Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/F3B7211603A111EF93637D2BC4F9AE02.roa
File: F3B7211603A111EF93637D2BC4F9AE02.roa (raw, json)
Hash identifier: A3JEtCSW1q4QC8kVd2yPl8z+vGNquaKz2clmCTqvxlA=
Subject key identifier: 4B:9E:E7:A3:1B:4A:5C:91:CB:C7:0C:3F:3F:3D:2A:65:EF:AA:6C:AC
Certificate issuer: /CN=A911C20D/serialNumber=A749788CB4F41FD85E7AC263C875B7EAF2C0E78D
Certificate serial: 04
Authority key identifier: A7:49:78:8C:B4:F4:1F:D8:5E:7A:C2:63:C8:75:B7:EA:F2:C0:E7:8D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0l4jLT0H9heesJjyHW36vLA540.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/F3B7211603A111EF93637D2BC4F9AE02.roa
Signing time: Fri 26 Apr 2024 07:55:33 +0000
ROA not before: Fri 26 Apr 2024 07:55:33 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 152713
IP address blocks: 103.49.70.0/24 maxlen: 24
103.49.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 May 2024 14:43:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911C20D/serialNumber=A749788CB4F41FD85E7AC263C875B7EAF2C0E78D
Validity
Not Before: Apr 26 07:55:33 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=662b5df5-a779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b7:65:ad:35:bd:51:bf:c5:fe:69:f0:b7:ce:
13:de:1f:3d:b0:a3:51:08:03:de:10:7b:a8:77:78:
b2:03:0e:c8:b1:ec:82:a7:a0:ba:d0:47:54:92:ad:
82:ec:1c:02:79:b4:99:df:ee:bf:28:3d:e7:a8:5b:
21:e1:cf:57:0f:fc:77:06:26:cf:e3:fb:54:6c:58:
1b:b8:12:70:36:b1:76:eb:aa:a1:06:13:2b:41:14:
e4:d5:62:44:56:ee:12:5c:8a:3c:93:53:8c:57:b9:
29:67:7d:18:6b:4b:e4:cf:53:f7:51:92:cb:e2:85:
d1:d1:f2:8a:99:b0:0d:2c:5d:f8:5f:9e:80:99:f6:
78:a4:1f:9e:b4:fb:73:d7:99:ad:ca:a0:bf:d9:1c:
09:31:bf:0e:eb:d0:af:f8:b0:7c:8e:30:4c:45:e0:
b3:81:97:d1:db:69:18:91:9d:af:bb:49:77:24:c4:
2b:3e:12:a1:e5:af:ca:c0:13:ba:b2:b1:b4:59:6a:
c1:3e:d1:27:cc:8f:d8:bd:30:b2:8c:c7:1e:11:89:
71:0d:13:b6:98:57:79:d2:43:32:13:ab:d6:9f:c1:
3a:3f:23:65:b9:af:d3:4a:c4:63:cc:dd:f3:9f:62:
73:57:e4:a8:bd:59:14:d8:27:cd:57:fa:19:f0:98:
96:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:9E:E7:A3:1B:4A:5C:91:CB:C7:0C:3F:3F:3D:2A:65:EF:AA:6C:AC
X509v3 Authority Key Identifier:
keyid:A7:49:78:8C:B4:F4:1F:D8:5E:7A:C2:63:C8:75:B7:EA:F2:C0:E7:8D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/p0l4jLT0H9heesJjyHW36vLA540.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0l4jLT0H9heesJjyHW36vLA540.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/F3B7211603A111EF93637D2BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.49.70.0/23
Signature Algorithm: sha256WithRSAEncryption
60:64:9b:43:28:85:e3:ae:61:93:4c:f6:14:be:cb:d3:b6:e5:
5a:e4:74:8b:03:b5:e8:b8:26:e1:18:01:e4:d6:5e:d3:3e:f2:
27:83:64:95:3b:18:03:06:1c:cc:66:13:57:86:30:5b:74:57:
58:b9:5e:52:18:39:fd:f7:3d:52:25:a7:27:cc:ca:6b:a3:fd:
a9:7a:b3:ef:bd:2b:2c:86:27:bf:b8:00:56:57:0a:ae:93:71:
2f:37:23:e9:97:6d:71:5c:cd:ad:e4:4f:db:a2:f6:a7:33:df:
01:7a:25:34:0f:a7:4b:96:bd:96:22:2f:2f:65:db:3e:8a:1a:
fc:3f:19:5b:b7:93:b6:37:db:4c:70:3f:f3:08:d6:08:24:e7:
5c:dc:82:69:fd:c8:4e:9e:14:61:9c:00:34:c1:d4:d5:48:44:
d9:64:58:ec:14:ff:3e:db:e1:61:f7:aa:6f:0f:34:c6:8a:f8:
5c:1d:c7:75:62:48:be:71:7d:05:f4:83:7a:a4:ec:b1:e3:38:
c1:07:c6:06:05:2a:83:af:06:bf:56:1d:22:b0:73:7f:e4:ba:
15:fc:4c:62:3c:31:ba:d3:68:5d:d2:63:64:aa:12:94:90:99:
21:aa:02:5e:c3:67:a2:2d:40:b6:d7:37:74:1d:f5:c6:bc:d4:
86:8e:81:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 19:20:38 2024 by rpki-client on console-ams.rpki-client.org