Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917A608/7480FC8802E711EAB0450418C4F9AE02/2948A912B6A511EDAF611B68C4F9AE02.roa
File: 2948A912B6A511EDAF611B68C4F9AE02.roa (raw, json)
Hash identifier: 1+I5VIpA+YWUDSc9cWat+eMtaNj2l0No1cGIx72qy3c=
Subject key identifier: 51:DB:A2:A8:70:B2:3C:28:42:99:29:B4:69:45:3B:82:E1:14:F0:96
Certificate issuer: /CN=A917A608/serialNumber=211C550B53EB20475185BABCDE7E70DF674448B7
Certificate serial: 0BBE
Authority key identifier: 21:1C:55:0B:53:EB:20:47:51:85:BA:BC:DE:7E:70:DF:67:44:48:B7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRxVC1PrIEdRhbq83n5w32dESLc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917A608/7480FC8802E711EAB0450418C4F9AE02/2948A912B6A511EDAF611B68C4F9AE02.roa
Signing time: Tue 30 Apr 2024 19:58:10 +0000
ROA not before: Tue 30 Apr 2024 19:58:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 139809
IP address blocks: 103.137.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Aug 2024 06:13:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3006 (0xbbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917A608/serialNumber=211C550B53EB20475185BABCDE7E70DF674448B7
Validity
Not Before: Apr 30 19:58:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66314d52-396d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c7:c5:50:e9:db:b3:89:a1:95:d7:f3:5e:bb:
cc:58:8b:f5:78:d4:01:08:af:a4:85:10:2b:2a:13:
e4:3f:a3:c0:53:4a:c5:1b:55:d9:c3:02:1c:fa:fd:
4f:5b:80:53:7d:b7:b5:c5:f3:e2:22:de:7c:aa:1b:
65:6a:65:15:6c:21:84:5d:8c:20:fe:97:c3:81:d0:
8e:3f:a1:a0:c1:63:92:b9:1b:04:40:7e:eb:6c:02:
6a:9c:31:8b:cf:e3:2a:e4:27:fe:63:11:3d:dd:63:
bb:3d:3a:38:df:64:62:c6:b9:4a:24:fe:69:48:4c:
df:32:e8:79:fc:a8:49:2a:82:5c:3f:ad:2e:ce:ea:
65:2c:38:21:df:5d:a9:8a:1b:ba:55:33:fe:93:15:
29:9c:0d:9e:84:6e:95:b6:83:4b:a6:2c:ac:d0:33:
2e:22:7f:9d:38:40:b5:02:95:27:30:db:87:45:38:
4e:3a:24:39:dc:83:63:d8:a5:0a:3b:30:e2:85:b4:
10:65:73:c2:12:b7:f9:cf:86:a9:ae:9a:b9:fa:b9:
f4:2a:57:77:66:de:1f:fb:17:b0:8d:b5:78:b0:54:
db:4c:50:bd:43:2d:7a:10:9e:bb:40:17:c1:1e:57:
17:37:f7:26:65:26:63:51:cc:e9:b1:20:b2:b1:48:
99:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:DB:A2:A8:70:B2:3C:28:42:99:29:B4:69:45:3B:82:E1:14:F0:96
X509v3 Authority Key Identifier:
keyid:21:1C:55:0B:53:EB:20:47:51:85:BA:BC:DE:7E:70:DF:67:44:48:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917A608/7480FC8802E711EAB0450418C4F9AE02/IRxVC1PrIEdRhbq83n5w32dESLc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IRxVC1PrIEdRhbq83n5w32dESLc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A608/7480FC8802E711EAB0450418C4F9AE02/2948A912B6A511EDAF611B68C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.163.0/24
Signature Algorithm: sha256WithRSAEncryption
05:d9:90:0d:ca:1a:24:cf:ad:3e:d6:c8:9c:2b:76:75:24:ec:
46:16:8e:e2:12:8f:bd:23:bd:99:7e:18:7e:7d:24:40:58:1d:
40:3c:a1:61:fd:ab:3b:dc:cc:c1:ec:ea:9d:0e:6f:23:39:48:
86:97:3d:76:cd:d9:02:57:8a:1c:0f:f4:1a:09:b2:fe:5c:18:
c3:55:8d:55:d5:4f:92:89:ca:78:6c:9d:3d:4b:d6:3b:d2:42:
f1:4a:d8:dc:e3:18:fa:5a:60:4c:11:5a:a7:04:43:51:a5:2b:
b6:ed:6c:14:f8:a8:88:ee:75:eb:43:63:0a:b6:bf:f2:b0:09:
95:4d:b5:7a:ca:96:b9:1f:68:78:a2:09:0e:d4:32:51:60:a7:
52:87:1b:72:8c:35:a7:33:3a:f7:27:52:45:66:91:56:3d:1d:
61:35:9f:41:ed:2f:de:ac:04:17:f5:6d:a3:49:0f:43:12:90:
e2:0b:54:1d:dd:82:26:9d:44:78:1f:b4:9f:01:30:c6:95:9e:
0c:43:b4:e9:63:40:0e:1c:db:49:9b:12:b8:63:4d:1c:60:28:
ca:8d:d3:13:d1:5b:3f:35:dc:2d:7d:fe:1d:2a:21:b1:34:68:
04:2d:46:22:b1:9f:6d:91:a6:a4:f4:06:ed:27:f0:3c:24:96:
80:26:4e:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 09:05:03 2024 by rpki-client on console-ams.rpki-client.org