Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915B978/FC4A2A20E90111E68C2CD311C4F9AE02/2F341A72E93C11EDA61CF335C4F9AE02.roa
File: 2F341A72E93C11EDA61CF335C4F9AE02.roa (raw, json)
Hash identifier: M5RGvAdHd9jNB7xOnNh53+PVgXgdcc+v9pWLo+rFyQY=
Subject key identifier: 95:3F:4F:7A:44:81:BF:E0:A5:EA:A3:C6:62:C9:DE:97:0E:A9:70:D3
Certificate issuer: /CN=A915B978/serialNumber=A83B01C96E794DE8CF8F1C9FA86421296DA871C4
Certificate serial: 1B5E
Authority key identifier: A8:3B:01:C9:6E:79:4D:E8:CF:8F:1C:9F:A8:64:21:29:6D:A8:71:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDsByW55TejPjxyfqGQhKW2occQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915B978/FC4A2A20E90111E68C2CD311C4F9AE02/2F341A72E93C11EDA61CF335C4F9AE02.roa
Signing time: Wed 28 Feb 2024 16:54:07 +0000
ROA not before: Wed 28 Feb 2024 16:54:07 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 38136
IP address blocks: 103.84.216.0/23 maxlen: 24
103.84.218.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 22 Sep 2024 11:26:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7006 (0x1b5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915B978/serialNumber=A83B01C96E794DE8CF8F1C9FA86421296DA871C4
Validity
Not Before: Feb 28 16:54:07 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=65df652f-c522
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9b:11:08:dc:6a:06:3a:87:16:c8:6b:3f:45:
10:ae:6b:26:c0:93:30:d3:c7:aa:67:81:78:29:d8:
c9:3e:b7:a7:0b:ef:4b:95:5f:74:bb:e0:0d:83:ce:
23:3c:98:bf:ed:bb:2b:53:3d:72:5d:f8:74:d5:cb:
84:dd:cd:07:d9:91:bb:78:c1:48:57:f3:d9:27:60:
fe:2f:1e:d7:22:d8:6b:8c:25:86:11:8f:10:ef:42:
e3:e4:93:d9:3e:b9:b3:7a:47:7c:02:91:93:ec:2a:
9e:e8:8d:62:b1:7b:2f:61:07:de:e9:ab:88:52:68:
9e:d5:1a:6c:5d:85:f3:02:52:00:11:cf:97:88:58:
df:fe:51:58:a3:41:c3:77:d1:e3:27:54:25:94:72:
81:3a:72:eb:2f:ff:c7:9b:83:79:01:9b:f3:17:d0:
39:9c:27:a5:ed:ea:9e:75:b9:84:da:fd:bf:22:e8:
5e:2e:9c:7d:bc:7b:d4:98:a4:62:49:31:71:c4:b7:
1b:93:bf:65:d9:a2:c7:02:b0:f8:85:eb:f8:be:09:
de:05:03:2d:7b:c7:a9:10:6b:2b:7d:9a:dc:b3:31:
ed:01:68:e9:73:ef:b1:46:e3:8a:ad:e9:cc:d1:be:
37:5a:88:25:69:66:ec:09:f3:6d:15:53:88:c1:95:
a1:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:3F:4F:7A:44:81:BF:E0:A5:EA:A3:C6:62:C9:DE:97:0E:A9:70:D3
X509v3 Authority Key Identifier:
keyid:A8:3B:01:C9:6E:79:4D:E8:CF:8F:1C:9F:A8:64:21:29:6D:A8:71:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915B978/FC4A2A20E90111E68C2CD311C4F9AE02/qDsByW55TejPjxyfqGQhKW2occQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDsByW55TejPjxyfqGQhKW2occQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B978/FC4A2A20E90111E68C2CD311C4F9AE02/2F341A72E93C11EDA61CF335C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.84.216.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:83:44:c6:c2:32:17:54:70:0d:c8:b1:c6:ed:0e:3b:4f:be:
f6:25:85:6c:43:86:83:f6:1f:41:ae:4d:52:21:a3:dd:b8:da:
db:c8:05:30:3a:d8:e5:b4:b7:fb:ce:11:fe:ae:aa:34:c0:b8:
cd:73:89:22:19:a6:73:c0:28:d3:3f:ca:91:03:2d:c9:23:09:
54:53:e1:20:a3:bf:a3:ff:bb:56:4d:de:ae:a1:42:0b:58:46:
7b:76:47:37:0a:00:eb:ca:f6:65:f1:3f:d6:76:38:f8:19:01:
dc:e7:65:75:dc:d5:6b:0a:a1:99:db:d9:2e:f8:21:7a:a2:27:
2d:26:97:95:89:7e:49:ce:15:f4:fd:dc:37:d8:74:e1:15:e2:
27:18:4d:5b:ba:0d:b6:24:2d:e3:3c:fd:d4:a0:38:4c:c0:b0:
0c:b3:83:e5:0d:e8:35:b3:10:47:6e:9c:f7:58:a9:d2:ab:60:
9b:97:0b:68:3e:10:0e:89:f1:88:61:39:b1:0d:17:e6:27:de:
77:a6:87:27:4c:9f:de:b1:d9:bb:23:a0:2a:87:a3:b3:79:f9:
98:dc:5d:35:dc:72:5b:51:60:0f:65:3f:f0:8f:4f:f4:b7:ed:
29:49:06:76:6a:8a:e5:d9:ff:ff:bd:4d:48:23:fb:43:c0:89:
79:8c:99:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 22 17:54:37 2024 by rpki-client on console-ams.rpki-client.org