Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152D28/AF93D162222611EE89AE7683C4F9AE02/9BAAFD6E331111EE8E064073C4F9AE02.roa
File: 9BAAFD6E331111EE8E064073C4F9AE02.roa (raw, json)
Hash identifier: MlcJ6ej3Umv1x3m1rpX2E7UaMtoYr+hU9Y47QSiVAdU=
Subject key identifier: 05:9B:87:FA:5C:A3:B7:E9:C9:5B:5E:48:A4:F0:50:81:03:BC:80:82
Certificate issuer: /CN=A9152D28/serialNumber=BB57555F82AA20A51C1B48F7B26C3567F5A1E7BB
Certificate serial: 10
Authority key identifier: BB:57:55:5F:82:AA:20:A5:1C:1B:48:F7:B2:6C:35:67:F5:A1:E7:BB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1dVX4KqIKUcG0j3smw1Z_Wh57s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9152D28/AF93D162222611EE89AE7683C4F9AE02/9BAAFD6E331111EE8E064073C4F9AE02.roa
Signing time: Fri 04 Aug 2023 21:55:21 +0000
ROA not before: Fri 04 Aug 2023 21:55:21 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 151612
IP address blocks: 103.243.170.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 04 Aug 2023 22:13:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16 (0x10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9152D28/serialNumber=BB57555F82AA20A51C1B48F7B26C3567F5A1E7BB
Validity
Not Before: Aug 4 21:55:21 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=64cd73c9-1311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:5b:fb:71:d5:88:a8:4d:3b:b2:e3:06:39:40:
ee:d6:c3:25:82:3f:31:58:78:c8:0f:d1:2a:24:aa:
1b:6c:d4:f8:1c:f1:69:69:8a:3e:58:89:54:0f:1a:
f3:0a:10:32:d3:52:99:a1:42:d3:a4:15:ad:82:0d:
55:4a:a2:17:13:d5:5d:64:98:b9:10:5d:ec:5f:96:
1e:e1:6f:f0:e1:b5:c5:f2:93:18:7b:59:29:0e:72:
b3:e4:7c:a2:da:9a:fd:b1:56:fc:a5:d1:a0:b1:b6:
63:d8:95:df:84:62:f1:fa:3e:b8:cf:cf:7a:dd:7b:
dd:1d:56:e5:6a:29:48:1d:cb:0f:79:b6:8f:24:7d:
f1:9a:40:fe:f5:3a:cf:8f:73:78:ba:7c:11:11:db:
a5:e3:5c:67:c6:7c:f0:f4:c5:94:48:d1:1e:af:e1:
22:1f:0b:d8:7a:b3:6a:e4:41:4e:50:20:19:48:06:
c2:8a:ac:55:19:41:a8:2c:bb:5a:b9:80:bb:1f:3f:
c9:7f:2b:c1:58:af:14:2d:b8:c2:f3:e5:b1:e5:65:
a5:f5:91:19:9a:63:d5:e8:cd:a9:33:a4:86:63:54:
07:c2:f6:f7:3f:73:cb:dd:56:eb:9a:20:4a:7d:45:
02:b0:15:2a:ae:d3:80:bb:4a:6a:95:f8:ed:b0:2f:
1f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:9B:87:FA:5C:A3:B7:E9:C9:5B:5E:48:A4:F0:50:81:03:BC:80:82
X509v3 Authority Key Identifier:
keyid:BB:57:55:5F:82:AA:20:A5:1C:1B:48:F7:B2:6C:35:67:F5:A1:E7:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9152D28/AF93D162222611EE89AE7683C4F9AE02/u1dVX4KqIKUcG0j3smw1Z_Wh57s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1dVX4KqIKUcG0j3smw1Z_Wh57s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152D28/AF93D162222611EE89AE7683C4F9AE02/9BAAFD6E331111EE8E064073C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.243.170.0/23
Signature Algorithm: sha256WithRSAEncryption
94:32:5c:73:da:ec:63:89:00:f9:37:39:d9:90:67:7f:5d:6f:
9c:30:30:99:42:6a:58:05:ce:f8:42:85:bb:90:2e:5f:68:58:
72:ab:28:b2:a4:bc:98:71:a3:06:f2:d5:fe:f2:6f:d7:7e:c5:
73:3a:59:68:63:17:0b:49:05:f6:d5:6c:e2:7b:de:ae:cf:01:
1c:5c:1a:f3:9f:17:4a:68:4e:f8:35:f4:59:84:3d:bc:44:c5:
09:e5:64:e5:77:40:9e:0d:4f:06:c5:f4:be:bc:56:46:e6:4e:
c4:90:7f:9c:9a:0e:5b:4d:2e:5a:c7:bd:41:f1:81:af:b6:ce:
7a:91:f5:44:a9:40:ec:f6:6c:64:15:d1:03:5b:de:49:a2:01:
8d:f5:31:8e:5a:8c:c5:7c:b3:bc:45:1a:b6:a8:98:c9:36:c7:
aa:46:bb:5b:79:86:b5:53:70:81:85:b4:04:e3:fc:c0:98:f7:
76:d8:90:12:f1:d4:27:59:cd:7c:4b:cb:a1:57:e1:e3:3f:db:
29:8b:cb:95:3c:72:3d:cb:1f:a4:58:c5:eb:c9:42:7b:c9:78:
fd:6c:d5:9b:fd:73:82:d9:b8:16:1b:e5:e4:64:ed:db:c3:54:
c4:19:61:14:65:5f:02:8e:f0:af:f6:5a:73:d7:6b:12:e7:68:
ce:e5:d2:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-ams.rpki-client.org