Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/CF6AFFD26BC811EFA6FA8373C4F9AE02.roa
File: CF6AFFD26BC811EFA6FA8373C4F9AE02.roa (raw, json)
Hash identifier: wHBBIopjXWIRr2NXTGpQ83bCo6cssLGUnopDWuxqgCw=
Subject key identifier: C4:EC:47:4B:79:D5:F1:61:6A:92:8D:75:C6:5A:BF:D9:14:F5:DB:49
Certificate issuer: /CN=A91FB8C9/serialNumber=253800ED16ED0FF337F7040D0E3DF1141C16161C
Certificate serial: 0198
Authority key identifier: 25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/CF6AFFD26BC811EFA6FA8373C4F9AE02.roa
Signing time: Sat 07 Dec 2024 02:15:55 +0000
ROA not before: Sat 07 Dec 2024 02:15:55 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 209829
IP address blocks: 103.104.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Jan 2025 06:06:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 408 (0x198)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FB8C9
Validity
Not Before: Dec 7 02:15:55 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=6753afdb-c4f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:94:e4:6f:ee:af:3e:8d:7d:ad:27:52:56:ce:
5f:ea:af:3b:42:25:80:8b:3f:30:32:4f:25:bd:68:
85:04:f8:5e:99:bb:09:24:ac:a1:7b:a0:9c:05:93:
3f:4b:31:f4:80:98:38:c9:13:83:9e:f4:3a:a1:5c:
5c:79:6f:bb:fc:56:92:9d:d9:e4:5c:4e:5d:67:86:
99:ab:cc:ee:b9:4c:d5:da:18:75:ef:d7:6c:58:cb:
10:4a:73:12:dc:b9:6e:c0:62:1c:b2:ed:3e:77:16:
f2:fb:8a:7f:40:b5:a3:0f:b2:0b:12:21:e1:7d:1b:
3f:ac:91:34:6c:aa:6b:73:fd:07:5e:41:56:74:85:
39:43:6f:f9:73:87:81:d3:34:8b:55:94:2d:9f:4e:
a9:65:0b:e0:01:a4:85:a3:1c:35:03:13:0f:f0:c6:
e9:7e:3c:34:dd:a0:3f:cc:88:7e:b5:1f:3b:be:a9:
5a:75:af:90:05:2f:6c:2b:c5:78:94:9d:fa:38:37:
58:bc:26:e1:ae:0d:91:a3:ab:24:40:95:97:80:50:
c2:49:ba:30:a1:34:dc:77:25:a2:4a:8c:ad:a4:e3:
6a:ec:c7:4d:de:7b:52:3c:24:18:9b:d6:6f:97:64:
b3:d2:6b:95:22:98:03:36:0c:7d:50:0f:55:0e:d7:
0e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:EC:47:4B:79:D5:F1:61:6A:92:8D:75:C6:5A:BF:D9:14:F5:DB:49
X509v3 Authority Key Identifier:
keyid:25:38:00:ED:16:ED:0F:F3:37:F7:04:0D:0E:3D:F1:14:1C:16:16:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/JTgA7RbtD_M39wQNDj3xFBwWFhw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JTgA7RbtD_M39wQNDj3xFBwWFhw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB8C9/2197B092583F11ED8181E57BC4F9AE02/CF6AFFD26BC811EFA6FA8373C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.104.246.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:b3:c0:21:9d:2a:5e:46:d8:e8:7c:3e:dd:b3:f9:ae:67:5e:
51:09:97:0c:1f:20:90:12:b6:d0:8a:36:52:4b:35:fc:f8:38:
78:7c:e6:9b:23:ed:66:e6:7e:3e:65:9c:90:1c:60:44:77:83:
d6:6d:13:f1:3f:27:97:e1:25:2c:f4:e3:ff:bc:6c:bc:f8:2f:
18:e7:55:91:5c:0a:70:36:30:96:46:c8:aa:0c:ac:2d:01:14:
e9:a0:a2:ca:20:8f:28:66:b8:e9:9e:7b:23:ce:c8:c3:95:ae:
dd:fe:bd:8d:9d:ae:d4:fc:5f:06:76:d4:09:2c:3d:58:11:fa:
66:a0:d1:51:8a:b7:23:28:1f:e5:bb:d9:43:ac:8d:cc:7b:e5:
ef:55:dc:a1:ba:d7:49:3e:b8:69:c1:69:cb:8b:82:01:22:27:
f7:b6:a6:a8:7f:25:ef:8c:81:c1:fe:36:3b:8a:57:4c:d1:56:
08:7c:ca:8a:35:34:ee:16:e8:c3:28:bd:9a:f6:01:ba:31:31:
ba:b3:6f:cc:43:bb:be:00:67:4a:81:02:da:a5:5b:98:8c:47:
c2:8c:68:c7:55:1f:1d:3b:a3:fb:9d:47:88:36:f6:4a:ad:9e:
cd:d1:e1:fe:05:8c:c6:01:46:52:fe:79:44:cd:1c:08:ff:15:
96:10:6c:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 01:47:47 2025 by rpki-client