Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/6D59098A02A511ED8277D41AC4F9AE02.roa
File: 6D59098A02A511ED8277D41AC4F9AE02.roa (raw, json)
Hash identifier: QNp91J6+xAjAe0lcaPY7DtuwT75Myzepm9qOO244Ugc=
Subject key identifier: 53:12:0B:E3:AD:88:15:61:01:08:7E:C9:C8:AB:4E:20:7A:9F:0E:F1
Certificate issuer: /CN=A9148E62/serialNumber=C63056041C0F90B92B2B87DBFFA97E3E9DA028D4
Certificate serial: 0203
Authority key identifier: C6:30:56:04:1C:0F:90:B9:2B:2B:87:DB:FF:A9:7E:3E:9D:A0:28:D4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xjBWBBwPkLkrK4fb_6l-Pp2gKNQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/6D59098A02A511ED8277D41AC4F9AE02.roa
Signing time: Sat 27 Jul 2024 03:26:52 +0000
ROA not before: Sat 27 Jul 2024 03:26:52 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 17483
IP address blocks: 103.234.236.0/24 maxlen: 24
103.234.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Sep 2024 05:56:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 515 (0x203)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9148E62/serialNumber=C63056041C0F90B92B2B87DBFFA97E3E9DA028D4
Validity
Not Before: Jul 27 03:26:52 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66a468fc-1952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4d:6b:0a:dc:f8:80:8c:19:10:e4:75:78:57:
a1:1c:e8:2e:51:5c:bb:de:43:86:66:96:5d:54:b5:
11:b9:27:99:c7:2c:0b:1d:c1:b5:b4:10:ca:46:34:
d5:71:61:c8:37:4f:2b:92:6b:b0:f9:27:fc:68:8f:
93:3f:fc:cb:39:ae:c7:47:0c:ee:fd:00:3f:a0:d3:
c1:9c:82:93:5e:10:2d:df:2a:cb:f4:f0:46:f0:7a:
1e:7e:c9:e1:d6:2d:7e:fa:50:71:42:1a:6b:c3:8b:
1b:9f:9a:93:ac:b5:ca:6a:30:20:d2:47:89:9b:d9:
d9:97:bd:4d:0a:3b:3e:9d:d0:1c:9b:db:71:8d:f6:
e1:a3:e5:7a:79:38:77:07:fe:0e:7e:27:fb:b2:1d:
15:37:d0:47:ff:53:37:56:5d:0e:39:0d:a3:62:7b:
b6:cd:81:65:e0:88:ed:86:f5:1a:63:06:64:be:21:
f5:71:d2:06:9e:50:d9:29:4e:a3:b2:9b:27:58:99:
67:e1:31:70:24:8f:47:b3:2e:91:78:ff:cc:0a:f1:
42:eb:cb:d7:23:05:ae:70:9f:f0:65:98:5a:1a:5a:
c1:53:6d:7a:1e:64:3c:12:b2:84:cc:74:87:2a:02:
23:e6:3c:d3:56:5e:79:c5:6e:8d:26:ea:e0:b3:96:
a1:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:12:0B:E3:AD:88:15:61:01:08:7E:C9:C8:AB:4E:20:7A:9F:0E:F1
X509v3 Authority Key Identifier:
keyid:C6:30:56:04:1C:0F:90:B9:2B:2B:87:DB:FF:A9:7E:3E:9D:A0:28:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/xjBWBBwPkLkrK4fb_6l-Pp2gKNQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xjBWBBwPkLkrK4fb_6l-Pp2gKNQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148E62/D6B9796202A211ED91216E19C4F9AE02/6D59098A02A511ED8277D41AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.234.236.0/23
Signature Algorithm: sha256WithRSAEncryption
21:2a:00:26:c4:c4:75:f0:5a:51:e2:a6:ed:65:e7:1b:83:67:
03:32:30:1a:d4:c1:5b:eb:c3:11:79:e1:61:55:08:d1:ee:28:
f4:89:0e:de:69:86:56:7f:0f:d2:06:a0:1a:09:f0:84:82:95:
bf:1f:b5:a8:e6:80:3e:a2:f0:4b:01:f6:8f:4c:17:e4:da:fc:
c5:c2:d0:d8:63:7c:fa:ac:9f:bd:f4:3a:49:fb:24:3f:77:17:
2b:aa:22:49:97:7f:99:4d:3f:1b:82:48:2d:55:15:5d:01:fc:
69:fe:41:47:96:c7:12:a4:0f:89:3c:6f:5c:d1:2b:1d:e2:ee:
69:27:61:59:83:ec:88:8e:a3:2b:d8:a9:34:3c:b7:d5:e2:24:
d0:1b:4c:d8:88:69:fc:95:57:09:1b:c9:3d:0a:37:2d:bc:f4:
17:b9:ac:53:d9:ca:a5:f0:c6:9d:01:d0:6e:64:eb:14:c3:4e:
b8:ce:be:4d:12:9e:2c:0f:a1:32:2d:a8:28:97:07:2a:63:f2:
f9:20:c4:71:17:00:b9:db:62:ef:0f:5f:db:07:53:00:11:30:
d4:0f:c6:fa:e3:2b:3c:8f:b0:71:c5:31:46:34:48:1b:67:c2:
73:ba:07:c8:72:28:83:2a:42:aa:a7:9d:13:fd:92:a8:a7:ed:
82:c1:e3:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 2 06:59:21 2024 by rpki-client on console-fra.rpki-client.org