Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9025/10D771C2788411EAADA51310C4F9AE02/340CC99895E111EE94B6BD6CC4F9AE02.roa
File: 340CC99895E111EE94B6BD6CC4F9AE02.roa (raw, json)
Hash identifier: Nwd0FP0XYmrKkCvdLLtscKv9UfJnSjm6FUuYwVe8w3Q=
Subject key identifier: 1F:53:60:78:CD:ED:CE:12:59:5F:33:60:1E:84:E9:D5:15:79:28:BB
Certificate issuer: /CN=A91C9025/serialNumber=06DF1B524BD0DDDDA179B0450627EAF7F8D94C00
Certificate serial: 08F3
Authority key identifier: 06:DF:1B:52:4B:D0:DD:DD:A1:79:B0:45:06:27:EA:F7:F8:D9:4C:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bt8bUkvQ3d2hebBFBifq9_jZTAA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C9025/10D771C2788411EAADA51310C4F9AE02/340CC99895E111EE94B6BD6CC4F9AE02.roa
Signing time: Fri 08 Dec 2023 15:48:17 +0000
ROA not before: Fri 08 Dec 2023 15:48:17 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 47757
IP address blocks: 103.82.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jan 2024 09:34:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2291 (0x8f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C9025/serialNumber=06DF1B524BD0DDDDA179B0450627EAF7F8D94C00
Validity
Not Before: Dec 8 15:48:17 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=65733ac1-eaf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:47:12:40:56:41:f9:1b:d5:d0:b0:25:02:73:
81:5f:52:ff:94:97:e9:31:1c:37:54:31:5a:fe:2e:
8e:15:10:7c:6f:43:04:b1:d6:59:0e:c2:b3:8c:84:
46:fe:11:cc:d8:ca:0a:55:00:15:0d:f8:55:d1:9e:
1b:f5:1e:3b:5f:51:19:75:a0:04:c7:d7:f4:4f:72:
fd:b8:ec:52:d1:7d:cf:d1:3c:be:62:e7:5d:3d:42:
dd:23:09:27:07:12:cb:01:dd:b9:68:e4:82:b6:4d:
d0:9d:ab:2e:19:dd:34:55:fa:9a:e9:dc:17:91:33:
f9:4e:80:74:3e:16:2d:13:45:1f:4c:b4:a2:8b:58:
3b:f6:15:e2:1c:43:47:c2:e0:a8:c6:0c:c0:21:b8:
40:dd:61:5b:ed:47:ef:57:4c:e2:c6:b9:ea:b1:9d:
a8:b2:42:5c:aa:bb:4c:01:af:2b:c1:97:7d:fc:da:
b7:af:ff:df:55:f3:79:ed:e1:e2:59:b7:bf:99:d3:
6f:4d:67:ab:9d:8a:fe:3f:e8:12:03:ec:2e:e9:89:
4c:80:e5:32:0c:b5:32:0e:e6:a5:41:85:46:28:a0:
1f:50:96:7b:d1:69:9e:41:1f:93:e0:5e:b1:32:d9:
e3:05:c9:7a:81:9a:2f:a2:bf:f5:ff:37:16:42:6c:
19:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:53:60:78:CD:ED:CE:12:59:5F:33:60:1E:84:E9:D5:15:79:28:BB
X509v3 Authority Key Identifier:
keyid:06:DF:1B:52:4B:D0:DD:DD:A1:79:B0:45:06:27:EA:F7:F8:D9:4C:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C9025/10D771C2788411EAADA51310C4F9AE02/Bt8bUkvQ3d2hebBFBifq9_jZTAA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bt8bUkvQ3d2hebBFBifq9_jZTAA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9025/10D771C2788411EAADA51310C4F9AE02/340CC99895E111EE94B6BD6CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.82.216.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:74:1b:22:b7:34:89:18:f7:72:09:b3:00:b7:45:f9:a8:cc:
9d:a4:67:a2:f5:e9:21:bc:21:cb:62:f0:67:59:0e:05:b7:a8:
47:77:3f:79:0c:42:ae:02:c2:f0:1b:b6:af:f2:de:3b:77:3b:
78:73:1c:7f:f1:d8:53:bc:2e:bb:2f:86:20:09:13:f4:b7:69:
9e:45:f3:ed:e1:0a:a6:cc:89:57:c8:9a:a7:78:b7:13:65:61:
3a:c2:3b:37:e3:2e:54:77:b5:84:69:66:6e:6f:bc:38:fb:4e:
4a:51:a0:3d:58:41:d5:16:cd:80:9a:ab:99:a1:0d:50:34:47:
b4:83:d8:40:65:8b:15:8d:e3:29:00:b9:4f:f6:fb:82:64:a8:
9c:c8:3f:4e:a9:c6:43:32:a6:c7:33:5d:bb:dd:df:e0:a4:c2:
20:d1:39:91:05:43:17:61:3b:45:18:bf:ff:50:41:ac:5d:db:
c9:f7:d2:7c:e2:fd:26:7f:b5:a0:9d:da:5c:3c:73:b3:bf:b0:
13:e1:ad:62:af:4b:13:9d:0f:aa:7f:48:93:a6:17:c7:1e:b4:
65:58:79:fa:f1:0e:1b:81:97:34:07:96:f4:db:f6:df:0b:09:
f1:56:ce:3f:34:60:d5:60:c3:8e:47:b0:e8:84:76:80:9d:bb:
93:9c:16:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 9 13:52:09 2024 by rpki-client on console-ams.rpki-client.org