Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/B4FAAB8A102911EE834FA76EC4F9AE02.roa
File: B4FAAB8A102911EE834FA76EC4F9AE02.roa (raw, json)
Hash identifier: dFo3qGXZ+xKCvdp6fxoHg+CkaTROUgax7YfExFxhtC8=
Subject key identifier: 56:51:4A:C7:2E:3A:ED:DB:41:CE:74:73:4C:E9:66:39:62:2B:AC:33
Certificate issuer: /CN=A91BBD7E/serialNumber=653F2C6B7956BB614509B8F15C1F1DC3398218BD
Certificate serial: 0A
Authority key identifier: 65:3F:2C:6B:79:56:BB:61:45:09:B8:F1:5C:1F:1D:C3:39:82:18:BD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/B4FAAB8A102911EE834FA76EC4F9AE02.roa
Signing time: Wed 21 Jun 2023 11:49:41 +0000
ROA not before: Wed 21 Jun 2023 11:49:41 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 151402
IP address blocks: 103.219.225.0/24 maxlen: 24
2401:a20::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 21 Jun 2023 12:18:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BBD7E/serialNumber=653F2C6B7956BB614509B8F15C1F1DC3398218BD
Validity
Not Before: Jun 21 11:49:41 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=6492e3d5-0340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6c:af:59:18:8c:e1:b5:50:42:99:c8:ec:9f:
69:31:af:d3:b5:a3:39:54:09:a3:4a:f3:9b:6f:90:
8b:26:24:5f:57:ba:71:9d:44:2c:24:93:60:67:90:
ce:40:c7:b8:f8:73:64:6e:32:02:af:ec:0b:0b:53:
66:f7:a0:f7:9f:26:fd:ce:8a:5b:de:30:99:40:a2:
56:33:9b:ec:7c:af:88:13:cf:07:9e:7a:8d:d2:4a:
92:61:95:1f:f6:9f:bd:e0:fa:d2:c8:80:ca:d5:48:
bb:33:fa:1a:96:b1:41:af:6a:32:e6:d4:50:49:1e:
5d:cf:36:fb:e5:ea:98:f1:47:6a:e7:bb:ec:d1:16:
47:80:99:29:b4:f7:76:f8:99:b6:29:6f:e1:69:e3:
8e:84:e9:56:5f:9a:08:c5:2a:2d:f4:e0:ab:55:ac:
ac:dc:a1:f0:d3:7e:73:30:7f:ff:68:5b:76:c3:03:
24:26:5c:58:9a:00:60:44:c6:b6:91:d8:cf:a0:4a:
5d:b2:99:22:74:01:63:d1:ee:de:26:96:44:6e:00:
a8:ba:72:6d:58:fc:e5:d5:2b:ad:c1:ef:7a:ea:eb:
a3:13:36:61:12:5e:18:44:9a:d2:19:80:6f:cc:c3:
04:aa:1e:fc:54:80:53:ea:16:09:af:c0:60:d5:23:
21:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:51:4A:C7:2E:3A:ED:DB:41:CE:74:73:4C:E9:66:39:62:2B:AC:33
X509v3 Authority Key Identifier:
keyid:65:3F:2C:6B:79:56:BB:61:45:09:B8:F1:5C:1F:1D:C3:39:82:18:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/B4FAAB8A102911EE834FA76EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.219.225.0/24
IPv6:
2401:a20::/32
Signature Algorithm: sha256WithRSAEncryption
da:99:f7:78:a2:38:e7:1e:5e:dd:d5:6b:41:a0:c5:5f:21:26:
e1:dc:aa:0a:1b:bf:cb:f5:75:f7:32:15:5e:f8:d0:9c:4b:34:
fa:d1:49:1c:f9:db:47:f9:0e:64:30:2e:a2:49:cc:b4:d0:03:
1c:14:a1:96:38:e6:58:ed:7f:90:55:7f:37:12:db:47:7b:a4:
bb:67:f8:cb:95:03:a7:09:51:bf:bf:81:eb:91:bc:d5:d1:f4:
24:70:f5:a3:63:11:6a:b7:d7:11:53:ea:9d:72:bd:67:52:b5:
82:23:e2:af:b4:85:d1:2f:ed:cc:f6:a8:4b:02:ad:78:77:d6:
1e:1a:2f:c6:92:53:e4:f4:77:99:32:8a:72:1e:e1:04:94:a1:
fc:2a:d9:d3:b7:ba:dd:66:10:46:75:93:96:6c:54:41:c5:df:
0f:49:32:e8:79:fe:12:7c:bf:fa:ff:63:9b:19:df:27:26:5b:
1e:a9:23:43:72:5e:22:2f:48:c2:50:ff:1f:90:b1:32:d4:2a:
c2:d1:51:96:12:37:35:7e:cb:e4:cb:9f:10:4b:7a:57:b5:20:
b3:c4:33:4b:0e:f5:09:15:ad:21:b4:93:7c:88:5b:f1:89:fc:
af:04:8c:f3:78:be:d0:b2:d5:dd:22:d5:30:a2:22:1d:d5:bb:
c6:e5:38:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:23 2024 by rpki-client on console-ams.rpki-client.org