Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/8E1EF5E840C211ED9CBE0577C4F9AE02.roa
File: 8E1EF5E840C211ED9CBE0577C4F9AE02.roa (raw, json)
Hash identifier: Gd0gaOQoHJamzGGCfvsQn4/9JD/Hbv9bu5g/h24nWgg=
Subject key identifier: E6:BB:4E:C2:1C:55:1E:6B:67:4B:E1:DC:32:65:D5:52:69:E1:E3:1B
Certificate issuer: /CN=A91C7B68/serialNumber=C284BA8A88A02116BEE43410E039E909E3029D0D
Certificate serial: 07B3
Authority key identifier: C2:84:BA:8A:88:A0:21:16:BE:E4:34:10:E0:39:E9:09:E3:02:9D:0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woS6ioigIRa-5DQQ4DnpCeMCnQ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/8E1EF5E840C211ED9CBE0577C4F9AE02.roa
Signing time: Sun 30 Jul 2023 21:18:09 +0000
ROA not before: Sun 30 Jul 2023 21:18:09 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 139901
IP address blocks: 103.214.159.0/24 maxlen: 24
144.48.115.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Apr 2024 22:30:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1971 (0x7b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C7B68/serialNumber=C284BA8A88A02116BEE43410E039E909E3029D0D
Validity
Not Before: Jul 30 21:18:09 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=64c6d391-e322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:98:14:97:85:52:ca:66:49:08:99:6c:b7:06:
8e:bd:df:65:78:9d:bb:18:4f:f2:5c:a1:86:3e:e5:
70:f1:8d:5b:5b:c0:36:f2:2f:20:35:6f:85:45:d0:
dc:94:00:4f:c6:8d:e3:15:58:8e:1a:ed:ba:3b:5d:
dd:a1:9c:02:e8:5c:ec:e2:44:1d:69:5f:e4:4b:68:
88:ea:34:23:4d:37:1e:56:5e:ca:2c:83:ca:c3:6f:
57:cf:e1:a7:d8:19:43:17:fe:96:3a:14:77:10:da:
5d:69:78:32:c0:84:0f:8f:7f:43:39:d5:da:d7:18:
c5:a5:47:3f:3d:31:c4:a4:72:36:79:cb:49:74:aa:
ea:8e:68:63:2d:0f:85:52:1b:f9:ce:17:c0:b8:70:
a6:4a:5b:ae:d7:0e:60:0a:d6:43:bd:18:ab:0a:ff:
d4:3b:b2:00:19:03:a2:3a:59:44:cc:95:d8:f2:2c:
53:51:fd:32:bb:60:b3:d8:3d:3d:d2:a5:79:6c:f4:
ce:77:70:fb:1b:86:db:3f:98:73:dc:aa:1c:f0:24:
8c:b7:4a:cc:1f:17:90:8f:30:23:d8:f6:64:74:62:
75:f8:bc:95:de:c2:2c:10:3e:ce:fd:8d:8c:4c:c7:
64:a1:c9:e5:d0:f1:40:18:e1:6f:77:82:01:b4:8b:
9a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:BB:4E:C2:1C:55:1E:6B:67:4B:E1:DC:32:65:D5:52:69:E1:E3:1B
X509v3 Authority Key Identifier:
keyid:C2:84:BA:8A:88:A0:21:16:BE:E4:34:10:E0:39:E9:09:E3:02:9D:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/woS6ioigIRa-5DQQ4DnpCeMCnQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/woS6ioigIRa-5DQQ4DnpCeMCnQ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7B68/53A7B92CB0A511EA8F92ED17C4F9AE02/8E1EF5E840C211ED9CBE0577C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.214.159.0/24
144.48.115.0/24
Signature Algorithm: sha256WithRSAEncryption
49:99:91:be:92:89:da:67:78:ed:8f:9b:11:f9:5a:2e:57:de:
7b:f1:f3:21:a2:f2:93:fe:35:7a:53:2b:39:08:9a:50:50:b9:
18:04:38:f6:47:28:6c:f7:33:9c:22:59:51:85:7d:c5:ec:6b:
ce:b5:ec:07:7d:9d:e6:af:75:32:d0:50:f4:72:a6:2f:12:20:
00:76:4c:d0:fd:41:a1:e2:d0:19:55:49:fe:08:0e:a6:cd:5d:
82:24:a6:71:11:67:5f:da:fa:9c:dc:e0:12:26:5f:65:64:3b:
ed:ff:19:12:33:c6:e7:e9:3c:35:a3:cc:db:2a:3a:16:1b:1d:
96:a8:54:49:4d:8c:88:f0:74:15:68:4c:c7:5e:a2:3f:c6:b8:
44:41:e6:9e:a5:4f:91:ae:2b:9c:97:40:3c:bf:7c:0f:08:c6:
70:ee:ca:66:dd:01:03:11:3c:8f:99:a3:49:2d:ad:30:e9:dd:
8f:d4:b9:64:c9:c3:d3:85:b7:b3:ed:38:1d:37:e1:84:d5:e9:
36:78:b4:b4:78:bd:71:97:48:f5:8c:aa:62:65:3a:e4:14:f0:
f4:3c:14:5d:81:53:db:62:a9:e3:51:f6:10:76:32:23:b1:fe:
95:f1:58:b4:34:08:25:46:7c:c8:cc:79:0e:87:b6:56:12:85:
85:ae:c9:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 2 03:07:01 2024 by rpki-client on console-ams.rpki-client.org