Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDFB7/A51EC584140A11EB9636FF22C4F9AE02/EE3A46BE140D11EBB0DCE540C4F9AE02.roa
File: EE3A46BE140D11EBB0DCE540C4F9AE02.roa (raw, json)
Hash identifier: WxNtGRSLS6OlFYEL1G65MnirBiJGa8O4HhsvBLhuOE0=
Subject key identifier: 45:F0:94:74:23:1A:3A:C6:AD:3F:DF:7C:27:13:A7:31:5C:1C:65:B1
Certificate issuer: /CN=A91FDFB7/serialNumber=EA51CE20A59E42B8C71D26AA6B886690CD152984
Certificate serial: 06EB
Authority key identifier: EA:51:CE:20:A5:9E:42:B8:C7:1D:26:AA:6B:88:66:90:CD:15:29:84
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6lHOIKWeQrjHHSaqa4hmkM0VKYQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FDFB7/A51EC584140A11EB9636FF22C4F9AE02/EE3A46BE140D11EBB0DCE540C4F9AE02.roa
Signing time: Fri 31 May 2024 00:02:02 +0000
ROA not before: Fri 31 May 2024 00:02:02 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 17819
IP address blocks: 103.94.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 00:25:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1771 (0x6eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FDFB7/serialNumber=EA51CE20A59E42B8C71D26AA6B886690CD152984
Validity
Not Before: May 31 00:02:02 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6659137a-8bb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:14:1c:6f:ce:ab:b9:05:9e:d9:d7:25:ba:7a:
7c:f8:db:d4:15:3e:b4:d8:1e:e8:68:cc:20:87:6b:
26:fa:3d:a2:aa:65:8b:42:9f:9c:2e:8b:a9:6c:05:
0f:90:10:74:ac:b2:80:fd:59:ea:95:bf:66:89:11:
5e:f7:ad:9a:29:ac:a8:73:60:1f:de:60:ef:71:03:
49:81:a6:89:e4:4b:a9:d8:f5:89:5e:23:84:6a:b6:
60:47:12:c4:4b:0c:f9:4f:21:5b:a6:98:3a:02:6d:
4a:62:0c:60:f3:dd:63:4b:1f:95:df:6f:3c:9e:86:
c9:c3:d2:1a:95:d1:e4:33:e2:4b:df:1f:84:4b:f7:
c9:23:05:e1:64:41:dd:cb:0f:e0:a3:28:b4:04:2c:
ac:23:20:5c:0c:80:e3:c0:58:4f:f6:82:89:58:ab:
d0:04:7f:c6:73:26:d9:ba:e6:a0:d8:2e:35:cc:e2:
17:75:3e:e0:4f:43:1e:52:fb:5b:6a:73:1d:4c:52:
2d:ac:36:3e:12:29:6c:18:9e:8f:08:5d:05:16:e5:
6d:58:e2:dd:ed:97:86:cd:3c:8c:eb:81:ba:3e:48:
36:49:e2:09:e9:0c:fd:9a:75:8e:a2:76:c2:73:bc:
30:4a:49:e6:29:50:55:97:14:2d:63:b5:57:ea:a4:
9b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:F0:94:74:23:1A:3A:C6:AD:3F:DF:7C:27:13:A7:31:5C:1C:65:B1
X509v3 Authority Key Identifier:
keyid:EA:51:CE:20:A5:9E:42:B8:C7:1D:26:AA:6B:88:66:90:CD:15:29:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FDFB7/A51EC584140A11EB9636FF22C4F9AE02/6lHOIKWeQrjHHSaqa4hmkM0VKYQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6lHOIKWeQrjHHSaqa4hmkM0VKYQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDFB7/A51EC584140A11EB9636FF22C4F9AE02/EE3A46BE140D11EBB0DCE540C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.94.63.0/24
Signature Algorithm: sha256WithRSAEncryption
09:f1:f8:99:d1:5c:4d:37:a9:5e:26:47:31:f6:7e:c3:ff:c7:
85:86:e7:ae:ef:fa:14:8c:01:10:f8:ad:03:ca:59:54:21:0d:
11:d0:2f:d3:69:9e:03:58:c0:29:87:6e:8e:b0:8e:df:08:ad:
05:73:78:fa:90:81:70:09:64:f2:fa:3f:fd:1b:fb:a1:4b:b0:
fe:65:53:14:fc:81:ee:e1:1a:18:17:71:16:83:4e:64:65:ac:
b6:c1:02:72:1e:30:f2:58:11:26:0e:ae:2f:e6:c8:da:81:b5:
10:86:f6:b1:b1:8b:20:86:ea:f3:8c:07:06:77:9e:50:09:cb:
e1:fd:7d:d8:23:9e:fd:21:84:15:10:6b:6d:da:68:6c:7a:a3:
08:13:e4:ea:da:34:f9:03:c5:24:7f:b0:1e:74:6f:fd:db:39:
54:f8:98:ec:5d:87:5b:a6:ff:a4:ff:70:85:ca:eb:6e:ee:51:
a9:b6:6b:75:34:f5:fc:19:bd:1e:a9:9c:9d:9e:f6:38:4d:32:
eb:58:ff:25:1c:6d:4d:1b:7f:08:94:5c:7f:12:76:de:68:f3:
0e:c4:b3:71:ba:da:02:ab:54:11:c5:19:b4:07:c7:b9:67:8e:
33:01:fe:22:5d:cd:40:3d:e8:ce:90:58:ba:a0:67:d2:89:fe:
cc:0a:9b:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 30 03:16:02 2024 by rpki-client on console-fra.rpki-client.org