Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143C5C/F652EFF894E811EAB0C01668C4F9AE02/90F15340913B11EE93C27032C4F9AE02.roa
File: 90F15340913B11EE93C27032C4F9AE02.roa (raw, json)
Hash identifier: zFaCYyYaiV/4wSnQCM4NP107yqWs/D3QBDMMBJlAVVw=
Subject key identifier: 58:67:A0:9D:32:D5:6E:C4:62:3C:60:D1:F7:22:3C:77:88:DB:49:3F
Certificate issuer: /CN=A9143C5C/serialNumber=72F2CB33D77C163899E5350D8E801E7170E484DE
Certificate serial: 0864
Authority key identifier: 72:F2:CB:33:D7:7C:16:38:99:E5:35:0D:8E:80:1E:71:70:E4:84:DE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cvLLM9d8FjiZ5TUNjoAecXDkhN4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9143C5C/F652EFF894E811EAB0C01668C4F9AE02/90F15340913B11EE93C27032C4F9AE02.roa
Signing time: Sat 02 Dec 2023 17:52:32 +0000
ROA not before: Sat 02 Dec 2023 17:52:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 140624
IP address blocks: 103.151.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jan 2024 14:22:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2148 (0x864)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9143C5C/serialNumber=72F2CB33D77C163899E5350D8E801E7170E484DE
Validity
Not Before: Dec 2 17:52:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=656b6edf-dab2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7d:6a:5b:78:f8:d9:32:37:bb:ff:1f:82:0d:
6a:9b:ed:ff:ce:3a:84:88:db:72:48:9c:7c:9f:fc:
3f:b3:c3:4e:65:71:c2:42:8a:c8:d7:83:b6:c4:ba:
ee:f6:fb:74:40:2e:1f:47:e3:55:6c:75:70:e7:2d:
ae:49:a4:db:a8:12:3b:66:ca:2e:9e:25:81:93:e8:
b2:b0:29:cf:00:cc:32:b2:94:cb:88:cc:79:9d:a0:
5b:93:02:de:ce:23:04:98:7d:e5:1a:d0:c5:04:25:
50:17:bb:89:07:42:58:db:fd:8f:e8:d5:51:39:81:
a5:db:d0:53:0e:2e:de:9d:bd:0e:c5:1f:dc:fe:32:
c4:a3:2c:8c:c6:0d:86:eb:8e:2c:84:2f:0b:79:5e:
ac:0e:de:2a:b7:b9:ed:8c:91:1e:17:fb:7d:61:cb:
ad:d2:65:be:26:bf:92:15:9f:80:1d:37:51:28:e1:
b4:13:73:84:d4:49:5b:3d:7e:5d:ce:fc:30:69:07:
f6:dd:13:af:ee:29:f3:3d:20:04:05:6c:53:c0:f5:
7e:50:4e:ba:04:8e:39:83:93:07:c4:3c:5c:4c:c9:
17:b4:58:42:20:6f:95:e2:1a:45:db:99:56:6e:ab:
8c:cf:1e:48:19:03:1f:16:df:af:57:66:b9:1e:bf:
d9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:67:A0:9D:32:D5:6E:C4:62:3C:60:D1:F7:22:3C:77:88:DB:49:3F
X509v3 Authority Key Identifier:
keyid:72:F2:CB:33:D7:7C:16:38:99:E5:35:0D:8E:80:1E:71:70:E4:84:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9143C5C/F652EFF894E811EAB0C01668C4F9AE02/cvLLM9d8FjiZ5TUNjoAecXDkhN4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cvLLM9d8FjiZ5TUNjoAecXDkhN4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143C5C/F652EFF894E811EAB0C01668C4F9AE02/90F15340913B11EE93C27032C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.59.0/24
Signature Algorithm: sha256WithRSAEncryption
13:9d:d6:87:e6:f4:67:67:ff:66:e8:c7:4e:bf:96:47:fd:90:
ed:86:a9:1a:d7:75:40:a5:0c:7e:f5:8e:09:ff:6d:ba:c1:22:
80:c7:35:be:a4:89:54:cd:7c:3a:9f:58:61:a0:99:60:d0:1f:
22:e8:50:8f:c1:9a:66:07:d8:4c:5e:3d:41:a2:28:a6:57:70:
a7:1a:d0:41:e5:63:0a:8f:c8:1d:0c:fd:e8:a2:c1:78:93:b7:
91:c5:1c:60:25:a0:6a:68:ac:3d:dd:d8:e2:ea:28:d7:ad:fc:
41:a9:7a:b8:d6:36:16:36:d0:ed:be:b5:38:60:0e:e0:15:f8:
b3:32:42:2c:4c:fc:06:bd:09:99:43:f9:08:a9:b1:d5:5d:bc:
b4:e1:51:0e:06:a5:94:b6:b3:d5:78:29:57:78:3e:64:2e:1d:
9d:24:09:1b:04:45:1e:38:5e:e8:e7:ed:f9:a4:eb:b5:66:e5:
96:65:16:cc:87:17:8d:4a:bb:38:86:02:fa:77:be:2a:1b:a6:
d1:38:8c:7c:cb:8d:f0:85:db:91:0e:1e:dc:87:97:d6:6d:c5:
96:12:50:9f:86:d5:d9:3c:31:92:f7:45:72:70:ff:e9:22:44:
9e:a8:2f:11:a6:7f:f5:70:9f:f4:01:a6:41:88:b3:b1:1e:b1:
b5:fb:02:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 22 17:49:58 2024 by rpki-client on console-fra.rpki-client.org