Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D17F2/4C88A7A0FDFE11E9BD667D1FC4F9AE02/1D04D87E7A6211EF9A23251EC4F9AE02.roa
File: 1D04D87E7A6211EF9A23251EC4F9AE02.roa (raw, json)
Hash identifier: JMU0RGOILh5ZfDY95uElyD6g3OC3A9n68VhzuXDS8IE=
Subject key identifier: 8C:97:C7:EA:0E:52:15:B2:A6:14:E0:CD:06:6D:0C:96:F5:01:1A:83
Certificate issuer: /CN=A91D17F2/serialNumber=5486376B05B8A2552329E361BD725C77E1F8D0C9
Certificate serial: 0C82
Authority key identifier: 54:86:37:6B:05:B8:A2:55:23:29:E3:61:BD:72:5C:77:E1:F8:D0:C9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIY3awW4olUjKeNhvXJcd-H40Mk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D17F2/4C88A7A0FDFE11E9BD667D1FC4F9AE02/1D04D87E7A6211EF9A23251EC4F9AE02.roa
Signing time: Tue 24 Sep 2024 10:45:28 +0000
ROA not before: Tue 24 Sep 2024 10:45:28 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 215133
IP address blocks: 103.205.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Sep 2024 07:36:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3202 (0xc82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D17F2/serialNumber=5486376B05B8A2552329E361BD725C77E1F8D0C9
Validity
Not Before: Sep 24 10:45:28 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=66f29848-5c9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a0:83:4c:33:3a:01:70:de:e3:1f:b8:17:12:
66:b3:19:57:7c:3d:e2:a2:72:8a:cb:f0:2b:b0:80:
34:d6:4b:dc:cc:cd:18:37:ed:ab:a5:74:94:35:97:
f6:66:ea:38:88:23:e3:8a:dd:bb:42:50:dd:e3:61:
fb:f0:07:7a:8f:fc:bb:44:fa:77:21:e9:0f:25:bd:
14:45:7c:c8:13:b9:79:a9:f3:17:e6:2a:53:4d:70:
ca:23:bc:1f:55:02:b5:f4:2a:0d:ed:d8:32:eb:64:
bb:8d:ec:ff:8f:64:e6:32:59:94:21:11:8f:3f:19:
a2:33:66:c7:4b:6d:7b:9e:fa:bc:3d:9d:9c:6f:6d:
61:35:73:b1:96:b0:a2:b0:51:0b:b1:ac:75:d6:9b:
e6:05:de:63:06:d5:e7:ec:53:9e:65:c1:ee:50:3c:
ab:8f:f0:26:b0:1e:68:ed:08:10:03:eb:44:63:86:
98:b5:66:c7:6c:1a:87:73:df:2d:aa:0c:21:64:60:
52:60:3f:74:d3:b2:00:d6:66:3b:9f:8f:a3:f8:5c:
dc:5c:e4:f6:59:ca:6c:b4:d5:75:5b:72:50:b1:6c:
89:3a:97:85:5e:7b:15:6a:8a:cf:2b:46:e4:96:f8:
ef:7d:4d:18:25:85:6b:e0:29:43:8e:23:2f:6f:78:
c7:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:97:C7:EA:0E:52:15:B2:A6:14:E0:CD:06:6D:0C:96:F5:01:1A:83
X509v3 Authority Key Identifier:
keyid:54:86:37:6B:05:B8:A2:55:23:29:E3:61:BD:72:5C:77:E1:F8:D0:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D17F2/4C88A7A0FDFE11E9BD667D1FC4F9AE02/VIY3awW4olUjKeNhvXJcd-H40Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIY3awW4olUjKeNhvXJcd-H40Mk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D17F2/4C88A7A0FDFE11E9BD667D1FC4F9AE02/1D04D87E7A6211EF9A23251EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.205.182.0/24
Signature Algorithm: sha256WithRSAEncryption
38:60:cd:9f:96:97:98:fd:c5:1e:74:8f:76:10:ab:4a:64:75:
a8:8f:de:a8:96:45:72:c4:e3:8c:a1:7a:c9:9e:5e:0a:f9:60:
ae:67:82:5a:3d:a0:79:3e:97:84:36:23:96:9b:7e:dc:e7:1b:
3b:52:00:f0:f9:08:d7:10:53:f3:54:68:cb:f2:6c:00:e5:e3:
e3:6e:49:38:6d:7b:7b:15:8f:6d:5d:1b:e4:d5:0d:49:f5:49:
ac:d8:46:10:b5:75:92:f3:b7:96:17:f5:d1:27:f7:c2:37:0c:
9d:59:47:4b:42:5b:1a:b7:67:19:19:9d:86:02:03:dd:54:37:
fc:ed:b1:27:8d:0d:b6:dd:7c:20:57:3e:67:77:fe:e1:56:24:
60:9a:83:6c:0c:b7:98:13:c1:0d:51:76:9c:02:bb:20:d8:95:
b8:87:d5:9e:94:9d:d2:33:6c:6f:71:82:d7:e3:97:9b:19:42:
17:5a:63:59:67:c2:4f:5c:93:72:42:23:dd:60:fb:ab:9f:48:
b4:b2:4e:11:85:85:b4:9b:2f:0e:42:e3:b5:84:0d:ce:04:47:
3c:66:31:df:98:0c:cb:d8:72:ce:e0:8a:8c:7e:9e:b1:66:2a:
fb:9b:d2:96:0b:d7:82:f1:ce:79:29:0f:16:be:d0:9b:40:0f:
97:68:7c:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 25 09:41:00 2024 by rpki-client on console-fra.rpki-client.org