Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1C49B43C419F11EA8B12587CC4F9AE02.roa
File: 1C49B43C419F11EA8B12587CC4F9AE02.roa (raw, json)
Hash identifier: wnFiKShCUq66mKm3PEpilRJeczjpzlxhrJMNOfgap/Y=
Subject key identifier: 4D:F9:92:B2:A8:05:74:70:49:5B:FE:9C:1E:88:48:4E:CD:48:16:03
Certificate issuer: /CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617
Certificate serial: 0A87
Authority key identifier: D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1C49B43C419F11EA8B12587CC4F9AE02.roa
Signing time: Mon 02 Sep 2024 20:28:29 +0000
ROA not before: Mon 02 Sep 2024 20:28:29 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 17408
IP address blocks: 103.14.164.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 06 Nov 2024 23:32:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2695 (0xa87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617
Validity
Not Before: Sep 2 20:28:29 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66d61fed-5899
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:a7:ba:2b:47:26:a2:a1:21:8c:08:0c:28:9b:
54:f1:f9:28:d0:68:c5:1e:bc:5f:4e:76:f2:da:a1:
6d:e0:8f:b1:3b:89:a1:e8:c9:e8:2c:9c:09:82:8f:
6e:2a:28:fb:cb:28:88:b1:89:7f:94:76:75:db:cf:
ae:41:e2:dd:85:22:6c:e8:41:4d:9e:60:1a:5f:8b:
58:80:90:f6:c9:04:e8:9d:39:5e:df:45:d1:6d:08:
57:37:2e:5a:c3:d2:c2:e0:3e:61:54:f6:80:f2:26:
79:f8:4e:42:79:ef:54:eb:a5:eb:31:eb:23:1e:b3:
8a:ce:db:c0:fd:73:c1:90:30:bb:ae:df:24:b9:ff:
bf:3b:73:d6:58:6f:c3:02:ba:06:b1:f0:44:ee:79:
41:31:72:14:4b:ee:e0:5e:bc:b0:3b:4b:6b:1d:38:
f2:4c:a8:1e:ba:2c:29:be:a5:0c:be:6d:9a:c9:07:
68:38:02:f3:60:84:4b:e6:53:86:06:e5:ba:a5:21:
58:26:66:93:e1:25:f8:89:f4:09:a5:64:04:65:49:
ad:c4:2b:ba:de:aa:22:bb:44:bf:ba:60:49:b7:1b:
21:90:bc:93:30:c9:5c:23:7d:dd:c3:a7:62:60:b8:
0d:64:e4:2e:23:9d:3e:0c:4e:0f:ac:08:14:9b:f5:
3a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:F9:92:B2:A8:05:74:70:49:5B:FE:9C:1E:88:48:4E:CD:48:16:03
X509v3 Authority Key Identifier:
keyid:D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1C49B43C419F11EA8B12587CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.14.164.0/22
Signature Algorithm: sha256WithRSAEncryption
37:66:a5:71:99:e6:06:dd:c7:59:79:40:ae:73:55:bb:08:8e:
f9:01:86:0f:47:6a:bd:be:21:a0:03:bc:77:36:fb:2c:78:4c:
cd:ff:92:4f:63:96:30:d6:a0:c9:05:d8:fa:3a:26:44:64:36:
e3:0c:d4:bc:79:59:fb:0d:85:45:d9:b5:59:e3:a5:d0:41:73:
4c:bb:a2:db:45:39:a6:b1:31:34:98:f6:e8:74:3d:57:76:b1:
df:56:91:02:e5:7d:9f:54:23:ad:c1:25:9a:b6:3e:10:20:93:
20:2d:4f:be:c9:1e:e6:62:67:33:01:41:7c:69:3e:97:f4:d5:
8c:38:a0:f0:50:9c:c8:11:2a:92:80:72:90:1d:9a:7a:71:c6:
cd:e0:f1:b7:47:04:bf:e6:67:cd:4a:8c:86:76:d1:8b:d0:99:
30:54:ac:e5:43:27:5c:13:4f:a0:c2:58:d3:00:f6:2e:fb:10:
07:2e:59:af:8d:d2:64:9a:47:2a:a2:65:fd:0f:58:c7:ce:92:
b4:fd:a6:0a:f5:bd:08:d3:f3:6b:87:1d:2d:71:23:f0:80:fa:
5a:5c:cf:eb:d0:08:fd:ea:71:31:b4:ef:ee:2b:38:a4:5c:3b:
42:72:5e:50:c7:d9:b4:2b:16:73:4d:9d:fb:67:f9:d2:a4:ab:
27:04:2f:f1
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICCocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REI0NzUxMTAvBgNVBAUTKEQ1MEMwQUQzQjRBRDgxRDU1NTk0NUNDN0YzRjFFRTFD
MUZBREU2MTcwHhcNMjQwOTAyMjAyODI5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmQ2MWZlZC01ODk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA5qe6K0cmoqEhjAgMKJtU8fko0GjFHrxfTnby2qFt4I+xO4mh6MnoLJwJgo9u
Kij7yyiIsYl/lHZ128+uQeLdhSJs6EFNnmAaX4tYgJD2yQTonTle30XRbQhXNy5a
w9LC4D5hVPaA8iZ5+E5Cee9U66XrMesjHrOKztvA/XPBkDC7rt8kuf+/O3PWWG/D
AroGsfBE7nlBMXIUS+7gXrywO0trHTjyTKgeuiwpvqUMvm2ayQdoOALzYIRL5lOG
BuW6pSFYJmaT4SX4ifQJpWQEZUmtxCu63qoiu0S/umBJtxshkLyTMMlcI33dw6di
YLgNZOQuI50+DE4PrAgUm/U6gwIDAQABo4IClTCCApEwHQYDVR0OBBYEFE35krKo
BXRwSVv+nB6ISE7NSBYDMB8GA1UdIwQYMBaAFNUMCtO0rYHVVZRcx/Px7hwfreYX
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQ3NS8yMDhGQjczMDQx
NzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdkVlZsRnpIOF9IdUhCLXQ1
aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzFRd0swN1N0Z2RWVmxGekg4X0h1SEItdDVoYy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
REI0NzUvMjA4RkI3MzA0MTcyMTFFQTk4QTM2ODZEQzRGOUFFMDIvMUM0OUI0M0M0
MTlGMTFFQThCMTI1ODdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAJnDqQwDQYJKoZIhvcNAQELBQADggEBADdmpXGZ5gbdx1l5
QK5zVbsIjvkBhg9Har2+IaADvHc2+yx4TM3/kk9jljDWoMkF2Po6JkRkNuMM1Lx5
WfsNhUXZtVnjpdBBc0y7ottFOaaxMTSY9uh0PVd2sd9WkQLlfZ9UI63BJZq2PhAg
kyAtT77JHuZiZzMBQXxpPpf01Yw4oPBQnMgRKpKAcpAdmnpxxs3g8bdHBL/mZ81K
jIZ20YvQmTBUrOVDJ1wTT6DCWNMA9i77EAcuWa+N0mSaRyqiZf0PWMfOkrT9pgr1
vQjT82uHHS1xI/CA+lpcz+vQCP3qcTG07+4rOKRcO0JyXlDH2bQrFnNNnftn+dKk
qycEL/E=
-----END CERTIFICATE-----
Generated at Thu Nov 7 03:28:41 2024 by rpki-client on console-fra.rpki-client.org