Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/3C937F34AEE811ED94B67F46C4F9AE02.roa
File: 3C937F34AEE811ED94B67F46C4F9AE02.roa (raw, json)
Hash identifier: 0kQIbevVHQESJqgazRXy3PLFhGjn7o4bo+lP1KqHBeI=
Subject key identifier: CD:50:F3:35:10:BF:BC:CE:5B:51:41:A6:96:F9:A1:81:07:D1:83:CC
Certificate issuer: /CN=A918A51B/serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE
Certificate serial: 8D
Authority key identifier: 5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/3C937F34AEE811ED94B67F46C4F9AE02.roa
Signing time: Fri 27 Oct 2023 04:36:04 +0000
ROA not before: Fri 27 Oct 2023 04:36:04 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 150324
IP address blocks: 103.12.78.0/24 maxlen: 24
103.12.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 09:17:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141 (0x8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918A51B/serialNumber=5FE04C957A6CBC540A34F453D13E3F8050C8F4EE
Validity
Not Before: Oct 27 04:36:04 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=653b3e34-66a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:41:40:bc:7a:43:3a:17:12:5d:65:0e:c5:6b:
9a:c1:5b:36:ff:9a:7c:86:11:01:59:91:6b:8d:63:
46:5c:d0:41:0d:11:37:4d:6c:b3:ce:0e:71:d9:ac:
c7:1b:79:54:3d:9c:25:4b:f7:44:52:26:5d:90:00:
ad:81:1e:34:17:b8:6d:61:3c:2e:9e:d3:a5:08:fd:
92:8b:4e:00:39:56:7e:02:f6:56:e0:a3:57:da:9f:
1d:de:0a:89:5e:5d:f6:bd:a8:ef:f1:e7:a3:02:df:
87:a1:8a:f1:65:23:6b:0a:93:11:ed:df:cd:14:52:
dd:0a:b2:0a:0c:21:59:e2:0a:74:5d:bd:1a:ca:41:
a8:f0:84:72:20:c7:15:f1:63:32:1b:e3:37:7e:72:
da:97:e2:e3:a5:28:54:6c:b5:f0:43:24:f2:04:14:
d4:2f:6d:a2:f0:bd:06:4d:f9:5e:fd:ed:3d:c8:53:
c2:24:b3:44:a9:bb:d1:4b:9a:d6:6c:78:df:cf:3b:
f5:8a:81:c5:2e:d7:d0:5d:4d:99:c9:d4:c6:4e:66:
e7:a5:9b:e2:80:92:dd:62:26:a8:37:87:1e:e6:b9:
59:49:59:2c:bf:4f:56:7a:28:69:6c:b4:24:60:a6:
33:d7:7b:c1:68:8d:4e:d5:3a:10:2a:81:05:41:5a:
46:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:50:F3:35:10:BF:BC:CE:5B:51:41:A6:96:F9:A1:81:07:D1:83:CC
X509v3 Authority Key Identifier:
keyid:5F:E0:4C:95:7A:6C:BC:54:0A:34:F4:53:D1:3E:3F:80:50:C8:F4:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/X-BMlXpsvFQKNPRT0T4_gFDI9O4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-BMlXpsvFQKNPRT0T4_gFDI9O4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A51B/00CA98F2A1A511ED91232254C4F9AE02/3C937F34AEE811ED94B67F46C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.12.78.0/23
Signature Algorithm: sha256WithRSAEncryption
39:4c:67:4a:9e:c1:87:05:02:ca:20:26:3a:a2:2a:5f:0f:aa:
4a:4b:21:3c:33:23:6e:f3:77:a6:8a:76:11:63:1c:96:cf:bd:
a1:15:70:b6:d7:2f:86:46:5a:da:6d:53:62:58:59:96:b5:93:
b9:30:ff:e7:19:e5:2f:a9:fd:92:fe:86:7b:f1:e1:39:0d:04:
d2:04:7c:cc:2f:cb:27:56:51:56:0b:a2:c2:b5:89:54:fc:1e:
4a:1f:5d:b5:24:b9:5d:e5:03:c2:87:bb:cf:22:f3:18:a6:85:
2d:8f:5b:90:04:e5:04:d0:5e:c5:ea:17:00:1b:3e:7b:07:9a:
50:ef:78:a7:72:70:96:cb:58:c1:b8:fc:8d:00:82:89:78:91:
43:d7:4b:08:1c:dd:1a:44:c9:22:25:39:c0:49:b0:8b:01:7d:
1c:8b:dc:8b:a2:85:7b:80:e5:45:c0:e1:8b:55:5f:a1:68:4f:
3c:51:86:a6:00:7b:66:5e:cf:3d:23:d8:4e:83:03:21:05:6e:
e7:0f:38:42:ed:d3:fe:da:cb:31:f2:bd:a2:53:ad:96:85:31:
8c:f3:67:a7:4b:d7:b9:a0:f2:14:0a:c2:34:19:60:22:fe:95:
56:59:70:44:bd:0a:56:95:69:a4:e8:8f:82:1b:62:cc:a5:9a:
ec:41:d3:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:14 2024 by rpki-client on console-fra.rpki-client.org