Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D17F2/4C88A7A0FDFE11E9BD667D1FC4F9AE02/DF369DFC1FE911EFBC01637CC4F9AE02.roa
File: DF369DFC1FE911EFBC01637CC4F9AE02.roa (raw, json)
Hash identifier: al6P/0YNdy7TbF5TsJSoYNg3ExKTD0KaFjEW1VMkdbw=
Subject key identifier: 23:97:14:32:99:4B:06:EB:4C:6C:2D:5E:F4:9F:D7:42:64:8B:9C:6C
Certificate issuer: /CN=A91D17F2/serialNumber=5486376B05B8A2552329E361BD725C77E1F8D0C9
Certificate serial: 0C29
Authority key identifier: 54:86:37:6B:05:B8:A2:55:23:29:E3:61:BD:72:5C:77:E1:F8:D0:C9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIY3awW4olUjKeNhvXJcd-H40Mk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D17F2/4C88A7A0FDFE11E9BD667D1FC4F9AE02/DF369DFC1FE911EFBC01637CC4F9AE02.roa
Signing time: Sat 01 Jun 2024 07:38:00 +0000
ROA not before: Sat 01 Jun 2024 07:38:00 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 43260
IP address blocks: 103.205.180.0/22 maxlen: 22
103.205.180.0/24 maxlen: 24
103.205.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 01 Jun 2024 07:47:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3113 (0xc29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D17F2/serialNumber=5486376B05B8A2552329E361BD725C77E1F8D0C9
Validity
Not Before: Jun 1 07:38:00 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=665acfd8-273e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4a:a8:6c:2f:87:4f:74:07:12:c5:8f:d4:8a:
19:ca:1d:2d:c9:a1:0a:bc:b2:6b:2f:28:88:72:6f:
23:8f:48:62:59:8e:3f:59:7d:46:98:f8:39:78:16:
bb:9d:bd:b9:31:62:da:88:f6:69:30:bf:0f:b8:26:
1b:6a:2e:d5:70:a8:3d:75:5d:4f:2f:a8:9d:d7:e7:
83:dc:0b:04:8e:ac:3b:bd:89:ba:49:46:f2:ab:bf:
37:12:4d:27:a5:dc:1f:49:25:c2:a5:48:8a:12:f9:
60:60:f0:f6:cb:1d:14:1c:93:0f:48:36:00:aa:09:
17:f2:61:04:6e:0c:21:3e:32:ac:55:2c:cc:d1:01:
85:46:65:77:59:4a:6e:d3:54:8d:77:84:b3:92:e5:
9c:8a:0a:fc:f2:35:fc:a3:59:98:76:fa:51:b8:ae:
e5:f0:a3:aa:75:aa:bb:d3:a9:19:54:c9:b4:76:4e:
9e:66:43:8b:d6:3e:16:aa:3c:6e:7f:72:8f:b0:cb:
ee:c1:ff:19:1f:35:d7:fb:fa:5b:08:7b:a7:a9:78:
e3:32:1f:cd:20:16:7c:06:30:1d:23:e9:41:5c:38:
1c:e8:b3:d0:ad:be:0b:ae:03:a9:85:e1:a4:9f:66:
d9:d4:05:57:5e:5b:8e:e9:c5:3f:8e:14:cd:c4:15:
b5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:97:14:32:99:4B:06:EB:4C:6C:2D:5E:F4:9F:D7:42:64:8B:9C:6C
X509v3 Authority Key Identifier:
keyid:54:86:37:6B:05:B8:A2:55:23:29:E3:61:BD:72:5C:77:E1:F8:D0:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D17F2/4C88A7A0FDFE11E9BD667D1FC4F9AE02/VIY3awW4olUjKeNhvXJcd-H40Mk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIY3awW4olUjKeNhvXJcd-H40Mk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D17F2/4C88A7A0FDFE11E9BD667D1FC4F9AE02/DF369DFC1FE911EFBC01637CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.205.180.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:7c:f1:9a:d4:34:71:91:c8:5b:6c:a1:9d:b3:9c:53:dd:46:
f2:62:83:58:3f:e2:24:8f:ae:81:5b:36:67:40:23:f5:de:96:
cf:3f:94:df:59:37:dd:c7:d8:89:c0:b2:71:09:e0:1e:b4:7e:
56:16:c7:04:62:2b:69:29:0d:be:2a:3f:11:0b:c7:99:06:3c:
fc:13:ff:de:f8:b9:30:72:fe:da:c0:85:9d:c5:08:80:fe:2e:
f8:fd:23:06:c4:9d:b6:76:ab:ba:75:5f:01:00:5e:c5:0e:e0:
00:06:ba:98:3d:6a:a9:71:32:a6:39:dc:d3:cc:87:a2:a1:97:
e3:50:8f:7e:0c:11:b7:65:26:0b:a5:5d:a7:ac:ff:bb:fc:f3:
58:19:4e:fa:68:40:4b:f9:a3:52:07:44:03:e9:00:90:99:93:
36:69:ba:f6:c9:55:7d:35:9e:3f:c7:fc:32:79:07:cd:64:dc:
f4:77:e8:47:85:b8:4f:08:d5:77:6f:0d:08:2c:b7:1a:f6:c5:
3f:e8:02:34:c4:1d:7f:ab:91:39:e6:ff:50:12:88:85:04:47:
5d:f6:a4:3d:ae:22:0f:05:f7:a5:5d:63:98:b2:95:d3:53:1f:
ab:02:3f:02:9f:a9:97:bc:bd:57:08:88:7e:a1:62:df:54:1d:
a7:eb:80:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:29 2024 by rpki-client on console-ams.rpki-client.org