Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/58A0C398AE1B11EE9493B36BC4F9AE02.roa
File: 58A0C398AE1B11EE9493B36BC4F9AE02.roa (raw, json)
Hash identifier: y+RrYKjI1pqBv6EmgZ774ilem8bsRPsFA0zfpKHzCWM=
Subject key identifier: 8C:E8:A6:F0:2A:A0:27:65:B8:E4:40:54:B6:31:09:58:BE:C6:BE:78
Certificate issuer: /CN=A91580D2/serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4
Certificate serial: 0183
Authority key identifier: CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/58A0C398AE1B11EE9493B36BC4F9AE02.roa
Signing time: Mon 08 Jan 2024 11:44:57 +0000
ROA not before: Mon 08 Jan 2024 11:44:57 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 210107
IP address blocks: 103.102.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 11:27:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 387 (0x183)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91580D2/serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4
Validity
Not Before: Jan 8 11:44:57 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=659be039-08d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a2:7a:89:7c:88:a5:3b:1f:d9:03:17:ad:f0:
d6:ad:40:f3:a1:bc:b2:a4:04:a8:98:e5:cb:c4:9e:
1c:28:e5:2e:80:f7:90:e8:96:ac:72:06:fb:8d:f5:
39:90:ae:bf:6b:13:c8:e4:8c:0c:44:b4:7e:42:8b:
d4:2b:13:f4:f2:93:b3:0d:f9:e2:83:8c:08:6e:b5:
4e:3a:36:bb:e3:27:12:d3:df:8b:0f:41:14:fd:1f:
41:f3:e7:2c:aa:fe:4a:db:5f:c6:2c:5a:c5:37:d7:
95:a7:87:fb:e4:d4:58:92:d4:63:27:41:b9:16:9b:
ed:e8:e6:a6:ca:c4:00:cf:f8:74:9d:c7:af:1c:0f:
83:b0:13:24:92:24:7f:f6:a6:a3:8d:05:9e:89:c4:
39:f9:9c:e5:a9:57:00:01:e0:97:54:a4:f4:9b:74:
f5:87:74:18:23:10:f9:9a:f4:91:ce:01:be:46:45:
b1:91:dc:d4:2b:e6:91:14:0f:80:2a:94:ff:95:16:
12:42:c7:88:41:d7:51:d4:01:14:1e:1f:65:d3:02:
56:7c:3b:5d:6a:d7:47:c3:2d:19:94:ca:a5:e8:8e:
5e:e0:7a:ae:7d:2c:d2:05:de:fd:c4:f4:7e:d6:a3:
bb:7a:0f:be:4f:d8:f0:69:d8:0c:5a:11:ef:ef:a7:
78:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:E8:A6:F0:2A:A0:27:65:B8:E4:40:54:B6:31:09:58:BE:C6:BE:78
X509v3 Authority Key Identifier:
keyid:CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/58A0C398AE1B11EE9493B36BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.102.126.0/24
Signature Algorithm: sha256WithRSAEncryption
68:7d:b1:02:6d:77:c0:b1:86:f1:43:70:ca:8a:0e:8d:bc:5f:
39:7a:fc:59:a7:73:06:ad:70:a4:fc:9c:e4:1d:69:58:8a:cd:
44:65:a5:fe:fd:12:e0:ee:bf:3d:3e:d4:ab:62:f1:23:36:b7:
c6:23:5b:68:71:1d:11:9c:1d:e4:1a:7a:7f:45:35:bb:96:46:
a3:aa:77:c5:05:a0:5c:85:09:cd:99:c6:70:ee:9e:ad:25:7f:
f7:4e:97:3a:ea:e6:22:fc:73:4d:bd:fb:3f:76:87:f4:cc:cb:
09:8f:2e:0c:33:0b:f3:3c:7b:b5:9b:74:dc:5c:05:6a:e7:a5:
9a:00:16:c0:a4:23:b5:62:13:8c:72:a5:e6:0e:5c:e1:46:f9:
3f:f2:eb:ac:64:a3:33:06:ca:ae:e4:c4:77:8e:84:6c:be:bc:
38:e2:93:fa:60:30:c9:b6:9c:5d:74:d8:31:b5:29:90:97:39:
ab:42:a0:8e:6d:45:cb:a7:b6:51:16:db:13:fa:e2:3a:97:ff:
b3:ee:fd:76:cd:6b:79:ab:12:a3:13:47:33:37:64:e0:aa:a4:
05:17:a7:4c:b5:49:ef:26:6a:e5:9d:47:cb:8a:69:4c:ed:be:
0c:25:ec:7f:ff:f8:e4:f4:ca:a1:4f:23:bf:31:3d:bc:4b:d6:
fb:cd:cd:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 16:08:30 2024 by rpki-client on console-ams.rpki-client.org