Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/B360BB9689AD11ED93CAB75FC4F9AE02.roa
File: B360BB9689AD11ED93CAB75FC4F9AE02.roa (raw, json)
Hash identifier: fw7QuarxRQnoH7qC3OJT6mVZQ34rVRmQZlTqqAc2+08=
Subject key identifier: F3:1E:1F:1D:6A:77:B4:AC:29:8D:61:C8:A1:12:A5:09:81:40:28:A0
Certificate issuer: /CN=A91DE570/serialNumber=71C127D1C06AFC7C454DD1093EB2CB7E12D787C0
Certificate serial: 018F
Authority key identifier: 71:C1:27:D1:C0:6A:FC:7C:45:4D:D1:09:3E:B2:CB:7E:12:D7:87:C0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccEn0cBq_HxFTdEJPrLLfhLXh8A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/B360BB9689AD11ED93CAB75FC4F9AE02.roa
Signing time: Thu 19 Dec 2024 02:25:50 +0000
ROA not before: Thu 19 Dec 2024 02:25:50 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 63526
IP address blocks: 103.143.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Feb 2025 08:54:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 399 (0x18f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DE570
Validity
Not Before: Dec 19 02:25:50 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=6763842e-1327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:99:c0:3f:cf:d2:d2:96:0d:1e:fa:93:e9:f7:
52:1d:10:4b:f1:94:d8:0f:11:e8:12:6f:e8:10:cd:
d0:76:77:d8:f9:7c:24:a2:4f:54:60:77:28:ed:2f:
77:1e:07:b3:1b:f9:78:8a:d6:77:be:0e:83:ab:68:
87:cb:2b:44:46:bb:00:46:f4:e1:07:c5:03:0f:7d:
3d:13:c0:1a:6c:f3:54:ed:9e:3e:3d:e0:8d:03:46:
d3:8e:2f:76:5d:3d:c3:e4:3b:7b:57:26:ac:c2:86:
dc:87:7c:c9:7d:19:62:85:e6:01:29:54:ab:54:ea:
cc:8d:f1:29:60:f2:fd:d8:17:d7:16:69:8d:62:3e:
b9:2d:ef:73:49:06:6b:f9:c7:75:4b:71:32:6b:73:
35:0d:9a:93:0c:99:41:d1:98:82:b8:f6:62:01:23:
bb:89:b8:a6:73:f4:02:42:94:40:ca:6a:6c:80:75:
0b:a3:36:94:5d:9c:86:36:3e:14:58:10:f7:58:ab:
51:46:0b:aa:c5:11:51:c9:4d:d6:ce:3e:28:ef:c4:
a4:5a:db:6d:72:32:5b:b5:3a:b4:f3:49:15:64:88:
fa:6f:37:94:5a:9b:47:37:6e:7d:eb:06:c6:99:bc:
71:a9:ca:d8:69:bf:74:13:bd:b4:55:07:1f:1b:a2:
e2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:1E:1F:1D:6A:77:B4:AC:29:8D:61:C8:A1:12:A5:09:81:40:28:A0
X509v3 Authority Key Identifier:
keyid:71:C1:27:D1:C0:6A:FC:7C:45:4D:D1:09:3E:B2:CB:7E:12:D7:87:C0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/ccEn0cBq_HxFTdEJPrLLfhLXh8A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccEn0cBq_HxFTdEJPrLLfhLXh8A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE570/C2CB119C658311ED96002C2CC4F9AE02/B360BB9689AD11ED93CAB75FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.143.242.0/24
Signature Algorithm: sha256WithRSAEncryption
20:25:a7:23:bd:c5:8b:d0:b3:28:ff:d9:f3:55:a9:c4:74:39:
a3:a4:16:fa:61:99:c7:06:55:68:a1:f4:86:7c:80:57:32:53:
ae:b3:77:11:9a:4f:de:62:04:ae:ed:e6:5a:ae:af:6b:18:db:
99:6e:95:33:77:71:71:3a:19:78:e5:e6:99:97:83:44:46:c8:
37:8d:89:e3:f6:c7:de:6f:36:d1:c8:aa:34:04:97:dc:7d:ca:
d2:aa:90:8d:e1:3b:c1:fa:ce:4d:a0:1c:0a:13:54:93:c1:58:
f8:dc:db:ec:d4:c2:e4:44:fb:13:0b:78:b6:94:8b:f7:11:d7:
4f:1d:df:96:a7:ea:8b:30:d0:e2:93:97:ed:19:2b:19:49:83:
58:18:cc:31:b7:85:84:15:2f:81:07:38:d9:9d:e7:25:8c:fe:
53:a6:c5:e8:34:53:c0:33:48:94:0e:cf:fb:af:20:65:3e:b0:
a7:04:3a:95:72:0c:79:79:35:d7:81:43:0b:1a:eb:18:d2:42:
e7:4d:53:b2:45:c1:7e:25:70:bd:d8:a3:8a:0b:55:48:fc:d4:
b7:db:30:a7:f5:db:d2:d6:10:ae:b1:51:86:07:63:96:f7:6e:
14:b9:51:c0:45:c5:e3:c2:f7:75:f0:bb:c9:23:d0:9e:b0:04:
c1:9c:7a:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:18:14 2025 by rpki-client