Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91295B6/F0730C88216911EEB56F2249C4F9AE02/DCB756B6218911EE95ABE336C4F9AE02.roa
File: DCB756B6218911EE95ABE336C4F9AE02.roa (raw, json)
Hash identifier: vWibsBdh+5PeNADjb00/9iVkvp1BP1QKh3K3u9qk0j0=
Subject key identifier: 5C:6A:58:2F:45:44:FE:47:FF:4B:12:EB:11:6A:E1:61:3A:E6:2B:43
Certificate issuer: /CN=A91295B6/serialNumber=160E00015D2B58153F3482E8DE947B5F4AD78718
Certificate serial: 05
Authority key identifier: 16:0E:00:01:5D:2B:58:15:3F:34:82:E8:DE:94:7B:5F:4A:D7:87:18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fg4AAV0rWBU_NILo3pR7X0rXhxg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91295B6/F0730C88216911EEB56F2249C4F9AE02/DCB756B6218911EE95ABE336C4F9AE02.roa
Signing time: Thu 13 Jul 2023 14:31:24 +0000
ROA not before: Thu 13 Jul 2023 14:31:24 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 136442
IP address blocks: 103.238.66.0/24 maxlen: 24
103.238.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Jul 2023 14:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91295B6/serialNumber=160E00015D2B58153F3482E8DE947B5F4AD78718
Validity
Not Before: Jul 13 14:31:24 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=64b00abc-e70e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0e:ee:e0:73:dd:06:29:2f:7b:8a:68:80:49:
a2:72:82:8d:d9:d4:21:86:f0:19:6e:dc:5b:59:40:
2d:a3:24:88:6c:1e:1f:c5:b8:8f:78:05:bb:8e:03:
eb:0b:d0:81:27:3e:72:7b:7d:8f:36:c6:7e:49:71:
06:78:05:62:2a:68:d6:88:8d:2d:95:28:dc:dd:bc:
ef:d4:92:30:41:48:46:d4:56:52:da:10:4f:40:71:
2f:69:0d:c1:76:f6:8c:21:a8:53:13:11:31:bc:72:
75:b8:7c:fb:54:68:4c:ec:20:c8:81:f0:08:b4:25:
08:74:6c:a8:a8:ec:a4:79:17:8d:e1:bf:c4:d2:32:
04:ec:f6:d7:df:81:56:68:9c:b5:69:ee:ea:06:a2:
78:61:b9:bb:1d:bc:35:40:9b:99:b1:1e:d3:ea:89:
d1:06:a6:10:e7:3a:29:8b:a0:f1:2b:6e:7b:9c:ac:
88:bc:ec:04:dc:4c:24:9b:45:42:fa:f7:bf:76:7d:
46:04:f8:09:32:37:88:c5:c2:63:ef:0b:06:94:ba:
cf:ba:2d:dc:55:4c:12:bb:6f:c9:88:e3:f5:4d:64:
6f:52:2e:82:83:f3:fa:40:25:10:35:3a:d9:ed:84:
66:fd:80:7c:9e:4a:15:eb:ef:87:07:81:8a:a0:bc:
b0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:6A:58:2F:45:44:FE:47:FF:4B:12:EB:11:6A:E1:61:3A:E6:2B:43
X509v3 Authority Key Identifier:
keyid:16:0E:00:01:5D:2B:58:15:3F:34:82:E8:DE:94:7B:5F:4A:D7:87:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91295B6/F0730C88216911EEB56F2249C4F9AE02/Fg4AAV0rWBU_NILo3pR7X0rXhxg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fg4AAV0rWBU_NILo3pR7X0rXhxg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91295B6/F0730C88216911EEB56F2249C4F9AE02/DCB756B6218911EE95ABE336C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.238.66.0/23
Signature Algorithm: sha256WithRSAEncryption
14:2c:91:69:00:d7:b8:50:2d:5e:9d:0e:f5:04:1b:e4:c5:00:
05:43:e2:0b:0b:30:ee:f0:7c:20:be:99:69:81:f9:b1:28:e2:
fc:cb:d3:c2:ba:56:17:17:3c:94:d8:c0:1d:32:dc:7c:47:5f:
e1:5f:cd:8d:cb:8e:5c:42:4f:24:a6:ed:53:34:ef:f0:9d:4f:
40:98:54:c5:3a:11:fd:fc:d8:1e:e9:0a:36:19:b2:c3:27:60:
70:22:e1:f5:de:93:ec:6e:c9:d1:e6:a6:45:d8:ad:8e:73:f2:
2f:70:30:a5:8d:bf:0e:12:41:09:33:d9:58:c7:71:a7:c2:2d:
3a:97:13:7b:fb:09:82:8d:97:31:72:27:7f:28:43:12:b5:4e:
b1:e6:89:ed:38:a0:65:10:0e:53:1b:a8:bd:10:77:01:f6:bd:
a3:cb:ac:6d:5f:5e:0f:e1:d3:62:ed:ef:00:99:fe:28:dc:55:
12:9e:03:e4:97:47:11:7f:b7:25:e1:e8:05:c9:b4:17:93:72:
11:93:1f:2d:90:5d:37:90:e8:96:2b:a5:02:76:14:f7:4d:b8:
64:b0:94:43:30:1b:1a:00:e3:51:37:b2:21:0b:83:d0:08:e2:
3e:09:e2:9c:46:10:81:4e:79:c5:6a:c0:39:af:47:5b:5c:32:
9d:e4:2a:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:49 2024 by rpki-client on console-ams.rpki-client.org