Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194692/885A32FE429411EB90491A34C4F9AE02/10C4736A429611EBABEB8635C4F9AE02.roa
File: 10C4736A429611EBABEB8635C4F9AE02.roa (raw, json)
Hash identifier: MkB6i6D9XclNNNofvJxVuXyAQQZbDHY3ZYdLbVlqr+c=
Subject key identifier: 40:0D:5F:C5:37:18:D8:B7:FD:A7:96:CB:C7:5A:45:A5:25:EB:4D:2D
Certificate issuer: /CN=A9194692/serialNumber=AFE5B3CD2DC567AB8A58EB3980D5E5E784290A40
Certificate serial: 0603
Authority key identifier: AF:E5:B3:CD:2D:C5:67:AB:8A:58:EB:39:80:D5:E5:E7:84:29:0A:40
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-WzzS3FZ6uKWOs5gNXl54QpCkA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9194692/885A32FE429411EB90491A34C4F9AE02/10C4736A429611EBABEB8635C4F9AE02.roa
Signing time: Sun 31 Dec 2023 23:41:55 +0000
ROA not before: Sun 31 Dec 2023 23:41:55 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 141418
IP address blocks: 103.158.210.0/24 maxlen: 24
103.158.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jan 2024 15:24:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1539 (0x603)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9194692/serialNumber=AFE5B3CD2DC567AB8A58EB3980D5E5E784290A40
Validity
Not Before: Dec 31 23:41:55 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=6591fc43-97d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:03:b7:0f:b1:c7:91:97:77:db:82:6c:95:71:
71:b1:33:0b:a8:ea:d5:17:e4:9e:d9:70:55:a9:e0:
c5:47:50:08:d8:9d:5e:32:2c:a4:bc:4a:36:3c:56:
cc:94:94:f9:b6:54:3d:d4:3c:d2:ae:5a:43:9a:dc:
84:cf:f0:72:b4:dd:fd:31:b3:42:62:6f:5d:1c:5b:
d5:de:62:63:c5:e9:72:f7:b6:9d:50:78:bd:be:ba:
0e:9a:44:2d:a1:5e:5b:2c:dd:8c:de:6a:bf:e2:03:
66:26:2e:30:9f:c3:0d:99:b1:c5:7c:27:98:bd:6e:
85:79:fe:59:65:be:cc:49:79:11:fb:95:a0:11:bb:
3e:82:db:ef:b1:74:42:4c:81:47:44:15:6f:7f:a2:
79:93:1c:e2:30:4b:07:be:23:d2:f2:80:9c:4b:69:
5a:e1:39:77:8a:6b:b1:9a:c7:8e:03:3a:7c:fa:2a:
1d:5c:d7:dd:71:e8:42:f0:ed:50:e9:7d:81:29:2e:
99:9e:d7:35:cd:36:0d:75:c7:af:ff:a9:4f:a6:8e:
79:2a:c0:0b:65:42:1b:ef:42:4b:7e:ce:1e:cb:89:
40:c2:b7:fc:e8:54:de:7b:ef:73:6b:e4:1d:9c:d8:
ca:36:19:9b:ac:85:ee:06:23:c3:cb:d3:4b:97:f3:
ba:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:0D:5F:C5:37:18:D8:B7:FD:A7:96:CB:C7:5A:45:A5:25:EB:4D:2D
X509v3 Authority Key Identifier:
keyid:AF:E5:B3:CD:2D:C5:67:AB:8A:58:EB:39:80:D5:E5:E7:84:29:0A:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9194692/885A32FE429411EB90491A34C4F9AE02/r-WzzS3FZ6uKWOs5gNXl54QpCkA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-WzzS3FZ6uKWOs5gNXl54QpCkA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194692/885A32FE429411EB90491A34C4F9AE02/10C4736A429611EBABEB8635C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.158.210.0/23
Signature Algorithm: sha256WithRSAEncryption
36:1c:75:62:ec:f3:35:c1:32:c1:03:34:61:82:d3:ad:a3:ac:
90:10:2d:92:ed:01:3a:4d:f7:d8:af:e7:75:5d:28:48:ab:96:
00:43:e4:12:82:8b:17:ce:7d:70:23:68:a6:06:ec:46:64:c0:
a7:8e:1a:20:9f:7b:54:a2:6a:9b:cd:74:ad:b7:a5:c3:28:10:
dc:d4:dd:71:e6:ef:68:0c:d6:a1:36:d5:b2:ec:85:0d:59:6d:
7a:8d:13:b1:27:cb:14:3b:a3:b7:7c:ba:ff:35:8b:42:bc:f8:
a4:eb:2b:20:3a:40:a9:e1:f4:d0:28:c1:54:c5:85:59:62:88:
6a:45:60:73:92:0b:c0:9a:a1:b3:cf:70:60:a1:c3:07:cd:c5:
cc:d2:1e:33:12:2b:db:37:31:7a:0d:e2:7c:0e:71:86:e7:08:
70:52:07:e4:de:4d:e5:f9:81:12:ab:dd:98:43:db:b0:ff:56:
5f:66:81:a9:0c:9a:96:6d:db:ad:56:91:98:35:80:68:eb:7a:
73:f4:3b:fa:4f:6b:df:16:51:9f:fa:7e:10:00:84:7c:32:fb:
8d:7c:a5:48:0a:f2:f5:78:b2:31:da:30:8c:56:35:1e:7f:f9:
1b:b4:4a:eb:fe:dc:6a:0e:ca:a8:c9:ff:95:01:65:02:77:07:
c6:fe:a6:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 12 19:58:26 2024 by rpki-client on console-fra.rpki-client.org