Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155098/B2B1A2B8FC7111EEBDCC4B53C4F9AE02/B6DDCF08FC7411EE841CC07AC4F9AE02.roa
File: B6DDCF08FC7411EE841CC07AC4F9AE02.roa (raw, json)
Hash identifier: Nx6TDyf0C/n1qsXR82RVhjGrRcFrOOMYivUgmbUGRYk=
Subject key identifier: 71:20:CB:F6:89:24:7A:2B:85:A0:50:43:39:50:57:5F:2F:FA:50:4E
Certificate issuer: /CN=A9155098/serialNumber=6032F63FD261681A40F730B9787251E63328CD6E
Certificate serial: 03
Authority key identifier: 60:32:F6:3F:D2:61:68:1A:40:F7:30:B9:78:72:51:E6:33:28:CD:6E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDL2P9JhaBpA9zC5eHJR5jMozW4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9155098/B2B1A2B8FC7111EEBDCC4B53C4F9AE02/B6DDCF08FC7411EE841CC07AC4F9AE02.roa
Signing time: Wed 17 Apr 2024 04:41:11 +0000
ROA not before: Wed 17 Apr 2024 04:41:11 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 38136
IP address blocks: 103.14.92.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Apr 2024 18:47:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9155098/serialNumber=6032F63FD261681A40F730B9787251E63328CD6E
Validity
Not Before: Apr 17 04:41:11 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=661f52e7-933e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:94:55:0e:00:5c:1a:b8:9e:3a:d3:22:0a:40:
f1:e7:0a:cd:d0:1e:b0:18:d6:5f:c1:d2:85:45:96:
f8:14:e9:75:4e:14:5e:ea:98:dd:13:17:85:e2:de:
dd:32:c1:41:4f:b6:81:16:7f:61:2e:92:b1:09:36:
39:65:c0:03:eb:75:f1:d9:6a:b8:fa:d1:27:82:e9:
10:c1:b8:4c:79:70:b6:c2:79:80:78:e8:c9:fe:31:
d9:2d:a4:6a:00:a6:8c:3b:a1:7c:f2:06:14:7f:a3:
37:7a:0e:ec:6f:13:a0:b5:d7:89:5d:31:22:7d:38:
2e:8d:ee:78:1b:2f:01:1c:e2:c8:95:df:97:8a:d2:
e8:7b:43:30:6f:b4:c6:2f:74:d6:57:a3:3f:cc:6f:
83:a6:b9:1a:fe:3c:42:9d:5a:c0:8f:c9:24:4f:b9:
94:bc:04:0a:a7:78:ae:ea:4f:13:e1:96:38:fb:2a:
3d:22:94:2a:e7:53:28:c3:37:52:50:45:dc:62:5d:
ec:e4:6c:f4:99:66:a0:f4:24:e4:5f:3e:92:45:d1:
c4:29:f8:b6:8e:9c:5a:01:14:82:8d:51:ea:3e:3c:
11:dd:1d:68:1c:70:00:aa:62:d7:2f:6b:72:3f:5e:
d2:d0:cc:a7:42:62:95:52:40:1c:2a:7d:7b:08:5f:
0b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:20:CB:F6:89:24:7A:2B:85:A0:50:43:39:50:57:5F:2F:FA:50:4E
X509v3 Authority Key Identifier:
keyid:60:32:F6:3F:D2:61:68:1A:40:F7:30:B9:78:72:51:E6:33:28:CD:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9155098/B2B1A2B8FC7111EEBDCC4B53C4F9AE02/YDL2P9JhaBpA9zC5eHJR5jMozW4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDL2P9JhaBpA9zC5eHJR5jMozW4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155098/B2B1A2B8FC7111EEBDCC4B53C4F9AE02/B6DDCF08FC7411EE841CC07AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.14.92.0/23
Signature Algorithm: sha256WithRSAEncryption
38:55:b2:92:23:04:ca:df:2c:81:7c:09:a8:15:be:84:a4:07:
df:2e:39:b5:cc:55:26:66:be:a0:46:7d:51:1d:81:12:7f:53:
1c:2f:17:c7:40:91:b2:7c:75:e1:37:b7:df:9c:f4:bd:24:b8:
a4:8d:4d:55:7c:20:cb:ae:11:8b:2f:9d:9e:95:0f:ee:8e:fd:
f9:7e:b2:9e:08:71:fe:38:42:5e:e9:a8:94:d5:6d:bc:1a:a4:
ee:a5:81:a5:9a:8d:8a:fd:22:36:af:dc:5b:55:60:f2:9f:c1:
c4:31:77:6a:6d:91:3a:bf:0d:24:46:ad:87:75:88:8b:7d:bb:
3a:21:36:1b:48:7c:65:bf:3a:d8:1c:68:4e:49:3a:d6:ec:24:
cf:42:3f:69:24:72:03:cd:06:39:15:16:d7:ec:b5:07:d4:7e:
bd:82:70:b2:8b:4c:71:79:c9:27:b0:84:fb:fb:b2:63:c6:0f:
10:d7:52:51:61:ec:54:7a:c1:fb:10:cb:0a:3f:a2:23:7a:dc:
5d:cb:0f:a2:09:6e:00:d1:19:83:bc:39:7f:85:36:a4:32:30:
b5:bf:95:7a:07:24:6d:d7:fd:3b:0b:38:96:c7:35:2c:ea:97:
79:c7:74:e2:12:b8:1c:68:61:00:14:07:a4:91:ae:5c:9b:ca:
e4:44:88:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 17 19:40:31 2024 by rpki-client on console-fra.rpki-client.org