Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/7CD3F2EE420311EB9DB9B861C4F9AE02.roa
File: 7CD3F2EE420311EB9DB9B861C4F9AE02.roa (raw, json)
Hash identifier: acdXpRfS9b1qA/Lj1mx4QZzmEoP6QEmx5hWPGSfRWIQ=
Subject key identifier: 51:91:6F:63:49:65:51:94:F9:79:4E:4E:54:B6:51:30:F0:D1:DD:B3
Certificate issuer: /CN=A9186513/serialNumber=B6CCB5E431E45019150C4F3721F4F80A6F2ED7DB
Certificate serial: 0608
Authority key identifier: B6:CC:B5:E4:31:E4:50:19:15:0C:4F:37:21:F4:F8:0A:6F:2E:D7:DB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsy15DHkUBkVDE83IfT4Cm8u19s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/7CD3F2EE420311EB9DB9B861C4F9AE02.roa
Signing time: Wed 10 Jan 2024 23:21:39 +0000
ROA not before: Wed 10 Jan 2024 23:21:39 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 35196
IP address blocks: 103.205.16.0/22 maxlen: 22
203.76.252.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 24 Jul 2024 08:38:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1544 (0x608)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9186513/serialNumber=B6CCB5E431E45019150C4F3721F4F80A6F2ED7DB
Validity
Not Before: Jan 10 23:21:39 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=659f2683-2d54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:de:81:f6:dd:a5:52:e1:dc:78:f3:73:30:c6:
9d:2c:c3:5e:de:9e:7e:01:bb:6b:c4:2d:f6:83:f7:
86:a5:39:77:0f:1d:6c:d5:bc:c0:a9:d9:e0:74:51:
9b:b2:25:a1:cb:48:2f:13:2d:b2:a5:53:14:f3:75:
58:17:86:07:76:56:22:f0:a8:74:e7:d9:a7:a8:53:
34:67:90:8a:b6:7f:d8:ae:96:e3:11:00:8a:04:f5:
58:22:f3:c1:72:2b:08:c6:90:59:45:7a:bb:0c:57:
0b:c0:2b:a3:4d:78:71:1c:42:89:a0:f2:25:22:84:
cf:5b:84:3d:23:45:e3:8d:a5:cc:4f:d0:c5:b0:a4:
4f:5a:5f:74:55:68:68:e1:fb:ba:bc:0f:b0:f7:a7:
0a:11:97:b8:ea:ba:50:ba:a6:60:ed:37:7d:eb:1d:
6e:2b:f0:de:68:df:83:df:d7:43:01:dc:41:dc:6b:
c2:39:52:a6:a4:14:a8:8e:1f:e1:dc:07:8c:c4:8a:
9d:11:20:78:3e:e2:a9:10:8d:b7:fa:6f:b8:36:14:
eb:95:b9:d4:3e:03:d7:b2:58:87:63:3a:4c:e2:5d:
5d:15:0d:75:27:2a:6e:39:61:81:3e:09:7e:0e:a0:
0a:51:97:04:1d:f2:f0:48:52:d7:49:11:a3:b7:2f:
2b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:91:6F:63:49:65:51:94:F9:79:4E:4E:54:B6:51:30:F0:D1:DD:B3
X509v3 Authority Key Identifier:
keyid:B6:CC:B5:E4:31:E4:50:19:15:0C:4F:37:21:F4:F8:0A:6F:2E:D7:DB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/tsy15DHkUBkVDE83IfT4Cm8u19s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsy15DHkUBkVDE83IfT4Cm8u19s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/7CD3F2EE420311EB9DB9B861C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.205.16.0/22
203.76.252.0/22
Signature Algorithm: sha256WithRSAEncryption
23:69:bc:fe:44:de:c6:50:04:9a:34:d3:ca:6c:c3:f8:3b:53:
d9:bb:f4:06:b4:a2:d6:75:76:cb:38:4a:42:1c:34:5a:73:53:
a7:8a:ce:4c:4c:34:40:bd:b6:17:29:25:17:39:28:ec:cb:b8:
d3:85:9e:a2:8e:dc:b1:5b:c0:9e:d5:96:e1:e3:5e:d2:96:9d:
b4:e9:14:b8:d0:be:7e:ba:98:6e:01:f1:cd:a8:b6:65:aa:86:
aa:0a:71:23:1a:92:63:ba:89:9f:62:30:14:f0:34:69:68:d9:
91:26:89:97:35:15:6f:3d:99:15:bf:96:2a:cb:76:c7:94:16:
51:2b:75:b9:77:41:e1:39:74:7e:7a:99:11:7a:44:3d:4e:1b:
ba:57:b6:24:9b:8a:43:2a:9e:ee:18:59:21:5c:61:0a:1f:ba:
b8:04:17:54:52:83:bd:76:a2:e4:52:91:8c:50:3a:51:d4:7b:
e1:1b:44:6a:10:14:bd:6a:a7:76:ee:70:a9:00:d8:39:23:43:
48:7d:33:94:17:64:93:93:e7:ba:6f:e1:e9:3a:8d:e2:62:84:
70:a8:70:97:35:78:ca:1a:29:29:6c:44:5d:ff:03:f7:0e:d2:
45:c0:56:ab:03:15:88:85:a9:e7:74:c3:ab:e0:31:71:9f:a8:
9b:45:a8:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 24 12:45:19 2024 by rpki-client on console-ams.rpki-client.org