Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/551D96EE56A911EDA6AAB044C4F9AE02.roa
File: 551D96EE56A911EDA6AAB044C4F9AE02.roa (raw, json)
Hash identifier: DLUdngKH0qMd15+vBTGLLLxfME4iuJZpXBK0BStHH9U=
Subject key identifier: 95:AC:8F:8F:6F:BD:66:CA:F4:52:DD:5D:BD:69:C5:0D:96:65:89:16
Certificate issuer: /CN=A911D971/serialNumber=764D1CE6727D31BD8F39662E2004C4689DA6B7E5
Certificate serial: 02
Authority key identifier: 76:4D:1C:E6:72:7D:31:BD:8F:39:66:2E:20:04:C4:68:9D:A6:B7:E5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/551D96EE56A911EDA6AAB044C4F9AE02.roa
Signing time: Fri 28 Oct 2022 10:14:40 +0000
ROA not before: Fri 28 Oct 2022 10:14:40 +0000
ROA not after: Fri 01 Dec 2023 00:00:00 +0000
asID: 134495
IP address blocks: 103.24.16.0/24 maxlen: 24
103.24.17.0/24 maxlen: 24
2001:df1:6e40::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911D971/serialNumber=764D1CE6727D31BD8F39662E2004C4689DA6B7E5
Validity
Not Before: Oct 28 10:14:40 2022 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=635bab8f-d32a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f5:5b:35:e4:5a:8b:d1:8f:46:7f:ca:f9:2f:
2b:c4:38:aa:2b:5c:21:3d:ff:59:e7:7b:e1:98:88:
cc:41:4b:72:5c:de:9d:b7:4b:78:52:79:d8:54:03:
fa:5c:ff:a6:c9:9d:7c:98:74:6a:71:96:23:4f:aa:
37:cf:50:04:4c:48:e5:65:e2:13:4d:e8:c7:ac:96:
ec:47:1f:c3:17:2b:fc:62:48:a5:2d:b3:36:27:21:
00:02:93:92:18:b2:1d:52:30:35:df:18:50:92:fd:
54:0a:c0:ec:6e:37:01:28:2d:a1:b9:36:aa:c0:17:
4a:af:68:9c:1f:2a:90:60:7a:c0:e8:66:12:d5:85:
58:01:9e:57:32:6c:de:80:8b:4d:0e:10:cc:a5:de:
84:29:1b:81:e6:10:61:13:92:fc:53:1c:34:1b:bd:
9f:03:64:43:36:60:5d:7d:01:97:51:0d:f1:39:43:
6d:b7:09:d9:2d:cb:8d:c3:19:3c:f6:6c:18:73:f8:
cc:50:ad:4b:3f:67:d9:ce:7c:f5:b1:80:3a:a4:28:
67:da:fa:07:c2:ef:3c:45:84:c8:2e:69:c7:ec:f5:
32:f6:37:c3:1a:cd:71:44:10:41:9b:58:83:93:0a:
e3:74:13:47:ef:85:93:c7:0a:3a:11:55:ba:ce:0d:
3b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:AC:8F:8F:6F:BD:66:CA:F4:52:DD:5D:BD:69:C5:0D:96:65:89:16
X509v3 Authority Key Identifier:
keyid:76:4D:1C:E6:72:7D:31:BD:8F:39:66:2E:20:04:C4:68:9D:A6:B7:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/551D96EE56A911EDA6AAB044C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.24.16.0/23
IPv6:
2001:df1:6e40::/48
Signature Algorithm: sha256WithRSAEncryption
38:01:a6:3e:07:17:0c:0b:1e:19:47:44:6e:07:13:e3:bc:8b:
53:c8:89:d5:33:52:0c:52:29:1b:44:ce:88:f0:13:69:75:99:
57:84:b8:cf:d8:63:65:24:ba:b9:ec:51:2d:ff:36:87:28:30:
c3:96:77:83:1a:7b:3b:3c:19:ad:98:4f:72:e6:37:3e:73:d9:
17:1f:08:e9:fe:89:56:22:69:d3:5e:a6:65:96:87:1f:13:9f:
25:b3:39:7b:f9:22:f4:a4:c8:51:f1:20:f5:ce:81:e0:ea:92:
72:01:d7:2e:8d:3b:3b:1b:4f:c6:1b:48:72:61:c4:64:6d:4c:
fd:6c:91:d3:af:43:3a:ae:de:1f:b3:92:7c:4a:8d:b8:e9:5c:
33:dd:c6:48:48:f6:0c:40:42:a7:7e:58:4a:a1:38:23:0d:f5:
a5:f2:bb:54:d6:90:01:c3:d4:8a:95:08:3f:00:95:bd:eb:a1:
e7:76:5e:ae:a3:b8:0e:9c:de:6d:c3:6b:ac:5b:14:2e:35:be:
0a:c2:e0:64:b0:7d:04:f1:77:7a:a9:59:1c:e5:ea:c8:10:69:
41:5a:99:e8:2d:a3:2c:c3:3f:a1:07:e1:a4:55:d3:7b:8d:79:
5f:44:e9:03:6a:f1:a0:7f:5f:af:50:e7:81:64:96:88:94:1f:
5d:c4:bc:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:34 2023 by rpki-client on console-ams.rpki-client.org