Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/91724FC87C3811ECB00D8477C4F9AE02.roa
File: 91724FC87C3811ECB00D8477C4F9AE02.roa (raw, json)
Hash identifier: F3ENYdrtu8osTC20MhRPvct3NKrw3py+3Bflc7PH+48=
Subject key identifier: 09:56:EB:97:F5:B1:FF:12:48:A8:C0:B5:68:5B:19:B9:AD:FE:C9:A8
Certificate issuer: /CN=A91DEDFD/serialNumber=F45321D8785B8897D5A834B90EAB910C55909D85
Certificate serial: 0808
Authority key identifier: F4:53:21:D8:78:5B:88:97:D5:A8:34:B9:0E:AB:91:0C:55:90:9D:85
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/91724FC87C3811ECB00D8477C4F9AE02.roa
Signing time: Sun 02 Jun 2024 22:29:44 +0000
ROA not before: Sun 02 Jun 2024 22:29:44 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 41378
IP address blocks: 103.138.72.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Aug 2024 07:03:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2056 (0x808)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DEDFD/serialNumber=F45321D8785B8897D5A834B90EAB910C55909D85
Validity
Not Before: Jun 2 22:29:44 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=665cf258-3b7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:82:d1:3f:d7:7f:87:86:0c:eb:06:5d:81:ca:
c6:3f:b0:8c:b0:98:dc:46:da:ee:aa:48:ab:c5:7c:
e7:5e:d0:98:e5:fd:7d:69:70:8b:5a:31:42:ab:bc:
57:01:a1:07:ca:8d:56:ee:16:14:29:ec:67:63:6d:
f7:a8:5e:67:a4:e0:47:fb:92:54:42:a4:d3:07:e5:
bd:cc:e3:4d:66:fb:3e:6c:d3:82:bc:22:71:42:86:
c9:20:7d:a9:02:4f:4f:ce:d8:02:7f:c5:3f:99:5a:
fb:68:86:d9:7e:ab:cd:64:9d:bd:40:1f:a4:b9:74:
0d:eb:cb:c3:e4:1f:7f:28:e7:9e:e7:15:c1:21:fa:
8a:19:d0:ba:69:8d:e3:63:70:47:86:2f:2e:ef:2e:
32:e6:a0:25:05:1f:f2:41:c4:b9:c2:c4:c1:b4:42:
b4:fc:2c:de:b4:c4:a9:98:41:7f:53:54:4d:d2:f8:
30:0d:92:c4:89:6f:94:ef:e3:3e:6a:20:5d:51:06:
41:93:70:04:a8:f5:19:15:5a:e5:ed:a7:66:4a:22:
36:fb:e9:78:12:00:03:78:3f:42:76:3e:79:20:bf:
49:70:87:56:f0:0e:6a:d5:41:59:0b:c1:d2:4a:78:
f8:ad:9c:fd:21:dc:16:cc:03:0c:99:56:40:be:47:
61:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:56:EB:97:F5:B1:FF:12:48:A8:C0:B5:68:5B:19:B9:AD:FE:C9:A8
X509v3 Authority Key Identifier:
keyid:F4:53:21:D8:78:5B:88:97:D5:A8:34:B9:0E:AB:91:0C:55:90:9D:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/9FMh2HhbiJfVqDS5DquRDFWQnYU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FMh2HhbiJfVqDS5DquRDFWQnYU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEDFD/54536B3EBC8811EA88EF3D49C4F9AE02/91724FC87C3811ECB00D8477C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.72.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:65:10:56:c4:f6:d9:c8:bf:7d:38:36:84:e4:d5:f4:76:24:
04:ef:24:ee:7f:eb:14:05:de:85:9e:a9:9e:9b:cb:0f:51:a3:
84:25:17:c8:98:99:41:59:33:1c:9e:68:12:d6:b0:01:28:db:
47:76:cb:34:d2:a3:74:c3:55:10:3a:a3:44:98:47:7d:58:e1:
b5:e9:48:19:29:32:66:8c:d3:41:09:ad:a4:98:d7:3b:03:c0:
08:c7:95:3d:dc:84:b6:33:20:c5:ba:a2:a5:99:1f:4b:77:b7:
6e:4d:c5:ab:e4:c4:1e:00:2a:77:03:35:df:f9:5b:74:a7:17:
cf:28:cf:ad:6e:36:cc:03:17:24:fe:9f:ba:26:b1:ed:ec:8e:
1a:38:77:70:38:f6:07:ab:7c:9c:3a:ee:fa:8a:bd:a9:d1:53:
ca:5b:3f:d3:a6:a3:b0:3f:27:0c:46:24:62:97:4b:c7:41:30:
52:cc:97:80:b9:a4:7e:34:af:b0:46:3c:10:29:27:ac:17:ea:
a5:cf:33:d2:e4:06:fc:db:63:42:f9:07:b9:5b:69:b3:43:db:
9e:65:c9:f6:f9:1a:d6:ef:63:d0:1d:55:c2:59:94:dc:9e:2e:
a4:ba:92:f6:d4:b0:ca:31:1e:c2:f9:77:13:fd:d0:97:50:f1:
f6:db:41:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 08:35:26 2024 by rpki-client on console-fra.rpki-client.org