Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91324F2/FA37C846124A11ED9DD30F62C4F9AE02/832F9E96124E11ED95DC9111C4F9AE02.roa
File: 832F9E96124E11ED95DC9111C4F9AE02.roa (raw, json)
Hash identifier: RFUAlgJKUO7+XNOjdgg1vjPinh29G8x0qKnRaBwGQg0=
Subject key identifier: C9:C5:57:8F:2B:E4:1B:E2:EB:33:F5:33:1E:2C:CE:63:F0:04:5F:04
Certificate issuer: /CN=A91324F2/serialNumber=51DD5E7FA6C416441CB2D8AA1895FC49F3F96B7A
Certificate serial: 0165
Authority key identifier: 51:DD:5E:7F:A6:C4:16:44:1C:B2:D8:AA:18:95:FC:49:F3:F9:6B:7A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ud1ef6bEFkQcstiqGJX8SfP5a3o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91324F2/FA37C846124A11ED9DD30F62C4F9AE02/832F9E96124E11ED95DC9111C4F9AE02.roa
Signing time: Fri 29 Dec 2023 04:05:11 +0000
ROA not before: Fri 29 Dec 2023 04:05:11 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 137211
IP address blocks: 103.105.36.0/24 maxlen: 24
103.105.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 23:05:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357 (0x165)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91324F2/serialNumber=51DD5E7FA6C416441CB2D8AA1895FC49F3F96B7A
Validity
Not Before: Dec 29 04:05:11 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=658e4577-f419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:af:e0:5e:cc:d0:aa:d9:c1:1c:ed:a9:d9:a4:
28:0b:38:fe:fc:cc:26:f2:4f:b0:4b:22:86:9a:78:
67:f7:5b:5c:e0:8d:4d:6b:91:fd:9d:38:e4:ea:e7:
f5:d1:ce:00:c9:a9:5a:3d:fd:62:28:b6:88:ba:2b:
56:b0:6f:d2:b1:cf:bc:c9:b8:a4:24:84:32:29:6f:
a2:ae:0e:6e:8f:2c:c2:5b:33:9b:1a:12:46:dd:a7:
bc:cf:0a:7c:f0:d7:f6:aa:f0:5d:fc:36:8e:c0:9c:
c4:c7:6e:12:4d:fa:8c:de:49:00:4d:5a:a6:98:06:
f7:7f:73:4b:a2:16:a3:01:cb:6c:3f:e0:8a:bb:4d:
78:47:bf:37:04:48:27:94:f0:50:3f:9d:a8:93:13:
d7:0e:3d:79:9a:a4:85:62:3b:ac:2b:e8:96:74:93:
90:bb:f8:a9:96:cd:2c:65:c7:c9:54:f5:86:95:96:
be:f8:8e:b2:85:e4:06:a1:d3:00:9e:20:c6:48:b2:
85:40:01:57:31:ed:53:9c:c6:a4:9f:11:2c:c8:22:
bd:b6:3e:6b:2d:6f:71:46:ec:29:bb:ee:0c:b0:8b:
0a:1f:b5:1d:f2:d4:3a:d6:32:a6:b3:ee:35:2d:40:
67:ad:fd:28:2e:d2:13:75:d0:7b:68:20:fd:01:b8:
43:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:C5:57:8F:2B:E4:1B:E2:EB:33:F5:33:1E:2C:CE:63:F0:04:5F:04
X509v3 Authority Key Identifier:
keyid:51:DD:5E:7F:A6:C4:16:44:1C:B2:D8:AA:18:95:FC:49:F3:F9:6B:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91324F2/FA37C846124A11ED9DD30F62C4F9AE02/Ud1ef6bEFkQcstiqGJX8SfP5a3o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ud1ef6bEFkQcstiqGJX8SfP5a3o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91324F2/FA37C846124A11ED9DD30F62C4F9AE02/832F9E96124E11ED95DC9111C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.105.36.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:68:7f:a4:7a:aa:6d:e6:85:e0:5d:23:a8:d9:38:86:96:ae:
51:08:fe:2f:fc:ae:8d:4d:0e:2e:5a:b6:10:51:9d:83:2f:62:
31:50:cf:fe:42:21:61:fe:46:cd:ba:c9:ce:84:6c:3b:32:c2:
e8:6a:55:73:99:bb:33:9b:05:24:80:85:30:9e:a2:6c:67:53:
74:b8:ee:8a:b8:49:9f:8a:10:e1:5e:e2:27:67:e5:9f:76:8e:
37:6b:6b:00:af:31:1d:ed:8c:30:f6:7a:ef:84:55:3f:c4:a1:
48:2f:fc:37:16:da:6c:0a:82:13:bf:af:17:99:70:16:3b:eb:
fa:d3:4a:5e:b8:2d:b1:94:ce:c1:22:72:97:b0:4e:dc:be:0b:
1c:4d:f7:e1:1d:a9:9e:62:f2:24:12:c5:1d:9c:36:c6:20:63:
f1:cf:1f:20:b8:6e:6a:f8:37:60:ab:04:82:f7:4c:e6:16:6a:
55:10:71:6d:c7:d7:d3:73:f6:24:75:c8:db:a9:44:78:de:d9:
a5:6f:29:45:2e:5b:48:fd:2d:8f:14:62:3a:fa:c0:af:9b:e1:
73:8a:b5:55:02:f1:93:c9:9a:4f:43:70:8a:36:93:93:6d:f7:
26:ea:35:4c:f2:24:af:c3:d9:ce:3d:11:89:c7:f1:aa:f1:11:
95:92:5d:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 15 02:01:36 2024 by rpki-client on console-ams.rpki-client.org