Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/494F0F74BF3811EAB33B6573C4F9AE02.roa
File: 494F0F74BF3811EAB33B6573C4F9AE02.roa (raw, json)
Hash identifier: bdyhr7k6j6ZAEpApgLHe3B2KBn0lOaNL6xUfkxRaEsA=
Subject key identifier: C6:7C:C2:E1:76:2E:49:B1:A9:3F:62:1C:69:D8:B2:78:95:58:FE:2B
Certificate issuer: /CN=A91169FB/serialNumber=A9F7B93E9524FC4F1681A892C47322155422B18E
Certificate serial: 07B1
Authority key identifier: A9:F7:B9:3E:95:24:FC:4F:16:81:A8:92:C4:73:22:15:54:22:B1:8E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qfe5PpUk_E8WgaiSxHMiFVQisY4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/494F0F74BF3811EAB33B6573C4F9AE02.roa
Signing time: Sat 02 Mar 2024 22:00:17 +0000
ROA not before: Sat 02 Mar 2024 22:00:17 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 17819
IP address blocks: 103.6.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Oct 2024 03:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1969 (0x7b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91169FB/serialNumber=A9F7B93E9524FC4F1681A892C47322155422B18E
Validity
Not Before: Mar 2 22:00:17 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=65e3a171-d2ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:01:2b:05:86:b9:d1:42:8b:3b:ca:bf:60:39:
c1:3a:96:f1:55:4c:61:7b:c0:cf:9f:d5:dc:9e:be:
16:d7:58:dd:d1:a2:6e:69:6e:95:a1:a1:7a:5e:1f:
76:2f:49:4d:66:03:9c:2b:32:3a:b4:20:07:bf:af:
06:79:25:ee:f8:8e:9d:5c:9f:dd:76:05:8d:6a:3d:
61:35:e0:fe:99:a0:73:ca:ab:2a:2a:a3:07:a2:8a:
bf:f4:52:e7:9e:30:fb:9b:ca:3c:97:81:c7:0a:12:
94:ef:7c:40:08:37:e9:eb:77:d2:e8:47:a8:1f:bc:
66:52:08:04:1c:ed:22:62:79:33:fe:98:1d:e3:c8:
fc:a1:72:7a:f9:3e:f6:4f:91:d5:51:2e:d5:5c:76:
5c:ec:33:07:8b:30:d7:95:76:eb:00:1b:ac:41:05:
28:a5:9f:38:c6:b2:22:5e:98:69:79:9d:32:98:97:
b9:af:e0:cb:36:40:fe:3e:7e:04:76:21:7d:ab:5e:
53:4a:67:78:17:df:33:a1:c6:50:52:37:dc:f5:60:
00:5b:a3:75:06:b9:60:bf:b9:a6:0f:2a:5f:71:e1:
7a:51:36:2f:92:d1:36:4c:90:93:56:bd:78:9b:20:
a3:50:ef:f0:f6:ae:5f:39:80:81:94:cf:f8:9d:0e:
8f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:7C:C2:E1:76:2E:49:B1:A9:3F:62:1C:69:D8:B2:78:95:58:FE:2B
X509v3 Authority Key Identifier:
keyid:A9:F7:B9:3E:95:24:FC:4F:16:81:A8:92:C4:73:22:15:54:22:B1:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/qfe5PpUk_E8WgaiSxHMiFVQisY4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qfe5PpUk_E8WgaiSxHMiFVQisY4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91169FB/20AD4834BF3711EAA3E3A36FC4F9AE02/494F0F74BF3811EAB33B6573C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.6.62.0/24
Signature Algorithm: sha256WithRSAEncryption
38:76:a2:90:ac:75:0e:b1:a8:5c:77:49:95:4a:a5:88:4a:76:
81:2e:9c:f4:5f:ba:98:79:40:64:a7:70:01:f5:25:5e:6a:26:
52:ec:99:29:36:d9:36:15:e1:3b:eb:6c:fd:7c:18:9e:b4:b8:
c0:4d:21:dc:1b:0e:d8:81:34:6b:d5:96:85:84:92:2e:19:7e:
69:e5:53:60:da:36:6d:11:99:6a:19:4e:63:be:00:d8:03:80:
43:ae:63:26:83:04:ac:84:f7:e6:cb:b8:00:80:1c:13:de:43:
02:e3:98:c0:62:44:fc:85:cc:a3:e3:73:4a:c2:46:c4:73:bb:
f8:99:7f:78:1c:90:0b:18:33:e4:46:4c:99:57:28:62:98:9d:
d9:0e:c9:c8:f2:b5:e8:e2:a1:74:84:4a:21:c7:45:15:fd:be:
33:3f:58:75:c7:96:f3:35:54:f1:da:df:f5:bc:f5:02:ea:4d:
fc:9f:6e:02:6d:07:4c:9a:fa:0d:42:84:e7:a0:c4:70:23:86:
9f:85:c8:0b:bd:ae:f6:5f:b0:df:ed:22:c8:af:d7:aa:3c:c4:
c1:44:f7:31:c7:ea:e6:83:cb:18:d4:ad:fe:6d:cd:62:b1:e9:
0c:a9:b9:b4:2b:52:58:dc:d4:c0:a2:c3:ce:b1:db:35:df:df:
02:08:4e:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 7 06:38:32 2024 by rpki-client on console-ams.rpki-client.org