Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/C4CEE0201E8511EE90C34681C4F9AE02.roa
File: C4CEE0201E8511EE90C34681C4F9AE02.roa (raw, json)
Hash identifier: be9JRwfFVSJTnka4xCeRn9hm21iYaGQRWjb7hMHMwXs=
Subject key identifier: 1E:8E:20:97:7D:BD:E4:AB:FE:B3:F1:23:A2:DE:0A:DE:0C:34:A1:B1
Certificate issuer: /CN=A9117257/serialNumber=E9B600C9E6DD8CEEC972195D6349C89838F745BE
Certificate serial: 39
Authority key identifier: E9:B6:00:C9:E6:DD:8C:EE:C9:72:19:5D:63:49:C8:98:38:F7:45:BE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6bYAyebdjO7JchldY0nImDj3Rb4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/C4CEE0201E8511EE90C34681C4F9AE02.roa
Signing time: Wed 11 Oct 2023 05:37:15 +0000
ROA not before: Wed 11 Oct 2023 05:37:15 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 7489
IP address blocks: 103.122.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jun 2024 09:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57 (0x39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9117257/serialNumber=E9B600C9E6DD8CEEC972195D6349C89838F745BE
Validity
Not Before: Oct 11 05:37:15 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=6526348b-665d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:a9:ae:88:01:c8:aa:90:1e:b2:3a:52:a8:a4:
b4:a2:09:26:bb:6a:75:2a:ee:65:fc:d4:f7:88:7c:
20:f9:12:52:df:75:8b:0b:b4:8c:78:56:3f:68:18:
c1:b8:3d:7f:c9:7c:62:b0:7a:86:20:4b:8c:4d:d6:
8b:1f:86:6f:e9:c3:68:21:78:67:d8:10:cb:42:15:
53:ed:cf:e9:d0:3d:3f:59:67:b9:b3:da:d9:96:5d:
04:87:eb:9f:de:f2:86:4c:17:e6:58:b0:7f:fe:e6:
d0:58:f4:88:ee:14:35:11:6f:e6:58:11:df:d8:03:
1d:71:f1:a1:92:c3:c1:3c:a3:06:c8:7c:d4:a1:14:
77:95:ae:16:0d:2a:c3:20:e6:d3:09:c9:e9:4a:25:
80:cc:0d:99:f2:84:db:aa:04:1b:fe:fc:e6:bb:80:
ed:6b:54:dd:48:dc:23:37:f1:ff:91:e8:33:b7:8d:
6c:07:24:50:2f:c2:55:aa:a2:e8:ee:2b:74:bf:2e:
bc:fb:75:1f:3c:fb:e8:f8:b4:c5:d6:99:87:ba:71:
d7:88:b7:5b:cd:2d:91:a4:27:3e:3a:50:77:96:93:
d1:07:01:d6:47:3d:8b:a0:70:7f:6c:8c:18:ec:47:
81:02:74:cd:c3:d8:77:90:df:2d:7f:64:64:f5:44:
06:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:8E:20:97:7D:BD:E4:AB:FE:B3:F1:23:A2:DE:0A:DE:0C:34:A1:B1
X509v3 Authority Key Identifier:
keyid:E9:B6:00:C9:E6:DD:8C:EE:C9:72:19:5D:63:49:C8:98:38:F7:45:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/6bYAyebdjO7JchldY0nImDj3Rb4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6bYAyebdjO7JchldY0nImDj3Rb4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/C4CEE0201E8511EE90C34681C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.122.244.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:c0:92:21:bf:8d:a6:70:00:9d:63:87:91:c4:cd:f4:75:48:
0f:fa:89:0f:69:9a:91:2d:cd:e3:2f:65:36:2e:1f:e1:a9:3b:
d0:3d:75:90:61:1f:79:77:c3:1b:d4:83:d9:bf:87:8c:e9:68:
2a:78:1b:1f:2c:f2:53:44:ba:e7:bb:db:a2:9c:b6:55:93:c5:
7f:68:5b:c3:08:a1:04:bb:4a:a1:2d:ae:c0:11:b6:f3:6c:87:
6b:8a:df:22:7c:88:09:4c:18:bf:78:5a:4c:44:84:81:28:7a:
a6:7a:d4:25:8e:ac:55:93:6c:6b:f5:59:72:ea:61:66:0f:88:
20:23:c3:46:b9:c8:26:7e:a4:f5:f5:b5:d9:46:80:18:22:6a:
4b:9e:bb:70:c0:30:96:36:f6:d2:0e:44:2b:9a:64:f6:8f:0c:
be:9c:d8:d0:30:3d:80:43:ed:6b:02:f7:ed:92:16:8f:9c:b9:
40:20:69:82:12:74:26:55:f0:ba:b6:09:63:d4:5e:32:7f:05:
34:69:d4:a3:64:33:05:5e:78:d7:2e:9d:b6:45:3a:2e:17:7f:
2c:18:7e:8e:87:da:b4:40:5f:6b:16:91:08:40:ed:fb:82:47:
89:8d:9a:7a:fb:0a:ac:19:11:36:66:44:31:72:c4:10:af:fd:
d8:b8:31:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-ams.rpki-client.org