Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/F5F4890690C311EE89C55823C4F9AE02.roa
File: F5F4890690C311EE89C55823C4F9AE02.roa (raw, json)
Hash identifier: JeAQJTLrF6onbe3ILtYog293VFHl+9xdpd3mrm6e7aA=
Subject key identifier: 6B:6C:AB:10:46:FE:2E:E2:A6:C0:0F:35:F8:02:9C:BE:07:29:91:EA
Certificate issuer: /CN=A91A27AB/serialNumber=59D588125A716698738D1D1E9E6D8A68D7409B27
Certificate serial: 5E
Authority key identifier: 59:D5:88:12:5A:71:66:98:73:8D:1D:1E:9E:6D:8A:68:D7:40:9B:27
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdWIElpxZphzjR0enm2KaNdAmyc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/F5F4890690C311EE89C55823C4F9AE02.roa
Signing time: Sat 02 Dec 2023 03:36:21 +0000
ROA not before: Sat 02 Dec 2023 03:36:21 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 400536
IP address blocks: 103.99.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Feb 2024 10:13:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94 (0x5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A27AB/serialNumber=59D588125A716698738D1D1E9E6D8A68D7409B27
Validity
Not Before: Dec 2 03:36:21 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=656aa635-ccb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:70:a9:14:2d:c1:1f:36:ce:fe:e6:e3:62:4f:
a1:84:7d:80:0a:2b:24:bd:78:f8:a3:8f:38:b8:54:
30:36:99:1d:23:24:dc:e0:e6:29:82:04:e8:ce:eb:
f4:6c:42:c5:d4:04:d8:8b:85:89:5a:df:47:c5:18:
8b:1a:de:38:4f:f1:ed:39:cb:2b:c3:e8:c7:c4:df:
32:18:8b:19:34:54:43:e5:63:73:2e:c9:2d:c0:fc:
33:b6:70:fd:a0:b0:92:39:5c:94:61:e4:c2:85:b5:
67:c3:f1:fb:0d:8b:bd:d3:d8:41:0d:20:35:88:fb:
02:f4:b5:f4:b4:19:56:19:f7:61:c3:9b:76:e6:17:
72:fd:28:69:61:78:9a:ca:91:74:6d:29:90:c0:03:
36:55:4c:dc:6c:17:e1:03:ad:cc:1c:dc:2b:76:53:
6c:11:ea:a7:28:ca:92:bd:13:04:62:64:4f:87:dc:
3c:e6:38:f8:4f:cd:7c:f5:44:04:8a:bb:2a:e4:62:
9a:af:3a:51:3c:e0:97:7b:ca:88:fc:47:a4:64:be:
76:6b:60:13:2b:34:32:cf:c0:aa:7d:cd:23:a7:46:
6e:a4:7f:95:f3:68:04:cc:d0:0c:74:42:92:0d:1c:
c1:e6:f3:18:ca:4f:1b:a6:8b:87:b2:7c:c1:07:96:
bc:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:6C:AB:10:46:FE:2E:E2:A6:C0:0F:35:F8:02:9C:BE:07:29:91:EA
X509v3 Authority Key Identifier:
keyid:59:D5:88:12:5A:71:66:98:73:8D:1D:1E:9E:6D:8A:68:D7:40:9B:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/WdWIElpxZphzjR0enm2KaNdAmyc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdWIElpxZphzjR0enm2KaNdAmyc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/F5F4890690C311EE89C55823C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.55.0/24
Signature Algorithm: sha256WithRSAEncryption
39:d9:4a:76:4f:f4:54:05:e5:91:7f:9b:69:bb:16:dc:0c:69:
32:0c:06:09:f1:26:3d:da:08:86:67:c2:e7:9d:95:13:79:54:
2b:c5:be:a5:53:62:5e:bd:bd:16:93:f5:bd:23:3a:ce:7d:49:
8c:4c:08:58:09:c7:eb:89:d8:e4:3d:80:ee:f2:d2:f7:fb:cf:
c0:e2:2a:f7:41:fe:c2:51:61:82:0b:40:bb:50:4c:fd:34:0f:
0c:94:51:56:f2:84:37:ea:27:8d:c0:74:4d:d6:68:91:9b:8a:
48:7d:e8:9a:6d:fa:3f:93:84:70:1f:1d:48:91:6e:12:e0:8b:
50:e6:cf:27:64:48:52:6b:52:90:ec:27:a9:c5:de:d5:21:9f:
c5:25:93:da:18:5d:0b:82:02:7a:99:77:c1:fa:35:af:c8:21:
22:57:7c:4f:10:e5:64:ae:24:06:02:22:b4:39:9b:f4:4d:c0:
a5:5b:0c:1d:22:d6:a0:dd:60:be:a7:b4:10:2e:60:fe:a8:18:
1a:00:d0:bc:61:1f:a2:da:a1:24:7b:f8:82:40:3a:da:04:6c:
e3:a7:10:df:2e:c9:31:42:fb:f1:b3:04:a3:bc:6a:50:c1:32:
c4:32:b6:09:a7:f7:6b:d9:2a:d9:9a:46:e8:02:92:3f:f5:4f:
70:90:03:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 3 13:59:24 2024 by rpki-client on console-fra.rpki-client.org