Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/73BABA28170F11EFB93DB229C4F9AE02.roa
File: 73BABA28170F11EFB93DB229C4F9AE02.roa (raw, json)
Hash identifier: 4YzwrQN5gijy3LB4p+lmTEOGbTfoC2rLt4//h0sWr1U=
Subject key identifier: 1D:82:61:FC:E1:C8:0D:07:7B:CB:CF:F5:65:BA:7C:C8:F7:2C:DF:63
Certificate issuer: /CN=A91BB07D/serialNumber=D4310690DCEB7EE4A18DA3579ACAD174818646A3
Certificate serial: 9C
Authority key identifier: D4:31:06:90:DC:EB:7E:E4:A1:8D:A3:57:9A:CA:D1:74:81:86:46:A3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DEGkNzrfuShjaNXmsrRdIGGRqM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/73BABA28170F11EFB93DB229C4F9AE02.roa
Signing time: Tue 21 May 2024 01:14:21 +0000
ROA not before: Tue 21 May 2024 01:14:21 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 216458
IP address blocks: 103.117.136.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 23 May 2024 06:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156 (0x9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BB07D/serialNumber=D4310690DCEB7EE4A18DA3579ACAD174818646A3
Validity
Not Before: May 21 01:14:21 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=664bf56c-2511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e5:f3:13:34:ce:dc:9d:0e:a3:f8:61:91:16:
6e:f7:27:0f:90:e5:d8:10:da:54:ac:76:6d:35:ac:
a2:a6:3d:e4:31:e3:90:cc:d4:b0:8e:c5:b0:0c:98:
87:60:b5:29:56:94:fa:53:c7:b4:38:ce:7a:8b:b8:
4f:34:7c:55:57:26:8e:16:d6:30:22:ca:58:2c:98:
dd:91:d8:a4:85:02:8c:b0:63:5a:62:b4:63:b3:44:
56:ec:68:ac:6c:f3:6a:c3:87:ad:54:bd:d7:0a:11:
e9:33:a5:85:21:9b:46:2d:c7:0c:fa:f7:d7:e2:99:
82:bc:96:ec:ea:2a:cb:a5:51:da:82:fb:9d:45:93:
19:99:aa:c5:71:7d:55:d6:ed:9f:c9:1b:c7:9a:39:
42:7f:7a:3f:57:9f:04:a7:b5:f3:67:1c:b4:a3:c7:
e8:ea:41:93:c2:d0:2b:c3:59:36:f8:44:7b:97:d7:
07:47:f8:33:97:fc:34:e3:dc:d8:e8:82:01:9f:d5:
56:d3:08:c3:78:11:0a:ca:f0:67:72:ee:a9:ca:2e:
a3:66:d0:38:6e:6a:79:8d:5a:04:95:48:7d:77:52:
15:10:22:3f:8d:61:2e:47:80:82:c0:b0:fb:e6:6a:
6f:3f:02:e7:0d:ca:49:df:4a:99:c1:dd:8c:77:bc:
1e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:82:61:FC:E1:C8:0D:07:7B:CB:CF:F5:65:BA:7C:C8:F7:2C:DF:63
X509v3 Authority Key Identifier:
keyid:D4:31:06:90:DC:EB:7E:E4:A1:8D:A3:57:9A:CA:D1:74:81:86:46:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/1DEGkNzrfuShjaNXmsrRdIGGRqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DEGkNzrfuShjaNXmsrRdIGGRqM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB07D/E9B4853C4AC411EE9839386FC4F9AE02/73BABA28170F11EFB93DB229C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.117.136.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:a1:2f:01:c6:00:2d:f6:0b:98:b8:c4:ac:00:70:ff:f8:6f:
db:f8:79:1a:ba:c5:a5:ad:cc:07:f3:ce:b4:91:4a:bc:02:d9:
64:bf:76:09:9c:9d:d4:14:83:5f:f9:81:34:e5:03:33:88:8c:
65:35:cf:68:87:fd:e6:e7:77:e2:70:57:cf:a2:c0:f8:5a:5c:
be:4a:0b:cf:ba:f3:61:55:93:8f:c4:93:28:cd:a1:58:54:22:
cc:d0:1e:52:53:75:ab:54:13:1a:d4:51:52:c9:b4:67:04:54:
3b:be:21:bd:de:d3:00:1a:3e:d0:9b:64:99:3c:81:da:8a:55:
ff:ef:b4:47:02:f0:30:9d:b6:c0:5b:1a:10:0e:21:36:0e:98:
00:e3:7d:33:0b:77:d1:3a:b8:7d:39:04:f5:77:92:b0:2a:4c:
fa:6b:01:ec:a0:04:92:c7:15:75:d5:e6:93:14:45:e3:3a:b7:
cc:17:fe:56:4e:c8:13:1c:ad:f5:fb:c4:43:fe:84:77:e8:9a:
85:53:74:bd:d8:db:1e:03:83:30:05:79:43:88:b3:b3:6e:d6:
99:48:3c:7e:cb:df:1e:e0:7c:e8:5f:81:45:95:e5:c0:30:8f:
19:17:8e:67:5f:ef:ac:d7:ce:f0:e8:83:f9:07:54:03:a9:2b:
d6:16:a9:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:58 2024 by rpki-client on console-ams.rpki-client.org