Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/8F5B11804EC211EE84582E78C4F9AE02.roa
File: 8F5B11804EC211EE84582E78C4F9AE02.roa (raw, json)
Hash identifier: c5WH1J+JKVE3wCAoiko0oXAgwxAiiuXbr9eqQb9z9AE=
Subject key identifier: 66:2B:10:04:00:66:DB:79:97:F7:73:F7:A6:0C:65:F0:58:88:72:5F
Certificate issuer: /CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208
Certificate serial: 0295
Authority key identifier: 64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/8F5B11804EC211EE84582E78C4F9AE02.roa
Signing time: Sat 11 May 2024 04:10:50 +0000
ROA not before: Sat 11 May 2024 04:10:50 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 40065
IP address blocks: 103.215.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 16 Jun 2024 13:23:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 661 (0x295)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208
Validity
Not Before: May 11 04:10:50 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=663eefca-e30f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ea:0e:49:29:b0:7e:ec:50:56:23:6b:b3:8c:
f9:ee:06:aa:5f:67:8b:b5:f2:66:4e:67:34:ea:2e:
88:6f:13:1d:aa:95:0d:fa:98:5c:94:92:fe:d8:7a:
c7:ea:9d:bd:27:34:78:a6:53:16:61:b0:37:cf:cd:
aa:e6:97:43:c8:40:88:b9:c4:26:d2:24:fc:4e:98:
95:1f:50:72:d2:f6:0a:f2:ce:0b:b2:d2:28:f9:63:
9b:81:b5:34:b8:ea:92:56:e4:ee:84:e6:54:91:8e:
8e:3a:a0:f2:45:4f:34:2a:46:d2:c1:ac:71:c5:7b:
fa:30:35:44:bc:02:ba:cd:35:81:88:22:3d:24:d4:
80:d3:44:c7:65:76:09:5c:ba:c0:a5:a7:d5:83:58:
8b:15:f4:2f:3d:73:b4:b3:20:55:b8:4e:42:d3:3c:
1a:d9:c4:86:81:2d:0e:6c:d8:db:45:a7:8b:ff:d0:
83:9d:36:88:53:f8:e6:1f:f4:0e:88:e7:be:e5:b6:
20:3a:78:92:03:8e:e6:a1:4c:a5:f8:f6:4a:93:d6:
cb:16:a7:89:47:4a:3f:be:12:6f:7d:1b:9a:d7:48:
fc:bc:fc:bf:1f:48:7e:7b:d0:9c:6b:60:50:d7:e4:
f5:89:ed:fc:5b:6a:22:5c:d7:52:bf:17:ee:5e:5f:
f4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:2B:10:04:00:66:DB:79:97:F7:73:F7:A6:0C:65:F0:58:88:72:5F
X509v3 Authority Key Identifier:
keyid:64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/8F5B11804EC211EE84582E78C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.215.125.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:f6:b4:0a:dc:c4:3b:a6:6a:2d:ba:da:f4:f3:38:5b:89:03:
37:2b:fd:8f:de:1f:5d:13:82:1f:a6:f9:b7:a0:a1:c4:ae:68:
df:0c:60:c5:20:d3:87:de:2d:95:a0:1b:68:0c:6a:e9:f2:6b:
83:47:46:34:bc:d6:bd:40:be:b5:53:a7:7d:fc:f2:01:af:a5:
40:4b:36:6d:37:22:a0:f1:55:49:8e:98:68:56:3e:af:87:25:
d9:8c:e7:bd:f2:a5:29:9d:ae:9b:4a:7d:7a:07:a6:6f:47:26:
b6:73:b7:e2:9e:40:6b:d4:c7:0d:a1:d3:37:1f:7e:78:96:bd:
03:f9:bc:d3:86:07:a5:c6:81:31:1e:32:2f:19:5e:99:b8:67:
78:84:b0:b6:b3:03:54:08:4d:06:10:fa:04:73:84:1a:eb:db:
5a:92:97:cb:82:34:cb:65:e9:67:05:41:9f:c9:47:12:02:40:
9d:62:50:72:35:54:1c:c4:77:7e:51:68:b8:a9:cc:c2:d2:db:
24:b5:8e:3b:70:3e:9f:4c:f9:4c:fe:4b:5f:47:5b:c1:2a:95:
46:e1:6b:a3:8a:56:4a:af:6f:53:b2:a4:a2:d5:86:b6:27:29:
da:50:9e:bc:25:41:d7:a2:16:b0:d6:b6:2f:4c:3d:6a:c9:47:
eb:4b:c6:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 14:54:43 2024 by rpki-client on console-ams.rpki-client.org