Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131EF0/5809C7BA567D11EC90A21644C4F9AE02/0D5FCB16568111EC8C98BA6FC4F9AE02.roa
File: 0D5FCB16568111EC8C98BA6FC4F9AE02.roa (raw, json)
Hash identifier: pnH+/pzT5RqGTiL+72ewCgH8cuDW4K2YEYqeVoPGZ/s=
Subject key identifier: EE:47:5D:30:17:A2:7E:DC:C9:39:B5:D2:65:CE:D1:A8:53:B3:9A:47
Certificate issuer: /CN=A9131EF0/serialNumber=EA1E9D6168ACF07B39AB3E92F83C7B34BEF2E24E
Certificate serial: 02DF
Authority key identifier: EA:1E:9D:61:68:AC:F0:7B:39:AB:3E:92:F8:3C:7B:34:BE:F2:E2:4E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6h6dYWis8Hs5qz6S-Dx7NL7y4k4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9131EF0/5809C7BA567D11EC90A21644C4F9AE02/0D5FCB16568111EC8C98BA6FC4F9AE02.roa
Signing time: Thu 15 Jun 2023 03:03:48 +0000
ROA not before: Thu 15 Jun 2023 03:03:48 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 132146
IP address blocks: 103.113.240.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Jun 2024 06:05:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 735 (0x2df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9131EF0/serialNumber=EA1E9D6168ACF07B39AB3E92F83C7B34BEF2E24E
Validity
Not Before: Jun 15 03:03:48 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=648a7f94-4e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8a:1f:7e:f7:cf:51:7d:9c:4e:2c:9a:d8:57:
e6:db:bd:27:54:4b:da:f3:5c:3f:0d:55:21:90:94:
e2:d6:aa:46:56:cb:c6:1a:2d:c7:81:e7:8a:02:9d:
e2:ce:d2:a4:b9:44:5b:9f:1e:0e:73:67:5e:e0:e7:
72:0d:55:ba:27:dc:f0:79:8a:28:e8:f4:4a:a5:ed:
ea:a8:82:a0:ce:fd:be:b2:50:74:7e:ca:42:06:45:
58:98:9e:76:dc:3a:85:cd:fc:f7:e6:02:33:78:e7:
72:63:a5:71:68:d8:84:91:63:3d:a7:96:63:55:f6:
a9:3b:de:8f:31:0e:bd:65:11:6d:03:af:49:07:d1:
e8:01:e5:23:df:dd:76:42:a1:4f:19:a2:dc:f8:88:
cd:4e:61:ce:b2:d2:75:30:e4:9c:7b:b1:02:85:b7:
ba:11:f1:7d:25:0f:da:66:97:1d:94:3c:45:ff:02:
59:a4:7e:bc:71:91:57:d2:ea:f6:f2:07:c2:73:0a:
77:c8:ca:45:b2:09:80:f9:81:37:46:eb:d1:09:28:
4c:7c:48:b1:12:82:87:cc:87:54:ce:16:2b:c6:29:
5f:76:0f:11:9f:3e:ac:c4:bb:1a:bd:21:62:f0:2b:
58:aa:cc:dc:1a:dd:c8:14:0b:b8:87:2c:58:18:2c:
1a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:47:5D:30:17:A2:7E:DC:C9:39:B5:D2:65:CE:D1:A8:53:B3:9A:47
X509v3 Authority Key Identifier:
keyid:EA:1E:9D:61:68:AC:F0:7B:39:AB:3E:92:F8:3C:7B:34:BE:F2:E2:4E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9131EF0/5809C7BA567D11EC90A21644C4F9AE02/6h6dYWis8Hs5qz6S-Dx7NL7y4k4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6h6dYWis8Hs5qz6S-Dx7NL7y4k4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131EF0/5809C7BA567D11EC90A21644C4F9AE02/0D5FCB16568111EC8C98BA6FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.113.240.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:d2:df:c0:7b:d9:bb:67:fb:1c:82:5f:db:d1:35:34:cb:b0:
f3:5b:57:20:38:21:5a:a0:f2:ba:83:9f:4c:33:b3:3c:24:4f:
b7:1e:81:c2:8d:43:d7:74:54:75:bb:14:25:bc:1d:f0:a6:f8:
39:c0:db:65:84:83:c3:e1:0e:b0:98:f3:9a:6f:9e:d7:5b:71:
26:4e:53:45:04:d3:0c:80:0a:e0:95:ff:9a:17:e0:9a:02:6d:
9b:14:e7:7e:0d:ae:c6:c3:84:bf:19:96:67:b6:34:ac:1a:65:
05:8a:4f:7b:5f:29:52:68:36:d4:64:1b:48:4e:5b:74:f2:21:
7e:25:27:74:d2:5e:17:60:cd:52:1d:bf:df:71:12:9c:d5:ee:
f8:48:fb:9e:1a:e2:fd:27:45:22:38:e1:b9:bf:8c:c3:02:35:
1c:48:75:16:d2:b9:f3:55:43:c3:0e:88:dd:86:4b:11:4d:e6:
3b:0e:39:80:57:29:34:88:e4:70:25:73:e0:e3:c7:48:9b:69:
39:51:d5:79:a0:dc:60:6d:a8:30:47:da:00:96:31:e9:24:50:
cf:27:54:93:f5:77:58:cd:3f:8d:66:65:0a:b0:40:6d:5c:3d:
a5:66:72:55:5a:e1:3d:dc:1a:8d:17:c8:ea:fd:a1:eb:6d:94:
8f:8a:76:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 11:19:25 2024 by rpki-client on console-ams.rpki-client.org