Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CEA/75B59FA49CC311EDBE6D1F70C4F9AE02/D920BF0E9CC511ED9AA6B670C4F9AE02.roa
File: D920BF0E9CC511ED9AA6B670C4F9AE02.roa (raw, json)
Hash identifier: uLN/3urdS3BV8NWeabLX5XVxp5Uckku0LKd/6oZI4a4=
Subject key identifier: 41:69:C5:C7:DE:AA:B3:26:5C:2A:A1:CE:F0:3C:8D:0B:71:EB:77:D9
Certificate issuer: /CN=A9147CEA/serialNumber=4C66A666783681CA16D8EB540982039933E1D653
Certificate serial: 0112
Authority key identifier: 4C:66:A6:66:78:36:81:CA:16:D8:EB:54:09:82:03:99:33:E1:D6:53
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TGamZng2gcoW2OtUCYIDmTPh1lM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9147CEA/75B59FA49CC311EDBE6D1F70C4F9AE02/D920BF0E9CC511ED9AA6B670C4F9AE02.roa
Signing time: Wed 03 Jul 2024 04:47:08 +0000
ROA not before: Wed 03 Jul 2024 04:47:08 +0000
ROA not after: Fri 01 Nov 2024 00:00:00 +0000
asID: 134824
IP address blocks: 103.71.102.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jul 2024 02:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274 (0x112)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9147CEA/serialNumber=4C66A666783681CA16D8EB540982039933E1D653
Validity
Not Before: Jul 3 04:47:08 2024 GMT
Not After : Nov 1 00:00:00 2024 GMT
Subject: CN=6684d7cb-bc1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:94:82:52:52:10:a0:7e:80:66:2b:b2:44:d2:
5a:f8:0e:07:95:71:6a:35:b7:51:e1:f1:95:98:06:
56:9f:cc:87:e7:f1:3d:a8:b8:7a:e0:0c:e2:00:65:
e8:20:4e:3c:65:9a:0d:e2:a1:fa:2b:ff:0e:fd:39:
ef:18:ac:a8:b0:30:ef:c4:b0:74:f7:7a:a3:93:13:
17:91:a1:b8:b4:cc:54:2a:96:5b:b1:c6:45:58:03:
28:79:14:c1:ee:ce:5d:4e:fc:a4:e8:a3:5a:45:c6:
eb:c9:cb:a9:43:d7:22:84:ec:0e:5b:1a:5e:9b:4a:
75:b3:0f:3a:99:80:97:07:18:30:1e:39:64:16:b9:
b6:2e:ea:bc:c2:b4:8f:09:2d:e0:f5:b0:42:7b:fb:
4c:1d:8b:2e:00:dc:f0:71:37:6c:1a:3d:16:c4:e8:
21:94:f9:95:d0:40:de:85:94:1a:d5:e0:3e:18:04:
3e:42:1c:90:6a:a5:c3:37:97:e7:58:15:ae:b5:4e:
e3:f1:6e:4a:9e:af:b7:ba:3a:82:bf:9d:05:d5:23:
07:af:eb:0b:ae:2f:8f:c2:3f:9d:c0:ae:16:71:15:
a7:9c:e6:6e:2a:54:c0:59:bd:1d:d2:0c:c6:bd:c1:
85:fc:63:f8:82:f0:02:0e:eb:e7:85:51:28:04:49:
a1:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:69:C5:C7:DE:AA:B3:26:5C:2A:A1:CE:F0:3C:8D:0B:71:EB:77:D9
X509v3 Authority Key Identifier:
keyid:4C:66:A6:66:78:36:81:CA:16:D8:EB:54:09:82:03:99:33:E1:D6:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9147CEA/75B59FA49CC311EDBE6D1F70C4F9AE02/TGamZng2gcoW2OtUCYIDmTPh1lM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TGamZng2gcoW2OtUCYIDmTPh1lM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CEA/75B59FA49CC311EDBE6D1F70C4F9AE02/D920BF0E9CC511ED9AA6B670C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.71.102.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:a1:84:ee:83:f5:63:76:bf:de:f3:62:32:15:4f:d7:bf:bd:
92:a2:06:c5:85:aa:2c:18:6e:b0:d6:b4:7c:fe:1d:b1:2e:57:
ad:11:f1:24:96:c8:95:2e:5a:59:48:50:1a:91:c4:1a:82:9f:
2c:4f:96:e2:30:6d:16:cc:95:2f:89:5a:c1:e9:19:af:9d:7c:
82:ca:eb:69:ac:e4:3c:49:47:11:36:e9:0e:be:65:68:8a:11:
50:d6:74:b3:8d:c3:ac:53:74:83:96:81:bd:7b:09:08:f9:15:
3c:44:62:53:1a:74:65:7f:04:c5:70:60:3f:87:eb:a3:76:22:
b0:2f:e4:44:ed:e1:1b:74:96:ef:66:3c:95:92:69:f2:26:4e:
a6:70:6f:4b:29:a6:75:7a:27:a4:af:55:a2:16:65:5d:ac:d9:
b9:f0:89:87:30:8a:de:ba:ee:04:3d:a9:a6:63:67:08:9e:d9:
90:34:4c:2b:f2:87:4c:bb:41:41:55:0a:cb:6c:da:99:57:0d:
d5:81:6f:fb:b9:ea:d1:99:f7:64:03:fb:8e:b9:b4:0f:d9:0a:
6c:06:64:85:88:77:01:34:fe:ca:71:fd:c2:1d:1b:54:68:e2:
84:e3:c7:e5:59:8a:a7:5e:9e:dd:6b:b2:22:0f:be:10:43:93:
17:e7:29:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 23 04:36:19 2024 by rpki-client on console-fra.rpki-client.org