Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/6A46D12CA7AF11EEB2CF3D53C4F9AE02.roa
File: 6A46D12CA7AF11EEB2CF3D53C4F9AE02.roa (raw, json)
Hash identifier: SihRKad9wgQmQK1TMejbETJNXlfuhKldpk5wYVJtc8Y=
Subject key identifier: D8:FD:58:70:E6:8D:1C:05:09:40:A8:65:54:66:7D:12:F6:24:63:F6
Certificate issuer: /CN=A91583E4/serialNumber=8A74EF40E65A127C0E666B14A6C6574A536F3673
Certificate serial: B5
Authority key identifier: 8A:74:EF:40:E6:5A:12:7C:0E:66:6B:14:A6:C6:57:4A:53:6F:36:73
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/inTvQOZaEnwOZmsUpsZXSlNvNnM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/6A46D12CA7AF11EEB2CF3D53C4F9AE02.roa
Signing time: Wed 03 Jan 2024 05:26:20 +0000
ROA not before: Wed 03 Jan 2024 05:26:20 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 137964
IP address blocks: 103.76.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Sep 2024 16:08:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181 (0xb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91583E4/serialNumber=8A74EF40E65A127C0E666B14A6C6574A536F3673
Validity
Not Before: Jan 3 05:26:20 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=6594effc-3c38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5c:d4:7c:07:b5:f6:04:ba:7f:84:08:72:c3:
e6:32:69:6b:76:ff:9a:38:cf:61:ed:f7:03:3c:59:
f7:64:9e:1a:33:e1:d8:5d:b3:da:59:b5:f6:78:bb:
62:f1:79:38:31:29:a2:a4:14:de:f2:15:3e:59:9e:
0d:da:88:a9:ce:f5:4f:aa:89:e6:10:71:0b:f5:7b:
1d:57:79:7e:98:f4:ef:5f:43:a5:a6:a7:ca:4c:f2:
36:9d:b0:7b:79:27:af:c9:49:f1:30:a4:09:aa:0d:
2e:2e:68:6e:55:6d:2c:4d:62:73:51:5e:c9:b4:5c:
3b:e2:6a:d0:b6:ed:74:94:a9:ee:49:87:83:12:13:
68:69:98:0d:7b:94:b3:33:59:f8:e8:16:f5:0c:aa:
db:da:52:4d:f6:9a:cb:49:90:6c:9e:3a:d2:55:93:
cb:4d:ac:1d:02:15:66:c2:53:6f:42:c6:f2:50:c6:
ad:3c:93:9a:5d:41:d8:bf:88:5e:ed:f4:66:b8:e7:
88:35:66:8b:3d:e4:24:b1:de:ab:62:3f:60:c8:87:
49:2d:da:94:c3:f2:13:fd:3b:08:58:de:00:a4:f2:
03:b2:2d:78:8f:4e:4e:de:3c:5c:56:5a:f3:b9:37:
55:2b:26:84:bc:45:dc:3d:89:23:80:b7:af:20:51:
c3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:FD:58:70:E6:8D:1C:05:09:40:A8:65:54:66:7D:12:F6:24:63:F6
X509v3 Authority Key Identifier:
keyid:8A:74:EF:40:E6:5A:12:7C:0E:66:6B:14:A6:C6:57:4A:53:6F:36:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/inTvQOZaEnwOZmsUpsZXSlNvNnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/inTvQOZaEnwOZmsUpsZXSlNvNnM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/6A46D12CA7AF11EEB2CF3D53C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.76.194.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:c5:7a:b8:fc:fd:d7:8c:8f:bc:92:b9:9e:0b:58:66:7c:1b:
d0:65:f6:0a:1e:4e:e4:76:9e:d2:ff:5c:88:f5:71:3e:1d:83:
c8:7e:44:f9:96:31:a6:56:4d:94:f0:d3:5d:29:19:d7:23:4f:
72:18:29:0c:f6:e7:a8:0a:06:79:4b:5e:88:0e:70:8b:ab:6c:
d7:2c:7f:f7:49:77:f9:83:8e:62:9c:8b:26:6b:30:f4:77:ee:
95:6f:3e:f5:d1:d5:b1:30:15:2d:a9:29:f1:ed:ca:86:32:f2:
6d:63:ee:6a:ee:30:cf:7f:96:1d:18:52:c0:79:33:c1:80:93:
42:59:99:e6:4d:c0:6d:76:9a:f3:30:a5:5e:fd:59:38:e6:e8:
fc:40:e6:ed:74:68:93:90:b6:9f:fe:16:33:6d:4c:2c:f9:33:
ff:73:2e:17:a8:e2:a9:1e:f8:c0:ff:92:6a:96:7a:c0:ea:93:
63:f0:f4:49:51:3e:2a:64:c6:4b:11:c4:ff:b0:22:95:3d:bc:
43:24:4b:7d:0a:5b:be:ab:3c:c5:b7:8d:e2:1e:56:1d:85:88:
9c:f0:f9:9e:52:4c:2d:88:2d:32:50:13:8e:94:9b:27:b4:48:
54:2a:a7:73:1c:15:5a:c7:30:ec:15:f0:1e:79:7a:e3:b7:26:
34:2a:a8:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 1 18:04:15 2024 by rpki-client on console-fra.rpki-client.org