Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/829D6B66594C11EEB1C9E07EC4F9AE02.roa
File: 829D6B66594C11EEB1C9E07EC4F9AE02.roa (raw, json)
Hash identifier: vCkDAN0hfUTeZecKU6XNABYWgE+qeL1vL4YQG9XhTPQ=
Subject key identifier: 1F:61:02:EA:B3:EF:D0:50:10:62:ED:7B:7D:76:89:E7:B6:8B:CA:42
Certificate issuer: /CN=A91F715C/serialNumber=E77132E4FEAD04EED4FE946D607A0DCB57A42065
Certificate serial: 1D
Authority key identifier: E7:71:32:E4:FE:AD:04:EE:D4:FE:94:6D:60:7A:0D:CB:57:A4:20:65
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53Ey5P6tBO7U_pRtYHoNy1ekIGU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/829D6B66594C11EEB1C9E07EC4F9AE02.roa
Signing time: Fri 22 Sep 2023 13:32:44 +0000
ROA not before: Fri 22 Sep 2023 13:32:44 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 60068
IP address blocks: 103.72.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Sep 2023 14:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29 (0x1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F715C/serialNumber=E77132E4FEAD04EED4FE946D607A0DCB57A42065
Validity
Not Before: Sep 22 13:32:44 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=650d977c-db00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a2:d2:d2:de:d9:25:11:76:34:08:b7:1f:a6:
a8:6f:eb:62:92:02:52:df:a8:d6:30:12:40:c4:cd:
44:9c:90:73:42:95:79:8c:3e:af:dc:1d:59:f3:b2:
16:f2:cd:41:32:3a:fd:0e:65:4e:3f:25:5f:fe:5b:
e8:27:62:6d:5c:7a:26:c7:0c:9e:3c:be:04:02:ad:
ca:32:fe:f2:01:9f:6b:1d:d3:e1:9b:e3:ed:4d:80:
98:8f:2c:9d:3b:6e:6d:6c:51:c6:65:fc:c4:d1:93:
bc:8b:28:6d:04:7e:da:78:c3:9d:d3:d9:7e:b1:66:
56:ea:15:6e:11:31:5d:c8:5a:d0:2c:8d:e1:b0:04:
33:77:13:7a:84:03:7e:4c:3f:9b:5e:43:4d:36:70:
9f:38:45:ae:5b:c3:28:ac:9e:36:a5:44:65:9d:fa:
a6:6d:a8:a9:9e:3e:8a:0b:6b:a9:30:dd:b7:27:f9:
f6:ec:a6:a9:dc:d0:25:be:4e:5d:85:1d:0b:34:5b:
0d:ab:64:a4:4a:d2:54:4e:d4:a0:f0:f4:94:09:c9:
97:57:81:96:b2:74:dd:07:1f:e5:ca:64:c1:91:b8:
34:59:84:43:26:f3:9a:13:8b:bb:36:30:52:67:9f:
b6:dd:d8:bc:bd:c8:69:23:64:db:a2:91:ea:44:7f:
84:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:61:02:EA:B3:EF:D0:50:10:62:ED:7B:7D:76:89:E7:B6:8B:CA:42
X509v3 Authority Key Identifier:
keyid:E7:71:32:E4:FE:AD:04:EE:D4:FE:94:6D:60:7A:0D:CB:57:A4:20:65
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/53Ey5P6tBO7U_pRtYHoNy1ekIGU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53Ey5P6tBO7U_pRtYHoNy1ekIGU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/829D6B66594C11EEB1C9E07EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.72.62.0/24
Signature Algorithm: sha256WithRSAEncryption
98:ac:7a:58:f2:f1:34:37:15:5a:52:18:1d:8c:11:2d:6c:6f:
4e:83:e1:0f:16:44:18:7d:b1:12:80:b4:a5:b1:bc:ff:71:a3:
ec:33:81:3c:c7:4b:6b:af:23:8f:75:cf:39:6e:0f:bb:db:2d:
47:54:41:73:9d:ee:d9:b0:71:60:68:fd:76:62:bc:1b:b3:f2:
62:e5:46:89:35:ba:15:bb:be:70:34:6a:a5:e7:11:0f:82:8c:
b1:b5:1d:b5:c0:c6:38:63:07:37:14:21:14:95:44:4e:41:ca:
0e:f2:89:5a:9b:52:fa:a1:d0:c2:0d:ad:fb:6a:7f:fc:33:1d:
a8:98:1e:5b:c0:b9:c6:ff:39:d1:57:07:fa:78:81:c6:02:da:
11:1a:2f:70:55:5a:77:01:92:35:d0:c9:80:bb:74:f3:e9:36:
66:08:b2:33:ac:23:d4:2e:36:7c:f1:61:76:6e:45:cc:81:00:
dd:30:be:b0:b8:4e:d9:36:aa:ed:14:c5:9f:5b:bf:38:45:99:
a1:00:de:cc:5d:7e:4a:71:df:47:bf:94:c9:19:b1:15:04:5e:
48:d8:b0:0f:7a:26:dd:d3:a7:0c:b9:78:b4:68:cd:39:a9:c0:
d1:1f:78:6a:e2:f0:fb:8e:91:e1:95:4d:a9:0d:c3:e8:2d:91:
e5:ac:5d:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:51 2024 by rpki-client on console-fra.rpki-client.org