Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/23D6FD58217011EF9799C642C4F9AE02.roa
File: 23D6FD58217011EF9799C642C4F9AE02.roa (raw, json)
Hash identifier: ubrhLWGMISvIO9iGng0OoitTKLD7LFURpbLGFojMsNk=
Subject key identifier: B1:42:45:EB:A5:63:A6:9F:4C:F3:4C:84:A8:20:DA:81:C8:9B:17:E9
Certificate issuer: /CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256
Certificate serial: 02
Authority key identifier: E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/23D6FD58217011EF9799C642C4F9AE02.roa
Signing time: Mon 03 Jun 2024 06:11:40 +0000
ROA not before: Mon 03 Jun 2024 06:11:40 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 197537
IP address blocks: 103.108.174.0/24 maxlen: 24
103.108.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Jun 2024 16:31:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256
Validity
Not Before: Jun 3 06:11:40 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=665d5e9b-0c9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c3:01:ee:91:db:9b:65:6c:40:05:9c:b8:52:
c5:eb:88:cb:bd:55:fc:ff:9a:cf:40:6e:4e:ad:5a:
69:ae:8d:0e:fc:0d:65:c0:76:4f:db:65:be:41:4e:
36:e3:c2:7f:29:c8:a7:25:78:db:f7:06:c0:19:f0:
a7:2f:da:3e:b0:e5:9a:f4:8b:08:0b:13:cb:cb:86:
4c:ce:1c:6b:0f:97:f3:16:1d:93:de:66:3e:9e:90:
2f:36:1e:e7:43:2a:13:5b:cc:4e:2f:7d:65:d1:9f:
0a:0d:7e:dd:16:1d:11:87:bc:01:f3:e6:ee:31:94:
df:6f:59:47:1e:df:f3:80:2b:5c:f5:6d:84:d0:cc:
a5:eb:5c:ac:2e:9a:80:68:37:8e:2e:70:51:3f:57:
65:53:bc:45:7e:86:cb:19:a5:55:93:8a:92:f5:2d:
f5:46:23:41:05:bf:84:05:39:6e:f9:31:1e:59:fd:
5d:12:f7:7e:a0:85:83:cd:dd:be:78:d9:38:26:54:
36:62:cf:b8:2c:ce:d9:b2:40:ad:b6:50:6f:93:b6:
7a:c2:b3:71:7c:16:9c:aa:f8:bc:d9:ab:d9:61:19:
85:51:21:31:0b:87:d5:20:1f:dd:59:56:71:9a:31:
cb:7e:1b:2d:94:1a:65:4b:8d:d3:66:b7:72:12:82:
d1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:42:45:EB:A5:63:A6:9F:4C:F3:4C:84:A8:20:DA:81:C8:9B:17:E9
X509v3 Authority Key Identifier:
keyid:E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/23D6FD58217011EF9799C642C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.108.174.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:a5:e3:36:b1:ef:6e:b5:01:be:94:6f:05:5e:63:cc:d8:9a:
3d:5e:c8:11:21:ae:44:63:a4:82:94:0d:1a:43:18:b6:44:41:
27:85:9d:67:9a:8b:5e:76:cd:d7:13:2d:ba:08:c8:31:75:66:
08:4d:7c:94:16:d0:13:fc:c4:33:b5:58:fc:f6:dd:67:95:fd:
9f:a2:67:50:42:78:e8:94:8c:6f:a2:2b:45:1c:eb:3a:be:14:
c3:69:b4:dc:37:17:23:c5:ea:f3:fb:1d:71:cd:e5:d9:9f:aa:
5c:a2:9e:d6:a9:e3:1b:70:97:4d:06:73:d5:e4:d1:1a:b5:b6:
94:aa:85:44:ab:42:06:a0:27:ca:d5:db:8f:1b:b6:82:80:37:
fb:46:49:b9:62:6b:79:7c:8a:99:9e:e3:08:d3:7f:75:cb:4a:
7f:95:b1:02:da:55:c4:6c:39:20:72:b1:36:f1:60:7c:62:b9:
f4:f6:e8:2e:ca:8f:55:78:a2:1d:c6:a7:d0:a3:ea:b4:1a:7b:
b7:46:81:a6:6a:eb:62:28:af:02:01:a4:75:52:51:c7:2c:b9:
d3:dd:52:36:3e:4f:d5:ad:f2:80:33:9e:9c:1b:c7:46:db:9d:
6c:23:31:85:2c:59:ae:75:cf:89:8b:ee:1c:a1:ba:62:d0:f6:
be:1c:54:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 20:37:32 2024 by rpki-client on console-fra.rpki-client.org