Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/F8FDA9801F0B11EFAA9C5D6DC4F9AE02.roa
File: F8FDA9801F0B11EFAA9C5D6DC4F9AE02.roa (raw, json)
Hash identifier: gmarvTXz4fsB1hD7kq8/G2QA6vzaBe5HT/l3R12qyFo=
Subject key identifier: 3D:A6:21:FD:CD:9A:8F:2B:CA:32:26:B9:44:96:E2:7B:26:26:DB:38
Certificate issuer: /CN=A9126DA8/serialNumber=BC137C2777E51DE7BD1ACE80D868FD93A1EC7A43
Certificate serial: 0220
Authority key identifier: BC:13:7C:27:77:E5:1D:E7:BD:1A:CE:80:D8:68:FD:93:A1:EC:7A:43
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBN8J3flHee9Gs6A2Gj9k6HsekM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/F8FDA9801F0B11EFAA9C5D6DC4F9AE02.roa
Signing time: Wed 05 Jun 2024 05:21:43 +0000
ROA not before: Wed 05 Jun 2024 05:21:43 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 103.25.124.0/24 maxlen: 24
103.25.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Aug 2024 04:51:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 544 (0x220)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9126DA8/serialNumber=BC137C2777E51DE7BD1ACE80D868FD93A1EC7A43
Validity
Not Before: Jun 5 05:21:43 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=665ff5e7-f16d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:81:75:8c:ce:a7:73:af:01:ac:cf:ad:48:b1:
d5:b4:c1:92:16:7d:2f:37:21:fd:4f:00:30:0a:66:
b8:df:3b:90:36:62:29:44:3e:0d:9d:35:bd:0f:bc:
ac:4c:04:f5:c9:83:fa:a3:99:f3:ca:cb:5a:8b:92:
88:3c:49:c9:1b:d3:8a:9e:41:2a:80:7f:0a:d1:e5:
50:d7:27:33:b6:33:58:38:d9:73:fc:ab:42:36:40:
92:e1:75:6c:0e:f9:f3:98:c4:fa:ee:0f:04:07:9b:
68:1d:4b:ef:00:3a:4a:e0:2f:ac:7a:66:c8:e0:e1:
93:72:b9:c0:9c:a2:c9:ba:34:9c:4a:47:e8:1b:63:
67:0d:fe:c5:a6:09:0c:a4:a9:d7:93:45:9f:4e:2c:
0d:86:f5:8f:42:77:92:37:08:f5:7b:f1:98:56:38:
8d:85:8d:a5:18:01:2b:45:d9:01:da:c7:87:a5:2f:
da:d2:d5:08:66:b9:e3:cd:6b:7d:bc:9e:0b:c9:05:
12:cd:96:91:d8:c8:33:5f:79:e3:7b:e1:2a:4a:8e:
26:70:e2:48:1d:62:ab:d9:f1:b0:8e:47:74:00:26:
2c:91:fc:51:8a:46:ff:a1:c8:80:6c:4a:7b:08:a8:
e2:b1:2f:11:71:b8:c1:41:1c:c4:14:04:53:3b:be:
2b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A6:21:FD:CD:9A:8F:2B:CA:32:26:B9:44:96:E2:7B:26:26:DB:38
X509v3 Authority Key Identifier:
keyid:BC:13:7C:27:77:E5:1D:E7:BD:1A:CE:80:D8:68:FD:93:A1:EC:7A:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/vBN8J3flHee9Gs6A2Gj9k6HsekM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBN8J3flHee9Gs6A2Gj9k6HsekM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/F8FDA9801F0B11EFAA9C5D6DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.25.124.0/24
103.25.126.0/24
Signature Algorithm: sha256WithRSAEncryption
46:ba:23:d5:65:f6:01:51:dd:67:0d:ec:8a:4f:6d:c1:6c:91:
c9:6a:ab:14:60:7a:4b:5b:cd:65:fa:dd:3a:16:34:bd:45:31:
e7:b5:2c:41:74:7c:4c:a7:90:66:5d:44:35:93:d0:22:48:47:
60:df:a2:14:d6:72:65:6c:8f:35:e2:4f:37:49:d1:7e:e3:97:
18:d9:de:3c:76:22:7a:42:5e:4f:ca:cf:2f:be:89:49:2d:9c:
a4:dd:af:90:69:7f:53:ea:7b:49:9c:63:87:08:52:86:a6:6f:
36:d0:7d:1f:de:34:89:25:f6:85:b5:8c:6c:3b:dd:41:94:82:
27:45:41:ee:39:d7:8a:d3:00:83:96:93:8d:2c:29:85:ed:f7:
2c:3f:6e:a6:c3:48:9b:85:8a:87:93:dc:eb:2c:f6:7c:ca:4f:
96:07:a8:4e:1d:e8:00:42:0a:c1:be:0f:94:87:97:fa:a1:f7:
33:d1:b8:09:42:2f:1e:c4:ca:18:b3:95:b3:d9:94:a2:0b:cc:
65:55:80:e8:0d:57:89:29:71:a7:af:99:2f:47:1b:10:33:16:
08:af:b8:72:f8:6a:af:65:88:a1:9f:b7:0f:49:83:10:8a:20:
67:bc:50:7c:21:2b:bb:bf:df:5c:50:1b:96:78:8a:b1:42:eb:
ee:80:bd:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 6 06:29:46 2024 by rpki-client on console-fra.rpki-client.org