Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/308758F8CB0911EE9260454CC4F9AE02.roa
File: 308758F8CB0911EE9260454CC4F9AE02.roa (raw, json)
Hash identifier: PKYkbMJHfTf1RT2+odGqts5lDkPUSKp6L4m4p4ahFgU=
Subject key identifier: 42:64:F5:D5:B6:05:C3:8F:F6:4B:97:B0:85:02:DC:90:65:AF:16:C5
Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537
Certificate serial: 0480
Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/308758F8CB0911EE9260454CC4F9AE02.roa
Signing time: Tue 03 Sep 2024 01:16:08 +0000
ROA not before: Tue 03 Sep 2024 01:16:08 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 49544
IP address blocks: 103.125.216.0/24 maxlen: 24
103.125.219.0/24 maxlen: 24
2403:fa40:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 18 Sep 2024 12:10:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1152 (0x480)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918E4B7
Validity
Not Before: Sep 3 01:16:08 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66d66357-282a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:69:3c:a5:f3:e0:36:74:b6:05:34:98:c4:ab:
d4:22:ba:39:4b:9c:d1:81:c3:67:d5:15:00:e8:08:
9e:8e:2b:5d:2f:de:b0:e0:e3:8f:ed:50:cd:46:76:
c4:a7:45:7b:bb:66:cf:a5:fb:c3:bd:35:00:6d:da:
e5:9c:ba:dd:ce:04:da:44:97:4d:35:39:6a:a5:3a:
01:ef:28:c0:7b:2b:8e:b7:61:fe:73:d3:e6:a6:2f:
5f:1f:c9:52:17:3a:9a:6f:b8:df:5b:28:ac:67:68:
3e:69:6d:82:3f:b6:f2:80:14:d9:6a:38:46:07:5c:
11:dd:4f:ad:5d:f5:45:ce:23:be:5b:40:51:3d:c7:
8e:79:e9:7f:bd:50:0f:7c:14:b4:29:af:1e:ff:5b:
25:7e:81:02:5a:2a:c2:37:73:92:4e:90:6b:fe:6b:
af:03:aa:06:c8:1c:73:3d:f1:d0:60:e9:5c:0a:07:
9f:ba:e0:39:c6:c7:9b:90:94:71:e8:60:7d:9f:57:
c4:93:27:e3:91:d1:18:e0:a6:8f:3e:58:78:5c:42:
2d:b2:91:26:6a:f7:76:cb:2b:3d:2e:dc:81:9e:6e:
d3:62:3b:67:13:53:b7:61:5f:6d:15:fc:b8:a6:6d:
88:cb:53:eb:d4:9c:48:26:c0:3a:ca:5c:5f:a3:bf:
b6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:64:F5:D5:B6:05:C3:8F:F6:4B:97:B0:85:02:DC:90:65:AF:16:C5
X509v3 Authority Key Identifier:
keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/308758F8CB0911EE9260454CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.125.216.0/24
103.125.219.0/24
IPv6:
2403:fa40:1::/48
Signature Algorithm: sha256WithRSAEncryption
b4:05:0c:e9:3d:fb:12:bd:06:b3:f3:cf:a7:1c:45:38:d1:64:
42:69:9a:34:c6:7b:b4:e3:79:93:ff:ab:b7:2b:d0:46:9a:3e:
2c:da:45:2f:93:7e:49:78:bb:f6:74:18:34:4d:ab:1a:9c:51:
51:8d:f8:81:b5:f2:88:bd:91:4b:73:5b:65:18:c6:23:45:e7:
8b:64:22:e5:a2:b0:cd:67:d5:7c:ac:1c:a9:69:1e:10:ea:c8:
c3:2a:b9:f3:07:19:1d:ee:cd:98:da:28:51:5a:54:c6:b6:60:
4b:5f:c5:a3:6f:cb:64:37:72:bd:62:5d:5c:3a:2a:70:62:cc:
f1:cf:6a:fe:a4:9a:e4:7f:00:4c:e8:98:93:6d:d3:fa:e2:4c:
58:a6:a2:4c:dc:16:da:69:fa:b8:8e:80:4a:2a:e4:e9:5e:84:
3c:ac:76:37:ca:d7:f0:81:8f:f7:c3:95:99:eb:66:70:4d:a2:
1d:33:bd:b7:72:fb:6d:fe:93:67:bb:0f:2d:b7:b4:92:1c:e0:
06:d9:4a:28:bf:e2:70:c8:31:27:a8:3c:cd:59:a9:57:05:75:
c5:82:e4:8d:4c:8c:b8:bb:18:59:48:70:20:e1:ca:f5:49:ca:
ec:52:b4:55:a8:64:7c:9a:3f:14:94:0c:79:a6:a0:21:1c:86:
44:93:3e:cc
-----BEGIN CERTIFICATE-----
MIIFiDCCBHCgAwIBAgICBIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB
N0U1QTU1MzcwHhcNMjQwOTAzMDExNjA4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmQ2NjM1Ny0yODJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3Wk8pfPgNnS2BTSYxKvUIro5S5zRgcNn1RUA6AiejitdL96w4OOP7VDNRnbE
p0V7u2bPpfvDvTUAbdrlnLrdzgTaRJdNNTlqpToB7yjAeyuOt2H+c9Pmpi9fH8lS
Fzqab7jfWyisZ2g+aW2CP7bygBTZajhGB1wR3U+tXfVFziO+W0BRPceOeel/vVAP
fBS0Ka8e/1slfoECWirCN3OSTpBr/muvA6oGyBxzPfHQYOlcCgefuuA5xsebkJRx
6GB9n1fEkyfjkdEY4KaPPlh4XEItspEmavd2yys9LtyBnm7TYjtnE1O3YV9tFfy4
pm2Iy1Pr1JxIJsA6ylxfo7+2ywIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFEJk9dW2
BcOP9kuXsIUC3JBlrxbFMB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF
QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW
VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEU0QjcvRUIzMTJGMDIxRUFBMTFFQ0I3NTZCRjMwQzRGOUFFMDIvMzA4NzU4RjhD
QjA5MTFFRTkyNjA0NTRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E
JzAlMBIEAgABMAwDBABnfdgDBABnfdswDwQCAAIwCQMHACQD+kAAATANBgkqhkiG
9w0BAQsFAAOCAQEAtAUM6T37Er0Gs/PPpxxFONFkQmmaNMZ7tON5k/+rtyvQRpo+
LNpFL5N+SXi79nQYNE2rGpxRUY34gbXyiL2RS3NbZRjGI0Xni2Qi5aKwzWfVfKwc
qWkeEOrIwyq58wcZHe7NmNooUVpUxrZgS1/Fo2/LZDdyvWJdXDoqcGLM8c9q/qSa
5H8ATOiYk23T+uJMWKaiTNwW2mn6uI6ASirk6V6EPKx2N8rX8IGP98OVmetmcE2i
HTO9t3L7bf6TZ7sPLbe0khzgBtlKKL/icMgxJ6g8zVmpVwV1xYLkjUyMuLsYWUhw
IOHK9UnK7FK0VahkfJo/FJQMeaagIRyGRJM+zA==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:42 2025 by rpki-client