Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911A4EF/DFC7C69E6B4F11E692315138C4F9AE02/12C2F34C6B5111E6BB95083DC4F9AE02.roa
File: 12C2F34C6B5111E6BB95083DC4F9AE02.roa (raw, json)
Hash identifier: LwQa/m8/d5GOkJV4mc3F8XfuVatFxoGCDElXXbEYDjU=
Subject key identifier: B2:06:E3:91:23:D2:6B:92:2D:1D:51:A2:75:87:77:FB:DC:EA:BA:17
Certificate issuer: /CN=A911A4EF/serialNumber=918C0300AAAC91EACFD69D8D7925EEAB26E95340
Certificate serial: 1D3F
Authority key identifier: 91:8C:03:00:AA:AC:91:EA:CF:D6:9D:8D:79:25:EE:AB:26:E9:53:40
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kYwDAKqskerP1p2NeSXuqybpU0A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911A4EF/DFC7C69E6B4F11E692315138C4F9AE02/12C2F34C6B5111E6BB95083DC4F9AE02.roa
Signing time: Tue 04 Jul 2023 16:22:55 +0000
ROA not before: Tue 04 Jul 2023 16:22:55 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 135595
IP address blocks: 103.67.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jun 2024 08:55:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7487 (0x1d3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911A4EF/serialNumber=918C0300AAAC91EACFD69D8D7925EEAB26E95340
Validity
Not Before: Jul 4 16:22:55 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=64a4475f-07d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8c:a8:bf:df:dc:fc:94:47:ae:72:b1:f4:ae:
80:71:2e:09:49:11:14:d2:22:a4:7e:03:7c:84:ed:
35:11:98:d7:bf:81:12:b5:63:8f:5b:e1:48:f4:0c:
1e:f7:28:c8:51:b8:1b:e2:85:14:95:4f:ee:03:e6:
c7:66:98:50:50:dd:c9:22:3d:e0:b9:b3:91:f7:d1:
21:85:03:a7:bb:ff:cd:e9:83:87:a2:cd:f2:9e:0f:
2f:18:f4:72:67:73:df:6b:cb:7f:b5:e1:a1:1c:30:
6e:90:50:f1:98:d4:fe:3e:0b:ee:1a:45:04:9a:d7:
cb:5a:98:43:01:2a:b4:04:2c:6a:79:86:7c:f5:44:
22:59:11:56:44:4c:bf:bc:2a:c8:10:9d:96:f2:01:
25:5b:2b:2c:29:31:17:7c:1e:20:09:3a:db:79:83:
4f:6f:3d:d5:d0:12:94:57:f4:2a:f9:11:f3:b9:12:
8e:2f:70:30:48:52:55:49:97:5e:9c:ea:a5:bc:5c:
f0:16:10:d1:bd:c3:4d:f7:6b:56:88:10:2a:d7:ee:
eb:87:3f:0e:83:15:9b:02:2c:77:d4:f2:72:9c:1c:
0f:3f:8c:e8:7d:97:bc:95:36:a7:71:6f:41:d4:3b:
b3:40:ca:1a:50:a6:2d:e0:82:71:2e:08:c5:eb:2d:
7e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:06:E3:91:23:D2:6B:92:2D:1D:51:A2:75:87:77:FB:DC:EA:BA:17
X509v3 Authority Key Identifier:
keyid:91:8C:03:00:AA:AC:91:EA:CF:D6:9D:8D:79:25:EE:AB:26:E9:53:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911A4EF/DFC7C69E6B4F11E692315138C4F9AE02/kYwDAKqskerP1p2NeSXuqybpU0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kYwDAKqskerP1p2NeSXuqybpU0A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A4EF/DFC7C69E6B4F11E692315138C4F9AE02/12C2F34C6B5111E6BB95083DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.67.27.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:21:2d:23:5a:a2:48:41:63:1e:72:f5:6a:69:85:27:19:5e:
59:e0:89:93:a9:d4:63:cc:ea:06:ec:6a:8b:d3:db:b6:8b:69:
5c:84:1f:5e:65:70:dd:a7:03:ce:b2:2a:a8:21:95:e7:b4:7e:
ed:a8:ce:73:08:9f:c4:e0:6d:7f:58:7c:1c:10:29:eb:80:3d:
52:ea:77:d4:87:66:5b:49:18:d3:36:58:26:de:bd:e9:f8:5f:
49:0f:47:7e:d3:fa:92:65:2a:89:d6:68:7e:9f:9a:71:09:49:
44:5d:55:ab:5b:c2:ac:eb:03:37:0c:3a:63:15:49:7d:71:2c:
60:3b:e0:ed:b3:21:82:03:1e:4d:3d:08:84:60:f8:dc:02:21:
ce:92:0f:e4:84:c3:db:f2:33:c6:0f:73:c4:bd:8d:67:e9:8b:
2e:25:4e:1f:87:38:fc:75:46:29:e0:6f:1a:ba:52:43:16:4a:
d2:4c:f3:ed:f5:e1:fe:7b:ef:88:fb:99:99:f4:07:dd:21:d5:
d7:98:3c:2e:12:eb:74:48:ec:a9:25:71:01:3e:7a:fe:05:aa:
96:b1:39:1d:2a:d2:98:ff:d1:cb:4e:b0:0b:29:86:17:53:94:
8e:b4:10:e4:4b:83:fd:a9:0e:9f:b5:6d:c8:52:15:79:64:6b:
aa:12:7f:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 14 11:38:06 2024 by rpki-client on console-fra.rpki-client.org