Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C7B4/1F320CFC55F011EF99EBD820C4F9AE02/B310723055FD11EF835FC94CC4F9AE02.roa
File: B310723055FD11EF835FC94CC4F9AE02.roa (raw, json)
Hash identifier: DLySSxPpyVjLYBQrim0fDXLxMlXwPZut+9UxP04tqbc=
Subject key identifier: 86:45:9C:13:FE:1C:3B:D0:3A:95:6A:F8:0E:58:1F:25:0E:C6:40:27
Certificate issuer: /CN=A919C7B4/serialNumber=24B10C31D691F845FCEAE3FE3231BE56002BAC6A
Certificate serial: 05
Authority key identifier: 24:B1:0C:31:D6:91:F8:45:FC:EA:E3:FE:32:31:BE:56:00:2B:AC:6A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JLEMMdaR-EX86uP-MjG-VgArrGo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919C7B4/1F320CFC55F011EF99EBD820C4F9AE02/B310723055FD11EF835FC94CC4F9AE02.roa
Signing time: Fri 09 Aug 2024 03:15:59 +0000
ROA not before: Fri 09 Aug 2024 03:15:59 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 1221
IP address blocks: 103.142.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Aug 2024 09:10:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919C7B4/serialNumber=24B10C31D691F845FCEAE3FE3231BE56002BAC6A
Validity
Not Before: Aug 9 03:15:59 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=66b589ef-594b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f3:9c:9d:91:fd:25:04:6c:b6:41:e9:b6:97:
70:de:10:1c:e9:73:9f:ef:12:8a:22:63:41:c4:11:
fd:63:b2:dc:75:75:18:92:53:dd:88:98:09:ae:50:
55:41:61:e5:96:be:fa:d1:0d:f7:14:9d:42:71:8c:
13:27:73:30:a5:51:e2:f6:34:72:27:37:aa:77:46:
a7:b2:c9:fc:1b:cc:db:f0:0b:32:12:28:36:09:31:
54:c2:ed:67:3c:1e:93:6e:97:54:aa:fb:c9:2c:f4:
a1:ea:45:ef:3c:d2:f6:ae:af:52:14:90:31:5e:b5:
de:16:ed:b4:94:80:26:e7:eb:6b:20:98:e0:0f:28:
d3:a5:dd:e0:42:42:b9:65:54:4d:62:0c:7f:17:85:
52:82:3e:08:48:89:d6:76:3f:00:e4:46:06:a9:ba:
43:c8:f9:61:e3:49:74:1f:bf:c0:2e:7c:65:62:8d:
ed:a1:18:c7:8f:c3:a0:39:8d:54:b2:2b:98:cb:ff:
f0:44:6f:95:00:4a:ae:55:a2:75:01:a6:a3:f2:c1:
63:73:90:8b:05:a9:cd:d0:9b:40:cf:07:31:b3:c4:
51:e5:ab:d1:a5:40:73:38:35:1a:60:44:91:41:cf:
fd:b5:9f:99:1f:64:f9:bc:01:e2:60:d8:4b:b0:12:
07:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:45:9C:13:FE:1C:3B:D0:3A:95:6A:F8:0E:58:1F:25:0E:C6:40:27
X509v3 Authority Key Identifier:
keyid:24:B1:0C:31:D6:91:F8:45:FC:EA:E3:FE:32:31:BE:56:00:2B:AC:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919C7B4/1F320CFC55F011EF99EBD820C4F9AE02/JLEMMdaR-EX86uP-MjG-VgArrGo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JLEMMdaR-EX86uP-MjG-VgArrGo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C7B4/1F320CFC55F011EF99EBD820C4F9AE02/B310723055FD11EF835FC94CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.142.3.0/24
Signature Algorithm: sha256WithRSAEncryption
25:df:35:ee:b3:28:31:07:96:02:f0:b6:38:4d:f9:bd:e5:ec:
75:a0:8a:5b:03:14:96:79:f5:47:c6:f4:52:7f:27:6d:13:2c:
f9:a5:c4:dd:c1:a3:61:24:b4:ea:d4:be:08:6c:61:52:a5:38:
e6:1e:49:ad:7c:86:76:0c:0b:2b:32:1e:77:d1:8f:01:63:f7:
f1:2c:02:4d:83:93:60:9e:a9:a2:06:88:27:40:5d:ed:95:4d:
e1:19:4b:6d:8d:36:06:38:02:8b:ee:4f:af:4f:50:d4:47:10:
61:37:da:bc:a3:32:4c:9a:58:26:26:3a:19:53:3f:94:0b:ed:
52:ec:ca:31:41:6f:e1:ce:2c:69:1f:0e:5c:bf:1d:b2:53:a0:
9f:3e:ab:6d:62:3e:e5:63:19:13:76:e7:5a:45:cd:4d:77:15:
8c:f9:3e:46:8b:44:29:21:e3:a6:da:ec:72:6e:56:03:01:35:
fa:c1:73:ac:9c:17:93:52:aa:e3:04:2d:c1:e3:2c:1a:2f:75:
b8:8e:85:2b:bd:e5:fd:5a:7d:9e:62:5f:48:e0:0a:66:fc:07:
d2:e7:3f:3e:cd:a8:2d:c9:e4:e6:7d:87:7e:23:4a:94:94:c9:
78:23:7f:e9:83:42:f6:f8:0c:0b:eb:2b:cf:40:6d:dd:45:e0:
3c:57:fb:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 14 10:43:37 2024 by rpki-client on console-fra.rpki-client.org