Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/3091AB2A81F111EE9CCDE11AC4F9AE02.roa
File: 3091AB2A81F111EE9CCDE11AC4F9AE02.roa (raw, json)
Hash identifier: 8s9RZoWhuXaL/OgRzbyz5adndAQTYe/JD4RJBSvRHGk=
Subject key identifier: 39:B2:90:15:78:ED:B6:98:7B:3C:40:73:47:BC:77:50:DB:A3:E0:B8
Certificate issuer: /CN=A91BDCF1/serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A
Certificate serial: 029D
Authority key identifier: C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/3091AB2A81F111EE9CCDE11AC4F9AE02.roa
Signing time: Wed 07 Feb 2024 03:15:33 +0000
ROA not before: Wed 07 Feb 2024 03:15:33 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 54600
IP address blocks: 103.178.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Sep 2024 11:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 669 (0x29d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDCF1/serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A
Validity
Not Before: Feb 7 03:15:33 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=65c2f5d4-2708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:59:a8:d7:e7:83:0e:b7:9e:68:d1:f9:d9:1b:
fa:65:52:9b:54:73:c0:cd:05:5d:c3:a9:9b:c6:f5:
44:a0:89:ca:67:2c:f6:12:c5:42:7b:5b:c3:df:23:
5f:7d:a9:d6:4e:83:37:7f:63:76:39:36:2b:ff:5e:
3e:17:ad:69:ec:73:c7:a7:71:f7:92:f1:0d:d8:7a:
99:79:0b:cd:cf:de:bf:b3:56:14:86:7e:20:8d:45:
6f:8b:7f:4a:da:e2:05:1b:8b:cc:bd:f8:3a:92:1f:
52:c5:96:cb:6c:1e:f2:03:d4:1d:79:71:86:b0:80:
0a:1d:68:28:14:6d:11:e8:58:bb:5e:13:dc:1a:6b:
df:06:6b:5c:06:13:77:94:01:c2:6a:e6:8b:15:3c:
13:26:e9:56:8f:02:02:74:87:36:a5:12:b3:4b:00:
ae:1f:cf:3b:c5:96:b5:ff:d3:0b:58:51:74:29:52:
a7:aa:79:21:e2:e8:3d:47:5c:b1:12:13:9a:58:2f:
2d:9b:15:41:c2:85:99:22:c9:54:99:85:f5:d0:72:
82:74:81:6c:55:0f:a6:14:b1:b5:cc:bb:af:93:30:
0f:cd:1d:a9:32:ee:e5:a9:1f:38:1f:df:39:64:ef:
c8:ca:d4:c0:36:14:09:fb:b3:35:f5:d9:c6:f9:e6:
ce:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B2:90:15:78:ED:B6:98:7B:3C:40:73:47:BC:77:50:DB:A3:E0:B8
X509v3 Authority Key Identifier:
keyid:C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/3091AB2A81F111EE9CCDE11AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.178.57.0/24
Signature Algorithm: sha256WithRSAEncryption
34:dc:78:bf:84:63:df:eb:97:0a:ba:be:c4:44:49:cb:b8:a5:
69:55:f0:c0:4e:68:fd:cb:98:53:37:a3:d6:2d:41:00:08:73:
17:68:23:0b:9e:76:cf:0f:70:7b:f9:2b:99:a2:7a:5d:ee:09:
ea:d1:d7:23:47:0f:f6:b1:5d:00:2b:a2:90:6d:ea:ee:ea:83:
4c:a7:38:5a:07:ab:12:cf:23:2e:c5:d1:de:6d:0b:f8:2b:f9:
99:c2:d8:a1:86:0c:f5:56:b0:e4:26:7d:e1:3a:88:18:f8:50:
c1:fa:4a:42:f6:83:8f:56:c9:bf:b2:9c:ef:ff:02:f6:3d:23:
a0:b1:e5:8a:dc:d0:d3:62:db:f4:62:71:f5:57:6a:c9:41:a6:
e7:29:0c:ea:ab:76:40:20:80:fa:7f:b0:aa:51:00:64:18:a6:
71:bd:bd:34:f2:cb:39:28:fa:fb:cb:fa:50:65:44:c3:41:0e:
29:e8:a0:c0:5f:9a:96:8d:f4:75:ba:89:e5:0e:90:34:94:1b:
f9:b5:b5:cd:bc:40:00:e2:6c:35:33:2c:c3:04:9a:30:d3:a6:
1e:ae:cd:ac:28:a3:a9:06:ff:10:d2:b6:d7:33:ae:c1:a6:90:
5f:b8:3c:79:64:93:b6:44:3e:42:db:9e:27:09:ab:56:8d:63:
60:72:c8:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 6 12:54:51 2024 by rpki-client on console-fra.rpki-client.org