Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C032/F00CD4C6011D11ED85B34173C4F9AE02/C57C4D100E9511ED83D4064EC4F9AE02.roa
File: C57C4D100E9511ED83D4064EC4F9AE02.roa (raw, json)
Hash identifier: A5jd64Bl7NYekrssfi4tQMz59VPj2luPgQIcxZiSOVo=
Subject key identifier: 4E:70:0A:75:AD:AA:92:4A:49:E8:23:78:93:E5:AE:28:ED:41:75:B4
Certificate issuer: /CN=A916C032/serialNumber=D75D44682406B0B3E78BC5284A54279B1E3FFF94
Certificate serial: 020F
Authority key identifier: D7:5D:44:68:24:06:B0:B3:E7:8B:C5:28:4A:54:27:9B:1E:3F:FF:94
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/111EaCQGsLPni8UoSlQnmx4__5Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C032/F00CD4C6011D11ED85B34173C4F9AE02/C57C4D100E9511ED83D4064EC4F9AE02.roa
Signing time: Sat 03 Aug 2024 03:34:42 +0000
ROA not before: Sat 03 Aug 2024 03:34:42 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 56290
IP address blocks: 103.5.70.0/24 maxlen: 24
103.247.210.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 06:52:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 527 (0x20f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C032/serialNumber=D75D44682406B0B3E78BC5284A54279B1E3FFF94
Validity
Not Before: Aug 3 03:34:42 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=66ada552-d1ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:28:c5:36:59:78:f9:44:be:2f:51:97:fe:5a:
06:f3:6b:6f:73:dc:ec:02:75:e7:10:cd:99:de:2a:
7f:07:74:5e:b9:a1:93:48:1c:4d:43:6e:f4:53:00:
73:74:a4:e4:38:02:7d:26:5f:f1:4c:a1:67:4b:90:
0b:96:58:70:a6:7a:df:20:ee:dc:78:df:67:19:81:
a7:66:f2:db:a8:57:ff:fd:e2:1a:fa:a2:0f:7c:95:
c7:9f:f6:d4:2a:dd:ae:80:ff:61:62:f8:e5:30:b0:
72:d4:cb:89:27:41:c4:60:54:a4:2c:ac:6f:9b:b6:
3d:eb:51:af:59:5d:34:b7:66:2b:f9:e6:ec:c0:9c:
08:86:ed:7c:dc:93:fe:4b:db:4d:e1:9b:46:cb:c0:
cb:fe:f3:7d:29:99:52:c4:69:f4:af:5c:6f:cc:65:
4b:ce:54:d2:54:c4:ed:9f:45:17:50:5a:2c:56:61:
6a:74:80:de:26:55:3e:02:08:05:a1:6c:f9:28:90:
a8:dc:a3:bf:1c:a2:05:0a:f3:2a:aa:e4:04:70:48:
0c:bf:05:7f:02:a0:40:c8:7b:ff:8c:6b:f1:36:79:
3b:46:7e:ec:16:68:2a:fd:05:9c:fc:56:da:c8:4e:
21:5c:87:ff:07:2e:e7:2f:50:cf:02:78:9e:b2:e7:
d9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:70:0A:75:AD:AA:92:4A:49:E8:23:78:93:E5:AE:28:ED:41:75:B4
X509v3 Authority Key Identifier:
keyid:D7:5D:44:68:24:06:B0:B3:E7:8B:C5:28:4A:54:27:9B:1E:3F:FF:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C032/F00CD4C6011D11ED85B34173C4F9AE02/111EaCQGsLPni8UoSlQnmx4__5Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/111EaCQGsLPni8UoSlQnmx4__5Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C032/F00CD4C6011D11ED85B34173C4F9AE02/C57C4D100E9511ED83D4064EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.5.70.0/24
103.247.210.0/24
Signature Algorithm: sha256WithRSAEncryption
93:92:a9:1c:3b:94:2d:c1:a7:5a:ad:e0:04:1b:06:f6:68:67:
72:23:91:ef:87:98:10:2f:fa:53:b4:05:12:e0:fb:f1:0e:b7:
b1:8f:2b:74:25:8c:6b:89:5b:27:08:22:33:29:07:76:87:cb:
2a:de:cf:a0:a1:aa:58:53:9f:9d:10:44:83:65:d4:c3:bc:26:
48:39:fb:ef:30:83:00:38:48:63:70:01:d6:ed:02:4b:d1:81:
b1:3c:66:a9:a1:03:e6:75:fc:e0:5e:26:2e:82:8d:e6:bd:60:
bd:da:3b:74:89:44:8f:bd:9d:68:a2:a1:62:2b:ad:0b:04:06:
7e:18:87:d1:2c:9a:16:6e:68:ed:f9:36:69:96:89:32:cd:96:
de:f6:05:dd:e3:a1:6b:ca:42:4e:4a:12:00:a2:be:b1:7b:e4:
9a:f6:8f:29:a2:6d:56:37:9f:76:87:34:46:1f:ff:f7:4b:ea:
f5:3c:fb:e6:59:cf:44:a1:68:f3:21:87:54:ea:b2:60:f4:47:
3c:27:9b:04:9b:f8:32:e6:a9:6a:ac:32:2c:c2:40:be:d4:9d:
7d:ad:32:b6:60:2b:0f:b6:ea:65:fd:57:0b:04:77:b6:af:6e:
0f:46:6f:3d:43:93:7c:d1:67:5f:a5:a8:1e:5b:47:0b:a8:92:
9a:0a:71:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 08:42:22 2024 by rpki-client on console-ams.rpki-client.org