Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF404/544081D2F4D811ED98046C4AC4F9AE02/301EA27EF87111ED9F0E3266C4F9AE02.roa
File: 301EA27EF87111ED9F0E3266C4F9AE02.roa (raw, json)
Hash identifier: On7Z1vockyZEKK7gNWsKUIwOhSUcyIf6+Yk/jmOGQ3I=
Subject key identifier: 4F:21:87:33:3C:2D:8E:7A:0E:8F:86:C4:4B:A5:BC:BC:24:D2:A2:01
Certificate issuer: /CN=A91AF404/serialNumber=FA012740DCA493CCE203AFAADE8EBC719AAC23B4
Certificate serial: 05
Authority key identifier: FA:01:27:40:DC:A4:93:CC:E2:03:AF:AA:DE:8E:BC:71:9A:AC:23:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gEnQNykk8ziA6-q3o68cZqsI7Q.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AF404/544081D2F4D811ED98046C4AC4F9AE02/301EA27EF87111ED9F0E3266C4F9AE02.roa
Signing time: Mon 22 May 2023 07:20:54 +0000
ROA not before: Mon 22 May 2023 07:20:54 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 135327
IP address blocks: 103.197.104.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Jun 2023 18:45:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AF404/serialNumber=FA012740DCA493CCE203AFAADE8EBC719AAC23B4
Validity
Not Before: May 22 07:20:54 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=646b17d6-9772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:33:b8:1e:3d:00:8f:fa:ee:58:8b:31:73:fc:
fb:31:60:91:37:9e:02:17:44:ce:86:8b:08:12:16:
73:04:1e:a4:ff:2b:17:f3:46:ec:cc:3e:59:0c:55:
41:93:e0:75:1c:ad:54:a9:ff:fd:73:7c:f1:3f:61:
63:c4:52:15:5b:43:41:3f:dd:d0:2d:04:45:0d:66:
35:2d:9b:67:dc:69:fb:8c:e8:ae:0b:b7:4f:a5:f7:
c6:d1:eb:3e:73:49:54:6d:a8:44:1f:dd:13:a1:96:
0a:8a:20:61:52:49:1f:a3:70:49:7d:b1:6e:e7:4d:
79:f2:14:54:49:b0:fd:15:1c:f7:e8:ec:cf:a5:4d:
2c:ba:c0:ee:10:3b:aa:b6:03:7f:e9:95:d8:fc:22:
ea:ef:3d:fa:df:7e:17:cd:48:21:44:e9:64:2f:31:
58:d2:b6:f1:a0:d7:fa:c5:af:8c:93:85:87:35:2c:
ad:eb:02:ce:a2:97:35:8e:d5:61:af:df:9e:85:0c:
b4:b0:83:3e:ae:0d:0b:aa:7e:b3:d1:e0:88:49:06:
cf:ed:24:a2:9f:51:4c:db:a0:fd:89:ed:2b:a3:3f:
c5:36:61:d9:49:93:43:5c:82:29:25:eb:03:4f:ae:
09:be:be:91:09:c7:80:2c:33:34:da:71:1a:a7:4c:
9b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:21:87:33:3C:2D:8E:7A:0E:8F:86:C4:4B:A5:BC:BC:24:D2:A2:01
X509v3 Authority Key Identifier:
keyid:FA:01:27:40:DC:A4:93:CC:E2:03:AF:AA:DE:8E:BC:71:9A:AC:23:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AF404/544081D2F4D811ED98046C4AC4F9AE02/-gEnQNykk8ziA6-q3o68cZqsI7Q.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gEnQNykk8ziA6-q3o68cZqsI7Q.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF404/544081D2F4D811ED98046C4AC4F9AE02/301EA27EF87111ED9F0E3266C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.197.104.0/23
Signature Algorithm: sha256WithRSAEncryption
57:26:e5:d2:35:ed:f3:a8:14:54:1c:96:09:6f:36:32:e4:ee:
8c:2b:66:3e:11:92:da:ae:1b:9b:17:f7:52:8d:8b:47:2f:55:
4c:aa:69:72:a9:99:ad:87:16:b7:c3:6e:3e:21:d9:f6:26:01:
18:71:33:71:5f:7a:0d:74:3d:ef:a2:98:23:73:9a:8c:84:09:
53:a4:d5:a1:b2:3d:a7:d7:99:74:be:5f:18:43:42:45:d9:b8:
5a:b9:87:c3:b7:14:fb:8d:4b:27:24:93:3d:3f:ea:1b:9b:49:
68:e4:61:94:0c:1a:7d:93:bd:70:b5:34:3d:cd:8f:80:1c:48:
a0:85:4a:8f:b9:7b:ad:fe:6f:8f:d0:ec:a5:d9:19:c2:72:1f:
ed:a1:3e:14:d5:14:9e:ef:ac:b2:e2:20:ef:a9:bc:57:3d:56:
6f:4a:17:da:35:70:fb:8a:67:e0:a0:27:43:ac:4b:62:f4:9f:
d5:67:41:61:cb:a8:01:96:e1:f0:11:49:89:dc:49:c9:18:a6:
f5:88:84:fd:bb:88:5f:4c:2b:6d:ef:06:90:1d:e8:a2:67:b4:
cd:d8:5e:73:bf:9e:30:59:1a:3f:47:31:02:40:54:c9:63:58:
08:12:59:16:84:c2:e6:29:32:b5:09:b4:66:e1:9d:e4:70:f2:
0b:2b:8a:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:37 2024 by rpki-client on console-fra.rpki-client.org