Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/8AB3768A11CE11EEB8151734C4F9AE02.roa
File: 8AB3768A11CE11EEB8151734C4F9AE02.roa (raw, json)
Hash identifier: DQ0TIlLU/oiHvEz7qMiOp7qWSq/NZOhwaKbJ+2zgwyI=
Subject key identifier: 5C:75:C7:08:B2:8F:68:EE:CF:AF:66:38:26:50:16:46:4B:3F:25:C9
Certificate issuer: /CN=A9187F7E/serialNumber=1A682941F8789C4CEA3CC33B6373E4947630BC84
Certificate serial: 012A
Authority key identifier: 1A:68:29:41:F8:78:9C:4C:EA:3C:C3:3B:63:73:E4:94:76:30:BC:84
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/8AB3768A11CE11EEB8151734C4F9AE02.roa
Signing time: Thu 03 Aug 2023 03:43:37 +0000
ROA not before: Thu 03 Aug 2023 03:43:37 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 21859
IP address blocks: 103.69.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 25 Feb 2024 13:46:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 298 (0x12a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9187F7E/serialNumber=1A682941F8789C4CEA3CC33B6373E4947630BC84
Validity
Not Before: Aug 3 03:43:37 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=64cb2269-3cf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:cd:0d:a7:7c:6a:81:32:05:f3:b0:a0:f6:ee:
a1:fb:79:96:dc:74:f7:64:f4:6e:36:88:d7:16:de:
0a:d9:3d:06:d3:b2:71:5f:b0:e2:44:8b:7f:38:5d:
9f:13:0f:84:a8:f9:42:0e:16:82:b1:d4:74:49:6c:
94:1a:6c:eb:a2:2d:39:ec:c8:e8:72:b5:01:70:18:
e6:e5:63:1d:b2:32:f2:73:53:3d:bb:fb:cd:db:20:
a7:bf:90:18:28:5f:c2:0c:f9:ec:ef:5f:63:34:bd:
dd:a7:36:cf:f1:7d:d2:aa:0e:9c:57:a2:2b:34:ab:
c2:b4:69:75:17:42:a1:a8:4e:be:79:ea:59:96:0e:
af:27:fd:9c:ce:7a:f7:a1:79:51:1e:e4:d8:86:bc:
53:5c:70:aa:05:00:96:6a:46:08:02:10:88:e4:79:
6a:40:47:6d:a6:6a:fd:c4:27:4e:13:de:aa:bc:3f:
97:1c:10:a4:fe:f5:44:ad:be:f5:70:51:f0:a2:d2:
bb:f2:c4:37:b1:47:ff:67:9d:50:b1:d6:a4:d2:1e:
0e:0c:21:fd:f8:16:e4:98:d7:8d:a7:02:3a:86:fc:
63:be:50:96:d2:bd:65:a3:8d:f9:e8:30:77:e1:62:
a2:27:fd:a1:01:3c:47:7d:1a:7f:9a:54:5d:08:63:
02:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:75:C7:08:B2:8F:68:EE:CF:AF:66:38:26:50:16:46:4B:3F:25:C9
X509v3 Authority Key Identifier:
keyid:1A:68:29:41:F8:78:9C:4C:EA:3C:C3:3B:63:73:E4:94:76:30:BC:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/8AB3768A11CE11EEB8151734C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.69.3.0/24
Signature Algorithm: sha256WithRSAEncryption
91:79:55:57:47:33:5c:91:31:26:5e:97:0b:0c:1b:2f:53:a5:
5e:f7:64:0f:03:91:79:1b:0e:17:2a:d6:72:07:be:12:a1:7d:
78:14:4d:d4:97:68:12:10:a0:19:54:aa:c6:44:d9:ad:7d:e8:
73:8d:d5:8c:2c:14:60:e6:8e:7a:5e:61:47:4a:89:67:c6:62:
60:78:0d:51:12:ac:0a:d2:5a:3b:0f:af:a3:2b:7b:01:6c:f3:
5f:ae:1d:5e:85:d3:d3:78:c8:e3:1b:6a:0d:89:94:32:a8:74:
cc:ad:c8:14:8b:d8:bc:f7:96:85:73:af:c4:a8:62:0d:17:cb:
9e:31:18:e0:d7:26:a5:ef:1a:d4:9b:78:31:f8:5e:e1:2f:96:
f1:74:65:c3:b7:3f:c8:4e:fd:b7:aa:63:53:fa:83:d5:db:95:
3b:e3:14:fa:5a:ef:9e:b5:7d:1d:b3:1d:b1:00:3d:eb:03:06:
52:f8:09:25:be:35:2b:1a:89:19:80:8a:4b:d8:77:57:e4:b7:
33:0f:f6:1c:24:5e:2f:05:10:8f:69:5f:75:7e:7d:c8:d4:a3:
ea:ef:59:37:e1:e9:a4:ef:d6:43:9f:af:c3:a7:a7:9c:77:75:
c4:41:13:4a:b4:20:57:b9:60:f0:04:94:a1:1c:1a:c4:c7:df:
88:88:31:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 25 16:24:47 2024 by rpki-client on console-fra.rpki-client.org