Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/7EF88212FAF011EDB3766D7AC4F9AE02.roa
File: 7EF88212FAF011EDB3766D7AC4F9AE02.roa (raw, json)
Hash identifier: yx2/+PJgsPhyS2YF9DFjX38/mv+pYVwZomSw4/Yaqtk=
Subject key identifier: 7D:EE:AB:DA:5B:E0:30:15:45:0E:46:C8:7B:34:9E:7E:14:35:16:8E
Certificate issuer: /CN=A91CEBAA/serialNumber=32618618244C8D6B4BA60A2FED9723B998D9A170
Certificate serial: 44
Authority key identifier: 32:61:86:18:24:4C:8D:6B:4B:A6:0A:2F:ED:97:23:B9:98:D9:A1:70
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmGGGCRMjWtLpgov7ZcjuZjZoXA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/7EF88212FAF011EDB3766D7AC4F9AE02.roa
Signing time: Wed 19 Jul 2023 04:43:39 +0000
ROA not before: Wed 19 Jul 2023 04:43:39 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 131471
IP address blocks: 103.189.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Sep 2023 12:08:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68 (0x44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CEBAA/serialNumber=32618618244C8D6B4BA60A2FED9723B998D9A170
Validity
Not Before: Jul 19 04:43:39 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=64b769fb-af23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:41:ce:57:38:ec:ff:89:0a:0d:7c:15:eb:c5:
8b:c6:6c:47:d8:53:f4:74:ee:e8:eb:82:fd:f3:4c:
9f:19:aa:36:c6:4d:91:55:e5:11:be:5e:5a:45:d5:
b2:de:f9:4f:2b:81:9b:5b:bc:51:81:e7:ff:13:09:
13:21:75:97:c2:aa:8d:77:ef:80:1c:e1:88:fe:75:
5b:71:dd:e7:76:bf:d3:69:09:e2:f9:00:76:64:31:
c4:b5:9a:ea:c7:38:4b:bc:c9:05:dd:76:40:f1:b7:
a6:ce:b3:bc:08:dc:70:32:fe:f9:19:3e:19:29:49:
06:d8:c6:3e:ed:f8:c7:63:e0:50:71:dd:41:6a:d6:
eb:b4:a9:49:63:aa:19:07:cd:72:e6:4d:23:91:fb:
ab:d0:10:87:c0:ae:2c:5a:e4:1b:c9:8c:df:84:9a:
66:ef:d1:8c:13:d8:75:12:19:ad:77:a0:2d:74:14:
76:ed:60:fe:d9:85:a4:6d:66:32:91:d6:9f:a1:4b:
96:b9:49:4c:2a:5a:a1:ef:e0:c4:bf:ca:b1:36:51:
ee:76:d7:00:07:e4:3d:33:be:fc:b2:db:86:ae:2e:
1e:7f:04:9f:84:63:de:17:dd:57:32:fa:2e:63:4f:
2d:14:93:f4:72:5d:e4:75:6d:7f:43:74:a1:44:c2:
59:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:EE:AB:DA:5B:E0:30:15:45:0E:46:C8:7B:34:9E:7E:14:35:16:8E
X509v3 Authority Key Identifier:
keyid:32:61:86:18:24:4C:8D:6B:4B:A6:0A:2F:ED:97:23:B9:98:D9:A1:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/MmGGGCRMjWtLpgov7ZcjuZjZoXA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmGGGCRMjWtLpgov7ZcjuZjZoXA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/7EF88212FAF011EDB3766D7AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.189.232.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:7d:e9:fe:be:09:7a:11:97:1c:94:9d:7b:4c:52:ea:0e:da:
63:ab:d7:9a:09:0e:d9:0d:2b:5f:69:3c:0a:5a:22:9c:f9:fe:
4b:50:4d:ea:5c:b2:33:26:aa:36:e7:66:3e:0a:2f:9e:bc:99:
23:69:f0:b0:52:2a:86:38:00:09:9b:2e:6f:68:cc:79:0e:ee:
17:ca:b6:99:ce:ad:93:80:43:64:43:71:21:11:b9:3a:0e:45:
2f:db:ab:da:5c:77:8b:00:2f:af:49:e2:52:4e:9d:b7:00:51:
c2:35:bc:77:ef:74:09:20:cb:9e:ad:87:7a:63:bc:6f:90:e4:
3c:53:4f:f8:04:c7:f6:69:68:d8:ae:70:6e:27:11:fd:48:5b:
89:05:06:b3:63:9d:01:05:15:52:11:0f:10:3f:cc:d7:76:ed:
f6:1d:f2:34:ce:17:ac:14:16:cf:33:6f:40:a5:b9:63:88:0b:
96:cd:9e:a0:92:61:6c:e2:98:a3:1c:43:4f:32:67:ca:66:ee:
c7:05:0e:ae:3f:0e:86:3d:04:eb:8a:ce:58:f0:20:b4:5f:48:
f5:15:e0:e5:b5:62:6c:06:bc:8b:bc:d9:f4:4c:3f:d0:53:e2:
ac:c8:56:25:47:07:98:12:e0:a7:f3:18:7a:24:aa:42:b6:ec:
2c:f0:4a:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:41 2024 by rpki-client on console-fra.rpki-client.org