Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/34492B669EC111EE9FA71E2BC4F9AE02.roa
File: 34492B669EC111EE9FA71E2BC4F9AE02.roa (raw, json)
Hash identifier: SObqR99I7LdWGvgSHSZgXb97yETZNyazSSYl1o5BH9U=
Subject key identifier: 39:78:51:CF:F4:FB:EE:99:6E:4A:82:2E:21:1E:B4:D5:59:ED:92:F0
Certificate issuer: /CN=A91DB63B/serialNumber=5EF72F9BE4E3A28DE3569E76DE2D2225DBF3FD8A
Certificate serial: 08AA
Authority key identifier: 5E:F7:2F:9B:E4:E3:A2:8D:E3:56:9E:76:DE:2D:22:25:DB:F3:FD:8A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/34492B669EC111EE9FA71E2BC4F9AE02.roa
Signing time: Wed 04 Sep 2024 21:09:46 +0000
ROA not before: Wed 04 Sep 2024 21:09:46 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 55922
IP address blocks: 103.72.88.0/24 maxlen: 24
203.27.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Sep 2024 07:07:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2218 (0x8aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DB63B/serialNumber=5EF72F9BE4E3A28DE3569E76DE2D2225DBF3FD8A
Validity
Not Before: Sep 4 21:09:46 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d8cc9a-33d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6a:6d:82:6c:f7:04:d5:19:7c:b8:89:79:3f:
37:4c:45:77:95:3d:d5:11:e2:6b:05:78:c4:f9:63:
8b:27:89:5b:2b:b8:72:c4:6c:40:0c:2e:e4:f9:96:
18:6e:43:e1:37:7f:28:9f:1c:bd:95:6f:63:a2:7f:
8c:7e:95:31:cf:b1:29:2c:11:23:3f:90:05:95:9a:
ad:24:d2:96:fe:1c:c5:f2:aa:ce:19:0d:6e:3e:eb:
fa:ce:39:82:8a:26:ca:8f:50:e4:98:83:3d:ed:ed:
02:c6:89:12:12:7e:74:ef:57:71:3d:fe:09:ac:9b:
88:ee:a1:e0:8e:78:1c:ed:e2:5e:88:62:bf:da:67:
1f:8f:58:63:58:03:9a:bb:ad:95:45:b8:3a:c6:03:
62:e0:1e:02:40:47:13:21:50:db:95:21:b0:90:1c:
55:39:d6:eb:02:96:d1:18:1f:d8:84:df:a4:f4:a7:
8a:21:9e:f7:b2:e9:1f:1c:be:c8:3e:07:38:7b:ab:
82:2c:94:50:79:b0:1d:6b:68:2f:16:ae:11:eb:43:
d8:73:4d:66:ac:19:e8:60:4f:c5:20:05:34:83:8c:
1b:5d:7a:00:43:24:28:34:d4:1f:f6:87:f7:7b:c1:
3f:a5:ef:18:12:28:13:0b:66:fe:b2:2c:2d:4f:7a:
55:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:78:51:CF:F4:FB:EE:99:6E:4A:82:2E:21:1E:B4:D5:59:ED:92:F0
X509v3 Authority Key Identifier:
keyid:5E:F7:2F:9B:E4:E3:A2:8D:E3:56:9E:76:DE:2D:22:25:DB:F3:FD:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/34492B669EC111EE9FA71E2BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.72.88.0/24
203.27.21.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:47:59:e1:7e:07:0c:81:2e:49:f4:06:d9:70:63:fe:91:55:
6f:eb:74:ab:e5:68:c8:96:3f:fb:ae:df:46:23:02:ea:bf:bd:
4c:2c:6b:c0:48:96:5b:62:19:2e:cd:e5:79:08:ed:59:eb:7f:
6d:6f:0c:e8:f6:3a:fa:1c:a3:36:8e:1c:1c:0d:1b:4d:35:7a:
4f:93:05:fd:c8:30:d5:86:65:49:62:3a:5a:e1:f8:42:0f:64:
dd:7a:0c:29:70:86:37:8d:d9:88:13:b7:e8:7e:7c:fa:da:62:
ad:47:27:6b:cc:c1:64:d8:76:e2:7b:dd:f9:fa:a2:81:0d:ad:
9b:28:1e:6e:54:ef:ef:f8:37:5a:71:fd:64:f9:e6:a9:ec:d3:
4b:3f:da:5c:45:2d:18:3e:93:47:b2:4f:03:ec:11:cf:45:ba:
26:85:1a:76:a6:89:11:bb:3b:ba:bd:54:28:4f:e1:b0:f0:99:
71:ed:db:01:f3:84:58:dd:e6:d1:b7:09:b2:0b:b6:29:49:c8:
51:5a:de:2f:be:c5:f7:fb:2c:dc:42:8f:bd:86:1a:f4:65:46:
4a:d0:06:3f:55:ed:2a:ee:74:35:8d:ba:46:ad:3a:51:68:24:
b0:94:9b:c6:b3:af:57:b5:58:d9:55:7b:ec:80:a7:ac:20:d6:
8b:f3:f3:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 12 09:32:11 2024 by rpki-client on console-ams.rpki-client.org