Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/030BA3A6D78A11EEB7D96310C4F9AE02.roa
File: 030BA3A6D78A11EEB7D96310C4F9AE02.roa (raw, json)
Hash identifier: m6jnolx7aJrlX6SiFtgg9jnhRDD9OlFHffN8lKfl76U=
Subject key identifier: E5:C8:D3:94:37:B2:D3:94:1E:B3:57:64:2F:9B:45:E9:DE:91:DD:A2
Certificate issuer: /CN=A917190F/serialNumber=9D07446EF99F3C57C29C582D6B7ACA4735F4E470
Certificate serial: 071D
Authority key identifier: 9D:07:44:6E:F9:9F:3C:57:C2:9C:58:2D:6B:7A:CA:47:35:F4:E4:70
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQdEbvmfPFfCnFgta3rKRzX05HA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/030BA3A6D78A11EEB7D96310C4F9AE02.roa
Signing time: Fri 01 Mar 2024 05:10:25 +0000
ROA not before: Fri 01 Mar 2024 05:10:25 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 150803
IP address blocks: 103.40.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Sep 2024 16:46:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1821 (0x71d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917190F/serialNumber=9D07446EF99F3C57C29C582D6B7ACA4735F4E470
Validity
Not Before: Mar 1 05:10:25 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=65e16341-467d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2b:b9:66:a7:cb:c7:62:07:3d:73:95:6a:6b:
0c:69:fe:ec:88:8a:aa:0a:21:8b:e2:4b:3d:be:43:
2a:f2:89:25:df:2c:6c:f9:21:68:24:13:11:ef:62:
50:09:97:89:20:63:16:02:1c:30:0e:c8:81:a7:b2:
05:5a:d3:6b:1c:ef:93:9a:f7:98:49:39:3c:91:be:
68:ac:90:73:3d:af:f4:df:a5:cf:52:35:64:3c:c9:
2e:00:57:ec:65:4f:70:12:f4:30:57:2e:e4:20:ad:
2a:31:6a:81:d9:e0:c6:da:17:56:37:26:11:20:78:
7b:51:6b:05:88:0c:c6:1d:54:a2:e7:f8:50:09:e0:
b8:2f:ee:8f:65:b0:b2:98:ac:ee:e6:67:62:9c:71:
ea:d1:83:cd:72:89:f2:70:34:6a:99:42:d1:9f:fb:
0d:8e:ad:09:ec:44:59:b0:72:9a:90:3e:4e:8c:b8:
7c:09:ea:d9:fe:db:db:66:be:2f:8a:ef:53:85:fd:
f9:f2:1b:21:e0:9e:26:21:c2:54:74:f1:9a:bf:0c:
f7:1e:b8:c7:02:cf:2c:9b:27:12:e2:53:ca:56:62:
52:0e:78:a4:2e:ac:2d:c2:2b:c8:75:a0:50:bf:7b:
ee:bf:e3:4b:2b:1a:59:56:9a:a2:c0:0d:9a:be:fa:
06:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:C8:D3:94:37:B2:D3:94:1E:B3:57:64:2F:9B:45:E9:DE:91:DD:A2
X509v3 Authority Key Identifier:
keyid:9D:07:44:6E:F9:9F:3C:57:C2:9C:58:2D:6B:7A:CA:47:35:F4:E4:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/nQdEbvmfPFfCnFgta3rKRzX05HA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQdEbvmfPFfCnFgta3rKRzX05HA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/030BA3A6D78A11EEB7D96310C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.40.101.0/24
Signature Algorithm: sha256WithRSAEncryption
08:39:7a:b6:1e:d8:f4:d5:90:2b:1a:46:19:55:f5:57:57:b6:
72:69:cd:54:88:d3:e8:95:5c:ee:2a:a7:ab:ac:96:39:62:1a:
e5:36:a4:1a:b2:ea:22:88:82:01:42:e3:7f:57:62:f6:c2:9c:
7b:59:d2:11:08:09:4f:88:11:5c:b5:21:88:6c:62:6a:d0:59:
b7:59:e7:6e:43:a9:5e:ca:33:28:21:ec:76:f8:a2:aa:d5:b1:
65:a7:ba:38:fb:59:a1:51:8c:c1:15:49:14:f9:27:d1:c9:c9:
ec:f6:21:9e:75:07:4f:3c:6e:1c:b4:7b:4a:11:28:b1:7f:24:
a5:5c:95:ff:70:5c:31:db:b5:9f:cd:d3:99:b0:09:53:c8:02:
34:a5:ff:99:08:d2:82:41:9a:e0:09:66:63:f3:33:b4:b9:5b:
82:02:77:c4:9b:64:08:9d:2e:82:58:8c:b6:68:3f:a1:48:eb:
44:60:c2:c1:7c:10:bf:9e:fc:bc:2d:fc:12:97:6f:63:4b:a6:
ce:d4:7c:cb:31:cb:ea:b8:a3:9e:06:62:43:65:f6:76:fd:11:
59:25:eb:85:50:79:e4:9e:fe:fc:e3:f8:77:cb:ff:ab:37:4c:
13:b3:73:a8:9f:e4:f2:8f:58:69:4b:43:cf:f6:3c:cc:a3:9c:
52:80:31:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 18:03:29 2024 by rpki-client on console-fra.rpki-client.org