Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/0DD11F2E325411ECB11CE73EC4F9AE02.roa
File: 0DD11F2E325411ECB11CE73EC4F9AE02.roa (raw, json)
Hash identifier: UfuDZ6dabF6a5UaUR9VUv9dPJDojsnP0ZfIBRNJXbas=
Subject key identifier: CB:93:12:F7:7D:6C:31:8A:23:C8:AA:8C:15:CE:22:0E:CE:3E:14:88
Certificate issuer: /CN=A91DA59D/serialNumber=751FA49E712F88CF844CCD179EBE29B97EA1AACC
Certificate serial: 062A
Authority key identifier: 75:1F:A4:9E:71:2F:88:CF:84:4C:CD:17:9E:BE:29:B9:7E:A1:AA:CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dR-knnEviM-ETM0Xnr4puX6hqsw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/0DD11F2E325411ECB11CE73EC4F9AE02.roa
Signing time: Thu 22 Jun 2023 23:24:48 +0000
ROA not before: Thu 22 Jun 2023 23:24:48 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 139035
IP address blocks: 103.138.188.0/24 maxlen: 24
103.138.189.0/24 maxlen: 24
2001:df0:4e80::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jul 2024 12:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1578 (0x62a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DA59D/serialNumber=751FA49E712F88CF844CCD179EBE29B97EA1AACC
Validity
Not Before: Jun 22 23:24:48 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=6494d840-94f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ff:75:89:f0:f9:7d:11:52:37:58:36:43:26:
e2:00:b8:bc:f1:ec:a5:cf:d6:e5:4d:29:28:45:8f:
8a:bb:e7:60:fe:06:9d:f9:23:c2:15:d8:5f:97:eb:
ba:6d:d1:c1:78:03:17:63:e1:0a:42:cf:60:0d:4e:
63:bc:14:e4:48:64:99:a2:84:88:a6:94:ed:e5:54:
57:f1:8a:19:76:be:a7:c6:67:5a:a3:94:62:42:fd:
e2:80:aa:b6:66:ff:1b:00:28:65:06:57:69:d0:58:
6d:cb:81:0b:2d:6e:f4:98:c4:67:98:02:9c:c1:a4:
66:36:bb:e1:6d:41:04:2a:7c:1d:b0:35:50:76:8f:
c1:f0:83:18:7b:31:f8:55:1e:d8:3b:e8:a5:72:2a:
36:6e:85:78:5e:7a:e2:55:51:24:49:d3:e7:48:01:
50:c0:1a:bc:c1:73:ed:9f:7f:0a:2f:e2:5b:43:b8:
ba:c8:9b:c0:97:3a:81:e6:00:51:88:cb:ef:44:49:
85:53:c5:8f:78:9e:66:4f:e9:e1:75:16:71:85:fb:
d4:b6:1b:61:bf:7e:72:52:3a:5d:7e:4f:55:bf:d0:
b8:30:ba:71:69:fd:27:bb:0c:2d:19:73:5c:94:51:
99:27:f7:aa:76:c9:97:52:87:1c:19:0f:1f:1c:82:
f5:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:93:12:F7:7D:6C:31:8A:23:C8:AA:8C:15:CE:22:0E:CE:3E:14:88
X509v3 Authority Key Identifier:
keyid:75:1F:A4:9E:71:2F:88:CF:84:4C:CD:17:9E:BE:29:B9:7E:A1:AA:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/dR-knnEviM-ETM0Xnr4puX6hqsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dR-knnEviM-ETM0Xnr4puX6hqsw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA59D/563DE50E0D5611EBA3D15D2CC4F9AE02/0DD11F2E325411ECB11CE73EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.188.0/23
IPv6:
2001:df0:4e80::/48
Signature Algorithm: sha256WithRSAEncryption
11:f2:12:39:6c:de:01:7e:04:84:df:23:49:13:fc:00:9d:83:
c9:5b:95:69:2c:f5:6f:90:9c:1c:4e:e0:06:9c:0b:7e:79:33:
d1:93:a4:a5:0a:fa:93:aa:97:91:40:48:38:56:eb:db:7c:37:
f9:03:a0:89:df:0c:41:a9:95:8a:d8:9c:70:6f:56:d0:90:21:
31:f5:4e:39:01:c3:da:30:c5:ce:56:60:cf:97:1a:33:db:b1:
ed:f0:42:e2:1f:fb:e6:10:fc:50:d1:27:3e:96:06:10:50:07:
7d:2b:6d:53:04:5a:eb:52:ae:c5:65:3d:4d:22:92:1f:80:fb:
73:56:51:4d:f3:58:f8:54:a6:d0:c9:ae:4c:20:af:bd:a5:c8:
b5:7e:23:4b:13:99:2d:a9:28:8b:af:57:72:6e:96:e0:68:1d:
4a:dc:b6:cd:98:52:5f:4d:89:bf:f5:9d:24:7a:e6:67:51:6d:
83:b0:0f:02:48:9d:80:c6:1b:cb:2e:e4:66:9c:e8:1d:53:5e:
10:d5:5d:ea:98:2a:d1:cb:22:c4:76:11:06:4f:d4:50:32:a5:
d1:5e:b2:25:1a:12:b3:0b:d6:20:5e:54:2c:c4:19:65:ba:ec:
6f:54:4f:ce:cc:85:0b:52:ae:a4:d6:69:18:40:83:67:9e:f1:
4a:5e:e9:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 14:28:05 2024 by rpki-client on console-fra.rpki-client.org