Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/1ED18488A91511ED9E2AC948C4F9AE02.roa
File: 1ED18488A91511ED9E2AC948C4F9AE02.roa (raw, json)
Hash identifier: e1klgolsSajatFbf1LJ30moBI1ympGhIPAvqXY1BcVg=
Subject key identifier: 2B:B2:9D:2F:D6:15:76:75:E1:31:43:69:DA:60:E1:E1:2F:25:5E:4A
Certificate issuer: /CN=A91476F2/serialNumber=64B686B05DCBE8BEA92807532DE29A77905156F5
Certificate serial: 0466
Authority key identifier: 64:B6:86:B0:5D:CB:E8:BE:A9:28:07:53:2D:E2:9A:77:90:51:56:F5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLaGsF3L6L6pKAdTLeKad5BRVvU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/1ED18488A91511ED9E2AC948C4F9AE02.roa
Signing time: Tue 01 Aug 2023 01:01:56 +0000
ROA not before: Tue 01 Aug 2023 01:01:56 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 55020
IP address blocks: 103.66.56.0/22 maxlen: 24
103.228.168.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 25 May 2024 13:08:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1126 (0x466)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91476F2/serialNumber=64B686B05DCBE8BEA92807532DE29A77905156F5
Validity
Not Before: Aug 1 01:01:56 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=64c85984-e819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e3:89:00:9b:1c:d5:e9:f2:48:86:d6:95:dc:
aa:35:7d:1f:67:24:55:d3:35:9d:1a:47:a6:41:c4:
71:ea:7b:e5:6d:04:05:17:43:7e:e9:3c:5c:8a:1d:
a7:20:ef:0f:68:07:4b:7a:22:0f:c4:86:9a:4f:e9:
ae:31:63:ba:e9:cd:3b:4a:d4:f2:36:9b:12:4e:42:
b6:e7:b0:ee:f9:f5:29:88:ea:c0:07:d9:67:88:c4:
8b:6e:95:37:76:71:3e:a4:71:ba:a3:be:55:f6:98:
bc:f4:66:7a:03:02:f3:0c:b9:50:32:39:ac:67:ea:
e4:be:f3:d3:41:35:41:73:c5:c0:3b:87:96:13:7b:
69:49:82:ee:93:9e:83:96:9d:bd:db:1d:d7:49:52:
af:44:00:48:0a:2f:4b:f5:e9:73:68:70:39:eb:55:
13:11:2d:00:bd:ac:81:c9:ea:14:2b:0b:c4:ef:cc:
a2:67:f3:a1:08:f5:40:77:b5:7c:0a:49:e1:7b:af:
7a:4f:2d:2b:1e:2f:1a:4e:66:45:55:a5:bc:72:f7:
4e:c8:3b:0f:51:c7:7b:81:43:5f:d0:13:1d:15:c8:
54:f6:97:17:81:90:57:c5:10:70:1c:c1:e9:9c:dc:
aa:91:f5:72:d9:cd:06:c9:2c:d7:96:7f:84:fa:3f:
92:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:B2:9D:2F:D6:15:76:75:E1:31:43:69:DA:60:E1:E1:2F:25:5E:4A
X509v3 Authority Key Identifier:
keyid:64:B6:86:B0:5D:CB:E8:BE:A9:28:07:53:2D:E2:9A:77:90:51:56:F5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLaGsF3L6L6pKAdTLeKad5BRVvU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/1ED18488A91511ED9E2AC948C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.66.56.0/22
103.228.168.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:d2:e4:24:33:09:50:8c:63:44:81:7a:1b:f0:5f:4b:1f:06:
96:b9:f0:ba:14:37:08:c2:2a:e1:64:fe:99:6d:03:01:c3:7f:
1a:c7:00:a0:bb:49:78:95:1a:e4:f3:0b:e0:63:cf:fd:b3:2d:
dc:0a:56:ac:c9:8a:ce:2f:8a:79:82:d6:ae:8b:57:4e:e7:38:
66:c4:c8:50:6d:89:af:be:24:0c:d8:93:e6:ed:59:aa:42:87:
67:bf:d9:62:df:ad:27:68:5f:0e:41:3e:26:51:d0:24:b4:b7:
c2:ed:a4:ca:ca:71:7c:d4:5c:17:33:a5:a9:9d:6d:87:d6:ce:
48:64:4a:c1:62:8f:27:bc:3f:ea:c7:27:83:be:98:a3:79:00:
23:51:17:c0:3e:21:44:59:ff:49:f4:d0:27:8d:c8:dc:45:23:
4e:6d:46:2d:ee:cf:5f:cc:c1:43:dc:3c:45:db:c7:d3:60:c6:
d9:a8:78:82:51:98:0d:c2:0b:3b:85:e6:0b:9f:9e:c1:9e:ed:
94:f1:5d:ca:1c:a1:30:bc:42:07:13:15:4f:5c:dc:5f:3e:b3:
f9:d3:f9:2a:d4:c9:dc:97:cc:9d:04:71:a0:fd:9a:05:45:87:
de:bf:be:12:c0:f8:77:73:38:8f:5a:27:55:9a:1a:6e:d8:8e:
32:16:3f:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:04 2024 by rpki-client on console-fra.rpki-client.org