Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/1A04D95E83B311EEA4570325C4F9AE02.roa
File: 1A04D95E83B311EEA4570325C4F9AE02.roa (raw, json)
Hash identifier: BX/xJJA+C70mgzdfTk9Dq+tdU4vsOp4KL0AxDugNxMg=
Subject key identifier: 7A:1D:C7:19:3B:48:34:F8:59:26:04:B3:F3:40:4C:E3:58:A7:6D:98
Certificate issuer: /CN=A9126DA8/serialNumber=BC137C2777E51DE7BD1ACE80D868FD93A1EC7A43
Certificate serial: 019E
Authority key identifier: BC:13:7C:27:77:E5:1D:E7:BD:1A:CE:80:D8:68:FD:93:A1:EC:7A:43
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBN8J3flHee9Gs6A2Gj9k6HsekM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/1A04D95E83B311EEA4570325C4F9AE02.roa
Signing time: Wed 15 Nov 2023 12:32:56 +0000
ROA not before: Wed 15 Nov 2023 12:32:56 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 103.25.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Dec 2023 07:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 414 (0x19e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9126DA8/serialNumber=BC137C2777E51DE7BD1ACE80D868FD93A1EC7A43
Validity
Not Before: Nov 15 12:32:56 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6554ba77-09e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:07:00:9a:5e:3c:0a:e9:a0:12:89:05:0a:ad:
a4:d0:70:69:aa:bd:7d:b1:5c:8c:cd:89:ad:a6:67:
44:c6:26:fb:16:ba:e8:ce:42:95:50:6b:8d:0f:82:
32:07:cd:64:a9:53:35:64:43:ab:d1:af:6b:40:74:
5b:5e:49:c8:6c:dc:d3:2b:84:29:f8:39:80:ab:12:
d9:40:4a:76:d8:e5:82:8d:b9:ec:92:ed:31:e1:71:
98:07:7e:1a:4e:c0:22:ef:17:2e:f9:ad:b0:19:1e:
40:17:14:4d:94:74:0d:e1:bc:70:c2:f6:34:37:e5:
7b:d8:97:e7:04:1d:ef:10:70:6a:dd:7e:4d:5f:3c:
f0:e8:fb:28:1c:15:4d:db:e0:11:63:48:a5:f9:16:
16:f0:bd:27:09:7d:e3:d0:82:a4:c3:71:26:22:1a:
e1:0c:4e:aa:00:65:3b:27:7f:a3:52:83:b4:c0:3a:
14:5d:b2:f9:35:73:99:c9:7c:fc:fa:50:2a:37:f3:
17:57:81:5b:98:61:d2:25:ae:d2:45:99:4d:08:06:
fa:34:d1:0d:a6:bd:0f:d2:66:d4:5a:2b:4e:fb:70:
b5:da:4f:95:76:0e:99:54:fc:17:d1:86:a3:1a:cd:
08:6c:14:50:77:52:13:9f:a3:08:3c:9b:f2:d2:ba:
dc:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:1D:C7:19:3B:48:34:F8:59:26:04:B3:F3:40:4C:E3:58:A7:6D:98
X509v3 Authority Key Identifier:
keyid:BC:13:7C:27:77:E5:1D:E7:BD:1A:CE:80:D8:68:FD:93:A1:EC:7A:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/vBN8J3flHee9Gs6A2Gj9k6HsekM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBN8J3flHee9Gs6A2Gj9k6HsekM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/1A04D95E83B311EEA4570325C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.25.124.0/24
