Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/4A5A3E884EBF11E9983D9636C4F9AE02.roa
File: 4A5A3E884EBF11E9983D9636C4F9AE02.roa (raw, json)
Hash identifier: 4DBKyquK5vxglME4R58OhFnpO8eu/muV5QbG5DMNHHE=
Subject key identifier: F5:77:3F:FD:93:E3:BB:5A:2D:AB:5E:FE:D3:E2:4B:2D:D9:F2:BD:78
Certificate issuer: /CN=A914E93F/serialNumber=B2F8AB00D57464DD5D05A45A47C420F5F896B8FC
Certificate serial: 1232
Authority key identifier: B2:F8:AB:00:D5:74:64:DD:5D:05:A4:5A:47:C4:20:F5:F8:96:B8:FC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/4A5A3E884EBF11E9983D9636C4F9AE02.roa
Signing time: Fri 02 Jun 2023 18:18:35 +0000
ROA not before: Fri 02 Jun 2023 18:18:35 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 137877
IP address blocks: 103.64.12.0/24 maxlen: 24
103.78.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 10:27:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4658 (0x1232)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914E93F/serialNumber=B2F8AB00D57464DD5D05A45A47C420F5F896B8FC
Validity
Not Before: Jun 2 18:18:35 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=647a327b-30c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:9c:10:4f:9f:19:2e:99:03:5b:cc:ef:7a:31:
80:d9:2d:37:23:0b:50:21:cd:df:d1:5d:72:98:11:
b1:44:47:94:4a:10:f4:ff:d3:f8:24:2c:52:26:16:
f8:22:d2:d6:9d:d9:1f:bb:40:e4:d7:bb:a4:5b:37:
b6:70:7c:de:82:43:19:06:62:2c:ba:08:dd:09:53:
dc:45:59:22:27:a3:de:6a:f4:5d:6d:c1:46:32:b4:
55:a1:28:57:cb:d5:70:60:35:d9:ef:ff:ed:15:32:
15:98:36:39:0a:d8:6f:d6:81:fe:b8:7a:fc:bb:ce:
e7:ce:57:d3:bb:dc:68:c0:61:d0:53:c3:25:92:6e:
d8:be:03:54:c4:a2:b8:51:29:24:12:a6:68:cd:c0:
77:0a:a6:d0:a5:8a:52:5b:96:d9:29:c5:33:a1:80:
bc:fd:52:60:51:62:ab:da:12:5b:9b:40:ce:18:08:
27:44:89:30:9e:b1:ce:71:a6:64:6e:ed:1e:01:fa:
7d:d6:41:10:27:7d:67:20:54:d1:88:ac:90:26:94:
cb:df:34:ca:ab:2c:e3:df:07:a0:90:13:50:b6:af:
bc:66:dc:fa:9f:4c:5f:0a:4e:9c:5e:15:82:c0:21:
4c:5b:31:5c:75:ea:01:00:9c:f1:95:3a:ff:e2:88:
9f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:77:3F:FD:93:E3:BB:5A:2D:AB:5E:FE:D3:E2:4B:2D:D9:F2:BD:78
X509v3 Authority Key Identifier:
keyid:B2:F8:AB:00:D5:74:64:DD:5D:05:A4:5A:47:C4:20:F5:F8:96:B8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/svirANV0ZN1dBaRaR8Qg9fiWuPw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/4A5A3E884EBF11E9983D9636C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.64.12.0/24
103.78.243.0/24
Signature Algorithm: sha256WithRSAEncryption
14:54:39:32:cd:b1:f9:ed:c0:d9:ff:54:26:97:d7:a7:84:a2:
79:36:c1:d3:e0:97:32:9e:b7:18:2b:fe:54:73:26:2e:3e:7c:
82:50:61:42:07:3e:09:38:ea:7e:f9:24:a9:18:14:50:2a:48:
7f:55:61:c4:40:03:b3:e2:ae:a2:a6:67:c4:49:78:a0:8e:8a:
4c:98:da:d8:52:63:75:07:ec:ce:b9:40:56:de:59:16:8f:c0:
e7:fc:1f:97:86:02:f8:29:d6:20:1a:10:3e:50:28:e0:44:66:
4a:81:47:8e:61:55:56:70:b5:75:78:1c:1a:35:a7:10:c9:95:
df:0e:ac:f2:4a:03:c6:ac:f3:a2:89:66:48:b9:db:92:1f:85:
32:80:39:3e:9f:82:f1:34:2b:7f:a3:2e:c3:d1:3a:73:00:c2:
ce:81:88:44:8b:22:db:f2:b2:1e:de:75:25:45:3c:4d:31:4e:
6d:3f:d1:78:a4:be:3b:c6:cb:36:a8:a1:1e:e1:cf:7c:e9:90:
18:53:05:5e:9c:aa:f3:58:73:df:42:d4:96:4d:ba:3a:3c:4e:
7d:da:af:75:1a:39:94:da:1f:09:ec:50:d3:f0:97:72:73:64:
03:32:bf:ee:c3:f5:6f:a6:e1:4c:20:05:cb:7a:6f:c2:2c:a7:
8a:1c:28:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:05 2024 by rpki-client on console-fra.rpki-client.org