Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/6FD5CA2E440F11EF9CECED80C4F9AE02.roa
File: 6FD5CA2E440F11EF9CECED80C4F9AE02.roa (raw, json)
Hash identifier: vPeCkWuVVVVkHppSsLdfTFxJgBMcljkZix3kas315t0=
Subject key identifier: A7:3A:98:31:6A:47:44:6C:EE:DF:06:66:44:FA:C3:2B:0D:3C:D3:35
Certificate issuer: /CN=A91DDCD9/serialNumber=1679EA066683F2A1550DE70F458432DD1A83270F
Certificate serial: 0A34
Authority key identifier: 16:79:EA:06:66:83:F2:A1:55:0D:E7:0F:45:84:32:DD:1A:83:27:0F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FnnqBmaD8qFVDecPRYQy3RqDJw8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/6FD5CA2E440F11EF9CECED80C4F9AE02.roa
Signing time: Wed 17 Jul 2024 07:37:36 +0000
ROA not before: Wed 17 Jul 2024 07:37:36 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 152177
IP address blocks: 103.139.253.0/24 maxlen: 24
103.175.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 08:53:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2612 (0xa34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DDCD9/serialNumber=1679EA066683F2A1550DE70F458432DD1A83270F
Validity
Not Before: Jul 17 07:37:36 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=669774c0-da51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6e:8a:5e:31:4c:28:51:89:db:fa:87:66:40:
72:8f:e9:31:0e:a4:09:f5:1b:25:e0:98:67:9f:c3:
93:88:56:21:a2:25:b1:bb:1a:bd:38:0b:64:5e:16:
b2:91:ce:ce:cf:08:df:3b:54:9e:ee:db:9a:86:77:
ef:b9:55:f7:33:12:dc:c4:9a:3e:31:ea:6f:d1:17:
cd:5b:0e:ba:d9:38:57:dd:5d:6d:8f:c5:5d:3b:a7:
54:8d:5b:43:7d:2a:47:dd:c5:66:33:da:0a:53:1e:
96:5f:b0:4e:1e:bf:4e:64:48:5d:00:3e:b8:34:52:
39:08:25:72:e0:08:3f:0b:7a:b1:93:d3:0a:77:57:
37:24:de:9e:a3:8e:eb:54:2f:90:37:77:8f:21:0b:
2e:16:09:5c:d1:10:c4:7a:c4:8c:ab:50:51:37:0f:
92:6b:2a:4c:b4:ce:66:e5:67:79:19:26:0f:74:6c:
58:cd:56:f9:4b:ca:21:8a:36:b5:8d:e1:13:1e:2b:
6c:c1:0e:56:dc:fd:77:4e:e8:bf:49:bf:fd:7c:c6:
94:de:c0:ce:e0:b3:8d:1f:56:2e:f0:77:30:de:ea:
c9:8d:10:c1:6a:3d:ef:53:b7:63:c6:89:18:9f:45:
1e:75:97:ef:de:a6:b3:e8:3e:80:ed:0b:c6:ae:d2:
96:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:3A:98:31:6A:47:44:6C:EE:DF:06:66:44:FA:C3:2B:0D:3C:D3:35
X509v3 Authority Key Identifier:
keyid:16:79:EA:06:66:83:F2:A1:55:0D:E7:0F:45:84:32:DD:1A:83:27:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/FnnqBmaD8qFVDecPRYQy3RqDJw8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FnnqBmaD8qFVDecPRYQy3RqDJw8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCD9/410BBC144E6C11EA89049747C4F9AE02/6FD5CA2E440F11EF9CECED80C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.139.253.0/24
103.175.127.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:09:1d:07:b6:f5:73:30:85:36:f2:03:39:1d:17:2f:5f:68:
7b:55:65:6e:51:6d:e6:e7:d1:a9:7b:e8:2d:84:7f:84:f6:8f:
26:07:2a:bb:06:29:99:94:84:02:86:7a:f9:b4:01:b9:b9:27:
39:4c:b2:70:0d:23:97:5f:62:38:1c:cf:09:22:9b:19:a7:b6:
fa:3f:2c:b1:d4:5a:b8:03:61:60:a2:3a:c8:47:ff:01:99:4a:
86:6d:91:a7:2c:7b:66:cc:30:a6:61:5b:c0:a5:41:12:c0:28:
3f:ca:a9:a2:43:7a:c6:6c:21:14:60:db:47:ee:03:8d:0b:f2:
89:40:ec:e9:77:7c:7a:d7:05:a4:9e:ab:49:e3:d1:99:49:b7:
57:21:3e:8e:89:80:56:29:df:b4:19:9a:76:00:22:e5:4d:a4:
fe:96:c7:a3:d4:d0:d1:15:64:07:75:33:02:1a:94:a6:84:cc:
c5:85:e7:8f:74:f3:31:fa:15:ab:20:fd:42:e2:4a:5a:b3:fb:
bd:e4:47:ee:87:08:3f:b8:62:5e:8a:76:70:21:af:fe:f6:b0:
61:1e:1b:9e:74:28:32:b3:d3:e4:49:ca:e2:27:29:e7:55:97:
fd:a8:3f:eb:fe:44:ad:f6:23:bd:d6:5a:a4:23:38:05:e1:e6:
a7:17:b5:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 12:51:51 2024 by rpki-client on console-fra.rpki-client.org