Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/6AD482FE35AA11EFB3A04F53C4F9AE02.roa
File: 6AD482FE35AA11EFB3A04F53C4F9AE02.roa (raw, json)
Hash identifier: 0kfmTwuvg53IzOnyF4BGqArvRRPAVsPSumKF0UH97c8=
Subject key identifier: B6:E6:8B:A6:AE:D0:6F:7F:36:74:78:5F:BF:1C:5A:4F:42:27:F6:02
Certificate issuer: /CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E
Certificate serial: 346A
Authority key identifier: 63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/6AD482FE35AA11EFB3A04F53C4F9AE02.roa
Signing time: Thu 14 Nov 2024 15:31:13 +0000
ROA not before: Thu 14 Nov 2024 15:31:13 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 834
IP address blocks: 103.21.137.0/24 maxlen: 24
103.21.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 16 Nov 2024 23:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13418 (0x346a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E
Validity
Not Before: Nov 14 15:31:13 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=673617c1-8b29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:03:e5:5f:33:7e:3a:e1:ef:4b:b5:33:09:6f:
26:1e:81:8b:3d:e2:38:26:10:c8:13:29:59:d9:12:
d8:41:17:68:9b:c6:a5:3e:9c:85:d8:ee:10:cb:1c:
9a:e1:80:a1:e0:be:dd:ff:b6:68:f3:fc:55:90:22:
57:29:65:c7:89:90:3b:cb:97:1c:10:f7:a9:47:ad:
2f:53:4a:e7:8b:26:ba:88:2d:35:c9:aa:c9:70:7b:
42:e7:64:23:74:60:15:d7:8d:13:89:a4:c7:08:1e:
a4:52:20:76:4d:0e:b5:f4:f6:f7:93:39:cd:3a:26:
6e:2f:81:6e:75:a9:0a:65:2b:4d:f9:15:0f:61:a4:
80:37:f0:e8:6d:28:39:ec:45:b0:e4:40:f9:f8:57:
77:0e:be:b8:4c:7e:15:81:af:47:e2:6f:75:c0:43:
9f:56:8c:dd:6f:2a:b8:8c:ef:50:29:fa:7e:74:40:
9e:b7:4e:d2:a0:9d:c8:08:a0:f3:54:75:97:22:a7:
04:9b:df:d9:e6:96:69:f4:aa:c1:55:f3:dd:ad:41:
9c:e2:d7:20:1e:51:a2:01:09:b3:ef:d1:3b:ca:19:
a0:19:f9:7d:68:43:a0:fa:f0:d6:25:96:14:35:61:
47:71:c8:c2:b5:ca:0f:98:50:80:d2:47:3b:38:5b:
4c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:E6:8B:A6:AE:D0:6F:7F:36:74:78:5F:BF:1C:5A:4F:42:27:F6:02
X509v3 Authority Key Identifier:
keyid:63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/6AD482FE35AA11EFB3A04F53C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.21.137.0/24
103.21.139.0/24
Signature Algorithm: sha256WithRSAEncryption
32:45:1e:cc:71:27:52:b8:ca:90:4e:26:89:bd:c7:49:d0:b2:
98:e5:23:c5:ec:60:13:83:3c:bf:9a:eb:fe:54:b9:6e:63:86:
94:54:b2:53:97:89:83:6f:eb:a8:90:de:b2:37:f5:a0:36:97:
e5:51:f5:52:07:40:00:07:d5:58:a8:e4:fc:4c:77:7f:31:5d:
9c:ce:a1:fb:82:91:c6:9a:59:b3:86:70:94:90:d7:7d:f7:94:
a0:45:2f:51:b1:a9:f7:66:25:12:97:2f:f3:87:bd:0d:6a:44:
ca:7a:a9:3e:12:f6:44:e9:2e:c0:95:ac:79:9c:56:f2:1f:f9:
ce:5d:f5:ab:29:5a:e8:43:0c:4c:6a:6c:c5:74:c6:2d:3d:d8:
8f:4a:e6:5b:ef:9a:e4:63:ea:4b:4f:73:71:4b:8b:b4:1e:5f:
6d:9b:5b:9e:40:fd:cb:d2:a3:fe:24:a5:5d:a3:ce:a5:17:65:
7c:8e:16:de:b4:7f:bd:6d:e3:36:53:3f:47:b8:d6:84:19:4d:
3e:03:2c:70:07:8c:14:79:00:ad:fa:a4:c3:e6:a0:27:ce:bb:
0d:95:93:1d:1d:d8:1b:69:03:81:66:2a:71:db:ff:1b:d2:ce:
03:0f:51:cf:1a:2f:54:85:d6:4e:c5:c1:e8:2a:2f:dd:de:fa:
03:9c:36:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 17 00:34:45 2024 by rpki-client on console-fra.rpki-client.org