Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/5704AA34FF1511EBB3AE4C19C4F9AE02.roa
File: 5704AA34FF1511EBB3AE4C19C4F9AE02.roa (raw, json)
Hash identifier: Zf1YLHj5oHWHsvrK9s01PMIRLgfhNzMKFjsTSUpy6B0=
Subject key identifier: E1:71:22:BA:D6:1B:E1:56:51:A2:08:64:71:5D:0E:F2:5A:17:69:63
Certificate issuer: /CN=A911309C/serialNumber=D333A7787A61FF86C745B474096AF69AE31ACFF1
Certificate serial: 052C
Authority key identifier: D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/5704AA34FF1511EBB3AE4C19C4F9AE02.roa
Signing time: Thu 23 May 2024 01:05:13 +0000
ROA not before: Thu 23 May 2024 01:05:13 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 142146
IP address blocks: 103.166.232.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Nov 2024 10:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1324 (0x52c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911309C
Validity
Not Before: May 23 01:05:13 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=664e9649-0e25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:53:6a:0c:27:a7:87:49:b1:f6:19:20:a5:3f:
c6:fa:34:2c:b1:d6:cf:6a:1a:07:38:21:13:5d:f7:
6f:d3:14:cb:0f:91:61:53:de:f0:cb:e4:c5:32:7b:
66:b2:6d:30:df:4c:89:da:70:ca:97:82:0f:e9:90:
40:9c:e5:2c:5a:54:35:2d:15:19:f9:e0:9d:39:78:
8a:c4:85:5e:01:ca:0b:b7:a7:59:47:da:11:5c:c3:
48:5a:96:1e:e6:4b:35:64:1e:94:1e:a3:9b:35:2c:
94:99:df:fb:77:1e:c3:c0:f9:01:64:44:8e:52:3f:
18:05:1b:0f:4c:12:78:54:87:66:14:7d:8e:57:45:
5a:06:60:c8:c4:17:71:20:87:e5:a5:6e:84:2a:35:
a8:7f:7b:25:33:40:6c:ef:f1:fa:a3:b3:ce:3a:64:
b7:d0:69:fe:2b:eb:5f:4a:1d:a8:40:9f:89:dc:70:
73:41:7e:c3:74:de:09:91:49:0b:8d:7c:8d:60:82:
d8:6a:cf:26:5e:d9:4f:b1:97:58:91:e2:b2:90:57:
36:46:4c:42:55:0e:76:71:a1:be:f4:0e:27:6f:8c:
4f:de:1a:52:54:b5:04:f7:f8:31:ee:b5:fe:ae:b0:
db:09:0a:a2:a1:7b:ce:be:f0:23:5e:be:2c:bf:6f:
73:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:71:22:BA:D6:1B:E1:56:51:A2:08:64:71:5D:0E:F2:5A:17:69:63
X509v3 Authority Key Identifier:
keyid:D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/5704AA34FF1511EBB3AE4C19C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.166.232.0/23
Signature Algorithm: sha256WithRSAEncryption
ba:c1:4e:1b:0a:79:ff:6c:67:dd:08:bd:61:77:e5:ae:aa:40:
2b:bf:af:62:98:b3:0e:67:79:45:b7:52:14:10:17:b6:d3:8d:
5c:a8:b1:1e:f9:75:21:df:e3:4a:92:37:a6:90:49:65:52:2c:
b3:73:0c:ce:de:29:08:58:b2:4c:6e:1a:26:b1:55:71:0a:4b:
d9:6d:0b:d5:fc:4e:2b:c4:c7:a5:6c:35:93:8c:d6:af:00:3f:
df:11:1a:54:de:15:84:b6:10:41:77:17:0e:70:8d:c0:4f:e5:
93:b2:f9:30:7a:c3:c1:1e:25:54:60:40:3c:b4:d8:f1:e4:f7:
72:9e:5b:43:ab:98:4b:45:c2:8e:05:3d:0c:05:ec:76:e5:21:
5e:06:27:8f:7c:47:0f:14:ef:50:b3:ca:36:d2:ae:a5:ad:d3:
06:06:c3:58:56:1d:9d:78:f9:fe:86:f4:80:69:08:c4:59:42:
a2:9a:42:2c:51:f6:60:c6:86:e2:64:15:c7:84:d9:47:be:f1:
17:2b:bc:93:28:79:7c:33:35:49:5d:34:43:27:76:e3:b0:ca:
7b:11:ec:bc:be:fc:6d:8d:aa:26:b1:0e:fe:40:de:d4:55:d3:
ed:45:8b:cc:96:56:73:80:93:98:d1:5e:e4:5c:9f:6b:86:47:
60:69:12:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 21:50:07 2025 by rpki-client