Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/AE538EBC732C11EEA345AA0CC4F9AE02.roa
File: AE538EBC732C11EEA345AA0CC4F9AE02.roa (raw, json)
Hash identifier: soJvH6Um7rgAuOaDVptOAcJvAaE7/VLQZij7o5q996w=
Subject key identifier: F2:AB:2B:A5:C0:D2:D6:09:C4:62:A2:A0:23:93:B0:05:6C:0A:E9:42
Certificate issuer: /CN=A918A05D/serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186
Certificate serial: 23
Authority key identifier: 0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/AE538EBC732C11EEA345AA0CC4F9AE02.roa
Signing time: Wed 25 Oct 2023 11:50:24 +0000
ROA not before: Wed 25 Oct 2023 11:50:24 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 40676
IP address blocks: 103.115.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 18 Nov 2023 09:52:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35 (0x23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918A05D/serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186
Validity
Not Before: Oct 25 11:50:24 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=653900ff-b31f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7c:bc:f5:5d:68:de:82:08:dd:08:0d:56:be:
c1:67:d2:22:be:f6:9e:c8:b0:eb:c9:f7:ab:f6:24:
1a:7d:1b:98:b0:96:da:87:e6:f7:61:58:6b:a1:bc:
bf:44:2b:0c:a2:cc:8b:04:78:fd:6f:0d:f9:eb:d8:
38:b9:7d:32:f9:17:12:94:b2:c7:40:71:9f:65:88:
76:d3:5c:5e:10:0d:65:2b:a3:a0:b4:40:9e:71:3a:
02:5b:c6:00:9a:9d:2b:cb:68:b2:d9:8d:12:2b:27:
d0:c4:98:9f:74:6f:02:13:7e:76:f5:3e:c8:3f:f0:
9b:84:fd:e7:17:41:c8:93:43:11:f8:f3:92:42:96:
5f:30:8f:6c:12:bf:f5:df:b5:f3:a9:6c:48:35:90:
dc:a2:5e:f6:2f:3e:28:9c:bb:e3:b9:06:e5:21:87:
ea:c5:48:56:49:77:51:40:5b:dc:8e:2c:36:b4:89:
03:65:42:63:01:47:99:98:92:95:8c:ef:ea:a0:b6:
b4:95:33:14:c1:50:1f:32:8a:db:42:d0:cd:cf:4d:
9c:a4:e0:8c:d3:85:c2:98:a8:84:f2:61:32:3d:bf:
e4:80:aa:b6:16:ef:ed:88:2e:aa:ff:41:16:27:4b:
f8:6f:ae:1f:19:8d:f4:29:64:2f:79:fc:9d:1a:1c:
a9:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:AB:2B:A5:C0:D2:D6:09:C4:62:A2:A0:23:93:B0:05:6C:0A:E9:42
X509v3 Authority Key Identifier:
keyid:0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/AE538EBC732C11EEA345AA0CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.115.18.0/24
Signature Algorithm: sha256WithRSAEncryption
00:de:35:b3:46:d9:43:37:2b:1b:88:82:81:d6:0f:95:a1:40:
e9:3f:b1:d4:ac:64:a6:10:a0:b0:bd:61:f4:c6:11:31:bf:82:
2f:ae:ee:98:b3:fb:8c:2c:14:a5:6f:a3:c1:67:de:d4:17:9c:
20:f7:87:62:f5:5a:c3:a4:a0:f5:97:2f:7c:b1:a5:f5:77:c5:
29:c6:60:80:31:ef:63:02:4e:7f:f4:cc:05:88:3d:2a:be:2f:
a9:8a:a5:25:6b:00:c8:4b:2e:6f:0a:6f:0f:5e:5f:e3:b7:54:
86:5e:60:bb:38:d5:fb:ba:c9:52:f5:e1:16:fb:45:23:14:57:
01:35:3e:01:5d:46:5c:a4:a2:b3:ac:06:a9:5b:80:09:04:70:
69:b1:ce:3b:5b:0c:73:5b:a2:4f:ff:22:cf:5f:d6:a0:b8:49:
b0:25:3b:af:83:96:68:3a:a1:5f:90:40:1f:95:bf:ff:55:dd:
91:09:47:c7:1e:94:73:61:27:6b:4f:e6:8c:df:56:d5:9e:c6:
b0:4b:36:d4:3d:0c:a1:94:11:63:79:4d:98:14:2a:dc:27:56:
de:b5:67:a9:9d:c7:80:f8:cd:c3:59:72:7c:d5:a0:09:d3:72:
fe:fc:d9:a8:df:ac:de:68:33:37:dd:18:54:e8:41:34:28:9d:
f6:8c:0f:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:25 2024 by rpki-client on console-ams.rpki-client.org