Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4179/43E4AF26B95111EBAA60CD3CC4F9AE02/61A51A9AF77711ECB847DF59C4F9AE02.roa
File: 61A51A9AF77711ECB847DF59C4F9AE02.roa (raw, json)
Hash identifier: NchIdVm0SOkfKnOKdkyWpXQca/5GVGbQblV/X6VhK2I=
Subject key identifier: BE:75:90:B3:54:39:C2:1D:91:8F:54:3D:A0:89:4F:64:11:FA:F7:F9
Certificate issuer: /CN=A91A4179/serialNumber=1641D13FAD8A20AB0A94F625AEDA106BE2A66E17
Certificate serial: 0556
Authority key identifier: 16:41:D1:3F:AD:8A:20:AB:0A:94:F6:25:AE:DA:10:6B:E2:A6:6E:17
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FkHRP62KIKsKlPYlrtoQa-Kmbhc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A4179/43E4AF26B95111EBAA60CD3CC4F9AE02/61A51A9AF77711ECB847DF59C4F9AE02.roa
Signing time: Sat 03 Aug 2024 00:32:37 +0000
ROA not before: Sat 03 Aug 2024 00:32:37 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 138630
IP address blocks: 103.153.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Oct 2024 08:51:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1366 (0x556)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A4179/serialNumber=1641D13FAD8A20AB0A94F625AEDA106BE2A66E17
Validity
Not Before: Aug 3 00:32:37 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66ad7aa5-7858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d6:5b:a2:19:de:88:55:08:c3:89:71:70:58:
89:2b:29:9e:fa:01:5f:c4:20:0e:7e:e5:32:63:b2:
88:e7:24:6d:64:1f:fe:60:c3:13:6e:a7:f0:b1:ae:
0b:3a:fc:04:6e:d8:54:04:bb:da:a3:c8:1a:fc:86:
17:98:7d:45:b6:0c:1e:c9:c4:87:ec:5a:52:8f:74:
9b:41:5d:a3:e6:65:5f:0c:e3:66:49:e5:b7:17:b8:
63:0b:97:52:e8:2b:d3:60:8d:24:c1:52:40:df:c7:
b9:bd:da:10:63:08:07:b8:12:1a:a0:1c:9d:26:5c:
93:e1:38:ed:52:2f:89:8b:e3:63:11:4e:49:10:7d:
84:ec:3c:93:00:cd:9b:7c:44:02:22:85:4b:94:db:
2e:3d:5a:de:ca:f3:45:cd:ca:5f:f2:70:73:65:06:
aa:a2:b8:91:8b:48:62:7c:a6:ff:cd:5f:84:05:06:
f4:2c:28:69:f9:e2:ae:3a:86:07:18:2d:4d:af:8b:
d9:f9:60:af:78:95:d3:54:4b:0a:14:cb:c5:53:c3:
6d:81:65:05:2c:26:8c:a8:45:a7:96:c5:5b:77:f0:
c8:b7:e0:f4:10:9c:ea:c9:a9:36:1d:a7:2d:da:e0:
54:9f:76:58:ca:3e:77:31:2c:61:2a:60:4f:d1:69:
c1:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:75:90:B3:54:39:C2:1D:91:8F:54:3D:A0:89:4F:64:11:FA:F7:F9
X509v3 Authority Key Identifier:
keyid:16:41:D1:3F:AD:8A:20:AB:0A:94:F6:25:AE:DA:10:6B:E2:A6:6E:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A4179/43E4AF26B95111EBAA60CD3CC4F9AE02/FkHRP62KIKsKlPYlrtoQa-Kmbhc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FkHRP62KIKsKlPYlrtoQa-Kmbhc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4179/43E4AF26B95111EBAA60CD3CC4F9AE02/61A51A9AF77711ECB847DF59C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.5.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:32:a4:5f:fb:16:70:af:3f:13:a8:42:dd:7e:84:0e:4d:26:
c9:0d:ba:42:31:be:29:2f:e0:0d:37:9f:d7:72:37:d5:a9:8d:
ee:b5:e8:7a:bc:03:e2:97:2f:65:3c:5d:a7:6a:28:2f:69:43:
63:d2:58:48:27:c5:26:29:16:e3:b7:0d:8b:5f:2a:5b:0a:0a:
3b:87:1f:b8:61:13:2d:ad:ce:de:40:81:1c:81:19:29:66:26:
49:7d:a0:fc:1d:e4:d0:35:e1:07:1f:ca:a7:29:5e:ae:09:be:
b5:62:e0:5f:d9:44:cc:4b:be:b3:68:ad:bd:b3:a0:8b:c1:3c:
2e:d7:1b:9b:8a:e4:0f:77:71:ed:4d:bc:65:04:06:dd:35:b8:
7e:f8:a8:a8:c1:c1:90:ae:40:66:db:75:34:52:6e:97:63:60:
ce:c4:58:d6:b3:4d:75:b0:51:3f:64:d0:d2:7a:f3:61:6a:d9:
3a:26:6a:02:c8:5b:56:a4:70:4f:43:93:9c:7e:ca:52:84:46:
0a:04:c9:19:f7:b7:2d:d6:a9:d4:e4:dd:94:7e:7e:7d:14:17:
30:f0:58:9a:c8:79:83:42:ec:e8:bd:f7:5d:0d:57:a6:2d:50:
44:a2:3e:19:4d:50:4c:f5:e2:5c:45:ad:72:e0:46:c6:e6:96:
d7:06:46:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 17 10:42:10 2024 by rpki-client on console-fra.rpki-client.org