Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/3415D6328E0411EC996DF86EC4F9AE02.roa
File: 3415D6328E0411EC996DF86EC4F9AE02.roa (raw, json)
Hash identifier: p7Za6YpQqOIYFXMbqmNpVvapZqsDzecRNGhNevrRkx8=
Subject key identifier: 3B:B3:17:4B:9C:44:E0:23:4F:80:7B:B5:18:F6:E8:E8:4F:53:C1:B4
Certificate issuer: /CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F
Certificate serial: 0815
Authority key identifier: 3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/3415D6328E0411EC996DF86EC4F9AE02.roa
Signing time: Wed 28 Jun 2023 20:41:58 +0000
ROA not before: Wed 28 Jun 2023 20:41:58 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 132255
IP address blocks: 103.151.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Mar 2024 11:11:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2069 (0x815)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F
Validity
Not Before: Jun 28 20:41:58 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=649c9b16-869b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:21:2b:45:9a:7b:da:31:ae:17:24:7c:7a:24:
c1:c6:5d:b5:bf:4d:3c:b6:6f:f4:95:0a:77:70:b2:
19:59:b8:07:17:93:e9:29:15:31:7b:82:05:6d:50:
53:d0:58:24:4a:75:86:f9:23:94:80:fe:a2:88:c7:
37:40:01:45:a2:7d:7a:23:20:83:18:c1:67:c1:fb:
8b:00:e6:ff:b1:86:ad:d1:44:10:cd:c7:fd:e9:0d:
bc:5d:1a:f7:21:7e:d8:a4:2d:8a:12:5d:55:fe:8d:
52:e5:83:60:07:1b:f6:da:33:a4:e8:99:fa:7e:b8:
fa:5c:f5:f6:ef:51:ad:d6:49:ca:3a:50:dc:ef:f2:
17:c9:5f:53:ea:17:91:36:92:33:d5:06:9f:fd:19:
3b:0c:05:a9:94:ba:c2:ba:88:40:d2:5a:36:e3:0e:
5e:0b:44:f7:35:d3:b5:2f:ee:61:95:73:e4:c5:4e:
65:56:cf:07:25:83:30:3b:0b:dd:65:69:79:af:ac:
f7:40:ab:f8:8e:f6:78:6b:c5:30:c7:13:33:f8:b2:
19:cc:b3:10:e9:53:a3:29:20:4a:1e:43:f8:f9:8b:
70:78:14:f0:cc:26:d4:00:fc:58:6d:65:f3:cf:de:
ed:a4:b5:ce:02:25:92:15:90:0f:10:67:96:0d:03:
c2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B3:17:4B:9C:44:E0:23:4F:80:7B:B5:18:F6:E8:E8:4F:53:C1:B4
X509v3 Authority Key Identifier:
keyid:3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/3415D6328E0411EC996DF86EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.79.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:29:27:11:d4:3e:d8:53:db:33:6c:68:51:09:c8:15:00:4d:
fa:68:95:5c:9a:71:a5:81:b9:66:a4:2c:90:39:d6:6f:a1:22:
f4:45:48:7f:25:d1:2b:a5:e0:1b:25:fd:e9:91:2f:f0:f8:f2:
c6:1f:bd:e2:28:8e:a3:f3:38:89:9c:00:d1:64:96:9d:f9:86:
d6:ae:9f:d6:9a:91:c2:bf:bb:eb:88:2d:93:e3:23:2b:4d:b8:
8b:33:67:29:78:7e:03:8e:c4:14:94:48:26:b6:d1:98:df:c2:
83:0e:57:05:11:3a:fc:a3:4c:b8:8d:e2:16:b6:36:db:c1:ab:
3b:7a:c7:af:ca:8a:68:00:32:d9:5b:bd:14:25:5a:4f:33:65:
da:f7:ec:d0:89:68:09:90:93:0a:79:34:c4:38:1f:92:7f:de:
2e:7d:f8:22:c2:4d:57:83:f7:8e:7f:33:3a:aa:83:34:cc:54:
6b:26:4f:f9:bc:4a:d9:8c:86:af:6e:ee:a5:8a:a2:61:8d:82:
3f:17:ec:e3:1d:9c:8e:77:75:47:e6:75:e8:20:ca:8b:31:ff:
84:0d:56:b8:31:04:2d:28:99:34:d4:55:c1:07:cc:55:72:2a:
0a:83:53:27:75:14:50:70:c1:e3:b9:fd:de:26:f0:6c:ee:32:
2a:35:ef:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 23 15:39:20 2024 by rpki-client on console-ams.rpki-client.org