Signature Algorithm: sha256WithRSAEncryption
30:f4:2c:d7:c5:3c:11:e3:87:b8:48:e1:ea:04:f2:2d:9a:e9:
52:aa:0c:91:0d:ca:62:17:ae:6e:4e:7e:65:d3:c2:5a:3a:f9:
9d:86:82:66:9a:57:50:47:eb:69:5c:70:fb:af:09:14:cf:99:
14:c9:0f:e0:18:aa:3a:b8:f5:15:a7:05:bd:ab:77:17:f1:31:
8d:41:f7:df:c0:82:85:15:f6:32:48:6e:af:49:a6:e9:b7:a1:
a8:24:37:9f:f4:3c:d4:22:3b:a0:10:d9:8c:7d:aa:15:68:79:
93:be:0e:7a:bf:57:b0:22:41:36:36:e2:bd:de:7d:fb:e3:2d:
2c:8b:6d:47:05:12:4e:1e:48:66:21:8c:34:bf:69:09:6b:ea:
bd:ba:7a:84:8f:b1:1f:d8:d1:3c:22:19:3c:59:a3:b0:39:69:
74:81:0b:a4:56:f8:a5:51:f6:eb:a0:52:7d:bf:32:ec:a8:32:
4d:2c:9a:04:c4:8a:63:34:2a:76:9e:32:d3:0c:10:7a:61:2c:
57:26:b4:04:63:e5:30:0c:e6:41:41:c6:28:22:4d:a9:29:f2:
26:6e:c3:74:61:db:4f:eb:55:85:03:3e:5d:ef:c6:ac:dd:99:
33:68:6e:1c:a6:17:36:6f:5e:2a:55:0a:ab:0f:75:98:61:0d:
a8:ba:61:eb
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjZEQTgxMTAvBgNVBAUTKEJDMTM3QzI3NzdFNTFERTdCRDFBQ0U4MEQ4NjhGRDkz
QTFFQzdBNDMwHhcNMjMxMTE1MTIzMjU2WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTU0YmE3Ny0wOWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvgcAml48CumgEokFCq2k0HBpqr19sVyMzYmtpmdExib7FrrozkKVUGuND4Iy
B81kqVM1ZEOr0a9rQHRbXknIbNzTK4Qp+DmAqxLZQEp22OWCjbnsku0x4XGYB34a
TsAi7xcu+a2wGR5AFxRNlHQN4bxwwvY0N+V72JfnBB3vEHBq3X5NXzzw6PsoHBVN
2+ARY0il+RYW8L0nCX3j0IKkw3EmIhrhDE6qAGU7J3+jUoO0wDoUXbL5NXOZyXz8
+lAqN/MXV4FbmGHSJa7SRZlNCAb6NNENpr0P0mbUWitO+3C12k+Vdg6ZVPwX0Yaj
Gs0IbBRQd1ITn6MIPJvy0rrcwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHodxxk7
SDT4WSYEs/NATONYp22YMB8GA1UdIwQYMBaAFLwTfCd35R3nvRrOgNho/ZOh7HpD
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkRBOC83NkVENDRFRTAx
RUIxMUVEOTlBMzFBMUZDNEY5QUUwMi92Qk44SjNmbEhlZTlHczZBMkdqOWs2SHNl
a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3ZCTjhKM2ZsSGVlOUdzNkEyR2o5azZIc2VrTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MjZEQTgvNzZFRDQ0RUUwMUVCMTFFRDk5QTMxQTFGQzRGOUFFMDIvMUEwNEQ5NUU4
M0IzMTFFRUE0NTcwMzI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnGXwwDQYJKoZIhvcNAQELBQADggEBADD0LNfFPBHjh7hI
4eoE8i2a6VKqDJENymIXrm5OfmXTwlo6+Z2GgmaaV1BH62lccPuvCRTPmRTJD+AY
qjq49RWnBb2rdxfxMY1B99/AgoUV9jJIbq9Jpum3oagkN5/0PNQiO6AQ2Yx9qhVo
eZO+Dnq/V7AiQTY24r3effvjLSyLbUcFEk4eSGYhjDS/aQlr6r26eoSPsR/Y0Twi
GTxZo7A5aXSBC6RW+KVR9uugUn2/MuyoMk0smgTEimM0KnaeMtMMEHphLFcmtARj
5TAM5kFBxigiTakp8iZuw3Rh20/rVYUDPl3vxqzdmTNobhymFzZvXipVCqsPdZhh
Dai6Yes=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-ams.rpki-client.org