Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/4D692DF6259C11EE98270417C4F9AE02.roa
File: 4D692DF6259C11EE98270417C4F9AE02.roa (raw, json)
Hash identifier: YJq/SaQsBjLQ6rVR1eTKBsf8kleKyIyI7xbhaJy8QYA=
Subject key identifier: 91:58:F2:AF:3B:01:50:EC:19:6B:4D:AF:F0:47:57:A9:AC:82:68:32
Certificate issuer: /CN=A91DEF04/serialNumber=3116E07584056C16F568F0EC6098E7DC4F504A38
Certificate serial: 0577
Authority key identifier: 31:16:E0:75:84:05:6C:16:F5:68:F0:EC:60:98:E7:DC:4F:50:4A:38
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MRbgdYQFbBb1aPDsYJjn3E9QSjg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/4D692DF6259C11EE98270417C4F9AE02.roa
Signing time: Wed 03 Jan 2024 00:02:11 +0000
ROA not before: Wed 03 Jan 2024 00:02:11 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 212238
IP address blocks: 103.80.86.0/24 maxlen: 24
103.80.87.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Jun 2024 09:45:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1399 (0x577)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DEF04/serialNumber=3116E07584056C16F568F0EC6098E7DC4F504A38
Validity
Not Before: Jan 3 00:02:11 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=6594a402-5b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:8f:d2:e7:e4:8d:2f:95:81:e7:1c:ea:73:3f:
25:6f:6b:05:70:85:14:16:af:4d:86:ce:8b:81:5c:
96:5f:74:07:f9:6a:cb:5c:89:cc:bc:5b:ba:e7:d9:
c3:cf:de:7a:ca:43:51:75:fa:22:69:2a:c4:0b:73:
12:2d:cb:c3:9e:17:a2:54:3b:39:11:63:cf:8f:4e:
91:24:f7:dc:dc:24:44:18:0b:69:a0:8a:3f:41:3b:
de:d4:90:9f:bb:f4:7b:6d:00:c0:88:13:19:b9:42:
ee:ba:03:a7:fa:fc:94:8f:58:20:ce:32:97:c6:51:
89:dc:ea:88:b0:f4:04:bf:90:34:d3:40:f6:59:3b:
71:a7:21:81:57:ac:04:46:8c:39:30:6c:94:6d:af:
fb:9f:fd:d9:e1:4e:75:c3:2e:70:48:61:47:a0:a2:
f6:02:36:8b:05:b1:07:1b:f5:6d:98:d7:3b:64:9f:
e5:41:ec:20:8c:38:07:36:2b:26:ee:98:f5:3c:87:
7a:f5:7b:c7:eb:1e:b5:3f:14:6a:c2:3e:15:0c:b7:
81:99:bc:c2:9b:2c:e5:e2:ea:aa:0f:01:df:62:85:
af:bd:c7:ea:6e:6d:34:03:69:f3:7d:75:09:48:21:
77:51:48:60:eb:29:27:c4:e6:6f:e6:50:e2:55:1a:
9d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:58:F2:AF:3B:01:50:EC:19:6B:4D:AF:F0:47:57:A9:AC:82:68:32
X509v3 Authority Key Identifier:
keyid:31:16:E0:75:84:05:6C:16:F5:68:F0:EC:60:98:E7:DC:4F:50:4A:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/MRbgdYQFbBb1aPDsYJjn3E9QSjg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MRbgdYQFbBb1aPDsYJjn3E9QSjg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/4D692DF6259C11EE98270417C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.80.86.0/23
Signature Algorithm: sha256WithRSAEncryption
8e:8e:56:3e:93:bb:14:24:c6:50:9d:1a:a0:08:9e:15:14:b6:
13:30:9b:aa:3d:44:66:18:3b:53:0d:f5:43:bf:7a:a6:6f:1e:
03:56:d6:c7:a6:25:47:12:da:0c:86:bd:78:cf:a3:76:68:5d:
3e:0b:e6:4e:f3:69:33:dd:37:b8:f5:7d:12:a9:77:68:d4:0b:
c7:66:8a:b1:8c:fb:7a:c5:60:8b:f4:ee:f2:51:52:d1:30:71:
bd:fd:de:9b:75:62:cb:f4:47:04:fb:9d:59:af:fa:16:79:f2:
53:37:6a:bc:d7:f3:91:7d:73:1a:f5:9f:3a:7e:79:13:3d:08:
3b:dd:8a:df:ce:e2:b4:99:95:34:27:52:d5:03:30:95:08:38:
9b:e3:5b:8e:e2:27:62:c2:3c:0d:9f:30:97:cb:0f:97:4f:f0:
49:9e:93:ff:d8:7d:83:41:f7:65:51:e8:3c:06:22:79:35:05:
b6:2c:24:e4:4c:a1:0e:18:55:02:a2:40:19:e2:28:fd:62:90:
4d:86:9f:95:ed:e4:46:bf:05:23:02:b7:d1:15:6f:ee:36:c8:
c6:3b:f1:01:67:98:97:20:c4:c9:d1:f4:e8:07:f1:45:ee:ab:
4c:05:cf:d5:fa:76:e3:ea:12:41:0b:12:1c:2d:c1:4e:61:e4:
7f:d1:6e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 12 14:31:32 2024 by rpki-client on console-ams.rpki-client.org