Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE63C/E27A55A6456311EDAAB5E164C4F9AE02/4010EC26456811ED94F35B6BC4F9AE02.roa
File: 4010EC26456811ED94F35B6BC4F9AE02.roa (raw, json)
Hash identifier: o/0z6eqVRVSlCoRA7VHMF4C80D97+OmikMfzGtKn4vo=
Subject key identifier: FD:C1:2F:2C:44:43:3E:29:83:C8:6A:54:45:D9:5D:D3:EA:55:6A:98
Certificate issuer: /CN=A91AE63C/serialNumber=518C38C4B03644E02772272170B85297713F8CDF
Certificate serial: E3
Authority key identifier: 51:8C:38:C4:B0:36:44:E0:27:72:27:21:70:B8:52:97:71:3F:8C:DF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UYw4xLA2ROAncichcLhSl3E_jN8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AE63C/E27A55A6456311EDAAB5E164C4F9AE02/4010EC26456811ED94F35B6BC4F9AE02.roa
Signing time: Mon 11 Dec 2023 04:35:27 +0000
ROA not before: Mon 11 Dec 2023 04:35:27 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 149049
IP address blocks: 103.177.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 15 Oct 2024 22:35:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227 (0xe3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AE63C/serialNumber=518C38C4B03644E02772272170B85297713F8CDF
Validity
Not Before: Dec 11 04:35:27 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=6576918f-014f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:19:c9:1f:a1:3a:2b:1b:c8:f1:f7:bc:e2:ca:
ac:a6:0b:6b:32:88:8c:45:2f:07:c7:a3:64:ad:1e:
b5:75:73:02:c9:b0:ef:64:2e:e6:ee:db:4d:49:0e:
1f:fe:ce:80:93:d3:c3:33:58:34:74:05:a5:21:98:
a8:af:6c:ae:e9:03:a8:fc:e9:49:0f:3b:7d:dd:59:
12:4b:6b:f1:31:5f:1b:4c:ec:1d:9f:8c:26:8a:fb:
51:6c:1f:e1:09:a9:d1:7b:94:8d:2a:ed:b8:cd:1a:
00:d8:23:69:ee:6f:4c:37:81:e1:ae:a6:c2:39:5d:
74:ff:53:b7:1a:bf:6b:06:bb:20:f5:73:72:f0:47:
1f:09:30:cf:3a:19:cb:c5:f4:9c:7e:65:17:e6:d1:
ab:54:b7:96:65:0c:9a:24:6c:29:b7:45:b9:02:71:
db:19:cd:4b:77:c9:5f:f9:c1:92:a5:81:24:e4:38:
f7:c2:64:41:5f:a4:cb:75:bd:4d:cc:af:68:86:fc:
e9:3e:8d:0e:9a:3e:e4:92:69:27:8e:15:36:bd:52:
dc:87:ac:7c:53:49:6d:83:62:ef:af:dc:5a:7d:99:
ef:7f:11:1c:ee:70:ff:e3:f4:3d:a6:59:7a:d9:7c:
d7:48:d7:22:a1:2d:88:06:a1:17:30:4d:1f:88:b2:
ae:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:C1:2F:2C:44:43:3E:29:83:C8:6A:54:45:D9:5D:D3:EA:55:6A:98
X509v3 Authority Key Identifier:
keyid:51:8C:38:C4:B0:36:44:E0:27:72:27:21:70:B8:52:97:71:3F:8C:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AE63C/E27A55A6456311EDAAB5E164C4F9AE02/UYw4xLA2ROAncichcLhSl3E_jN8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UYw4xLA2ROAncichcLhSl3E_jN8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE63C/E27A55A6456311EDAAB5E164C4F9AE02/4010EC26456811ED94F35B6BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.177.116.0/24
Signature Algorithm: sha256WithRSAEncryption
91:7b:2b:39:7e:ea:06:51:67:e4:59:91:55:d5:41:b4:57:94:
33:2f:aa:f1:9b:a1:62:95:95:21:08:b4:ed:7b:20:30:61:7e:
f1:f8:38:33:04:52:6b:94:21:3b:a0:43:bc:96:37:8d:27:09:
2f:c5:d9:db:fd:0b:17:18:88:24:37:8a:b5:d9:90:13:3d:ba:
2b:92:35:4f:a6:2e:10:1b:a9:eb:a9:4e:a0:4f:20:ae:1a:ce:
5a:2e:04:c1:e3:06:cd:ea:e2:58:9f:25:94:18:d5:06:7e:1e:
94:12:a2:5d:f5:c8:15:6b:d8:fc:52:0b:96:39:d8:57:2a:b8:
50:a6:e5:f8:7b:b4:a2:c8:db:e7:e5:bb:76:2c:65:6a:68:8a:
b4:46:b1:68:ac:34:1d:0f:76:8b:62:11:3b:6a:09:66:bd:54:
98:a9:ce:c2:92:53:14:1a:42:34:3d:4f:b0:8d:1a:f9:9d:c6:
ac:0e:c4:99:dd:46:c6:3c:d2:7b:68:ba:57:26:9a:15:8b:6d:
1b:7d:be:88:5e:cf:f5:a6:97:10:e1:b6:53:4a:c8:5c:86:4a:
19:89:c6:11:91:a4:09:0c:46:ce:5a:a9:b9:aa:4b:54:42:5e:
e1:8c:e8:f1:9e:6d:61:6f:5c:df:1a:ef:44:86:0a:c5:d0:e9:
a1:06:35:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 15 23:26:15 2024 by rpki-client on console-fra.rpki-client.org