Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C08FA/ADCB15FE95C311EAAE620149C4F9AE02/F5231922306A11ECAC7AA64DC4F9AE02.roa
File: F5231922306A11ECAC7AA64DC4F9AE02.roa (raw, json)
Hash identifier: DW6GXuFqmbLLBvEP9Oj0wbHyJDFfIIDqliKXRZK2DuI=
Subject key identifier: 3B:A5:3A:31:98:EB:72:61:90:F9:55:ED:BB:3C:70:BF:75:2A:32:C0
Certificate issuer: /CN=A91C08FA/serialNumber=A11E2C2179B36A9647B951FC602D779307BFAE6E
Certificate serial: 07E9
Authority key identifier: A1:1E:2C:21:79:B3:6A:96:47:B9:51:FC:60:2D:77:93:07:BF:AE:6E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oR4sIXmzapZHuVH8YC13kwe_rm4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C08FA/ADCB15FE95C311EAAE620149C4F9AE02/F5231922306A11ECAC7AA64DC4F9AE02.roa
Signing time: Tue 16 May 2023 23:04:15 +0000
ROA not before: Tue 16 May 2023 23:04:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147045
IP address blocks: 103.15.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jun 2024 22:28:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2025 (0x7e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C08FA/serialNumber=A11E2C2179B36A9647B951FC602D779307BFAE6E
Validity
Not Before: May 16 23:04:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64640bef-903f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:25:e1:ad:bb:8f:2c:93:48:7a:96:20:51:95:
8b:d5:41:d4:7d:40:68:30:d6:48:b0:bd:9f:34:f9:
06:ca:a1:13:e4:9d:e4:7a:65:8f:6d:8a:ca:d6:63:
75:e3:f0:0a:3e:15:89:37:23:10:83:52:c3:81:48:
b1:a6:d6:2b:07:53:e2:35:b7:f0:93:ee:90:ca:00:
36:c4:64:e2:df:20:17:7f:e6:a2:1c:12:1e:5f:f0:
f0:33:4d:d5:ad:92:8a:61:aa:fa:68:38:06:ff:46:
96:e2:36:1a:2c:11:c3:01:ca:7b:6f:78:3e:dd:4f:
c9:78:b0:28:25:53:44:92:ec:54:93:78:52:2f:f3:
b2:98:5a:50:5d:dc:e0:47:71:94:95:32:fe:28:23:
d2:d5:58:d8:f5:47:44:b8:e7:a6:84:7e:3c:dc:f7:
97:fe:61:aa:c7:0b:b0:9b:76:f6:e1:46:a5:10:6d:
eb:ea:4f:e6:e8:d2:2e:c9:1c:01:b2:e3:97:43:0f:
63:8d:be:e4:c4:e3:45:f8:11:50:fe:55:bb:b4:26:
12:e1:ae:2b:ab:37:15:5b:ec:f9:b3:95:a9:33:2b:
0e:86:9d:51:6a:97:a9:76:90:9b:06:60:5f:69:92:
19:79:29:b0:ce:0e:4a:16:ab:3d:09:9b:1f:4d:b2:
8c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:A5:3A:31:98:EB:72:61:90:F9:55:ED:BB:3C:70:BF:75:2A:32:C0
X509v3 Authority Key Identifier:
keyid:A1:1E:2C:21:79:B3:6A:96:47:B9:51:FC:60:2D:77:93:07:BF:AE:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C08FA/ADCB15FE95C311EAAE620149C4F9AE02/oR4sIXmzapZHuVH8YC13kwe_rm4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oR4sIXmzapZHuVH8YC13kwe_rm4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C08FA/ADCB15FE95C311EAAE620149C4F9AE02/F5231922306A11ECAC7AA64DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.15.126.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:76:82:74:8a:97:d2:a7:b4:ab:18:e0:ae:47:d5:fd:bd:56:
0b:4c:7f:d7:9c:ef:68:dc:73:6c:62:6f:04:f6:86:28:63:6b:
78:6c:75:76:7e:a7:0b:5b:77:18:6f:02:03:81:77:fe:3d:f4:
ca:62:51:f5:c4:62:80:ea:7b:5a:9e:13:b0:ba:96:e6:18:3e:
b3:f4:63:c2:40:5e:1b:a2:05:0c:91:20:1a:4a:80:11:35:d8:
12:69:56:81:55:54:c0:bd:a0:fe:87:25:3b:7a:2f:d3:57:2f:
73:9c:b4:ae:47:eb:35:4b:d4:7b:a8:f5:f7:19:8c:f5:ac:fb:
ff:aa:ce:c2:fc:df:e2:fc:da:bf:f4:d4:a9:ec:4c:0e:bf:c6:
bb:e0:77:c2:d8:0f:98:a5:ed:c4:e0:44:c1:e6:3d:16:03:e2:
1b:03:e0:8b:42:cd:ff:e9:ba:f7:cd:55:23:26:21:a6:e5:e3:
b4:0c:59:9f:45:92:f1:45:53:b2:03:3b:6a:11:82:07:61:c7:
ab:ef:ee:39:47:3d:4f:a9:18:72:15:6d:9b:9d:79:10:a6:f8:
67:0c:2d:47:fa:31:db:03:26:28:47:be:8f:8f:4a:b5:25:cd:
85:e8:f4:0c:05:cf:e4:66:cf:48:5d:f9:c2:d8:05:f3:57:27:
9c:12:14:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:39 2024 by rpki-client on console-fra.rpki-client.org