ad:20:cf:50:cd:b3:0b:24:6f:69:9c:3a:54:f5:57:d1:
8c:57:76:df:30:19:3a:46:63:c5:d2:c9:56:7e:ce:05:72:83:
62:f7:9e:d9:ca:24:bd:a2:63:5f:24:39:cb:00:bc:a6:79:25:
52:0d:65:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 14:10:37 2024 by rpki-client on console-fra.rpki-client.org