Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/724391A22C2211EE8A91A155C4F9AE02.roa
File: 724391A22C2211EE8A91A155C4F9AE02.roa (raw, json)
Hash identifier: p3asWuJEbjPiYZgJCoh4fLAcxXlaXolvCldS5cdY+NE=
Subject key identifier: 5A:8D:49:DE:B3:DB:65:50:39:3E:77:0A:BF:31:C2:01:9A:51:ED:64
Certificate issuer: /CN=A91E4E32/serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396
Certificate serial: 0144
Authority key identifier: A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/724391A22C2211EE8A91A155C4F9AE02.roa
Signing time: Thu 27 Jul 2023 02:08:15 +0000
ROA not before: Thu 27 Jul 2023 02:08:15 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 44547
IP address blocks: 103.26.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Aug 2023 09:42:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 324 (0x144)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E4E32/serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396
Validity
Not Before: Jul 27 02:08:15 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=64c1d18f-d9a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ad:c3:18:af:59:4e:97:21:0b:00:5d:81:a5:
95:cb:ad:63:6f:49:9d:29:bc:b4:cd:12:5b:27:bc:
25:93:fc:38:54:95:a5:06:95:e3:7d:54:ce:93:60:
44:7f:d7:cd:e2:92:88:be:55:3e:9a:aa:1a:c5:e1:
db:69:5b:0c:60:2a:c2:97:2a:c4:97:46:d3:2b:82:
1a:06:d0:a6:1e:ef:a5:b0:3d:2d:9d:f0:a2:c8:0d:
13:ea:04:b6:79:2c:14:f2:e5:d3:36:3f:30:44:3c:
87:f7:62:d1:50:00:e7:e3:2e:e8:7d:27:91:d7:8a:
8a:9f:86:b0:58:62:ac:35:e6:35:10:cf:1d:86:6c:
3a:46:63:b5:26:d7:b4:e7:d0:79:51:a0:12:c6:11:
04:a9:be:ec:c5:b5:53:d0:56:26:75:99:40:26:c4:
6d:cd:be:0c:b1:ce:20:e3:a1:a3:b8:56:40:78:98:
f1:73:b7:83:c4:3e:ac:6d:16:9d:24:c2:d2:06:d1:
79:fd:55:ea:72:55:b3:73:b9:47:f3:96:7b:e0:81:
2a:21:08:9a:f8:de:f7:7f:30:53:8b:7e:57:bd:83:
37:3f:da:b2:ef:57:53:74:e7:c9:9c:20:1b:02:ab:
80:c4:6c:ea:c5:69:a6:46:99:21:62:7d:1e:6e:f7:
2d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:8D:49:DE:B3:DB:65:50:39:3E:77:0A:BF:31:C2:01:9A:51:ED:64
X509v3 Authority Key Identifier:
keyid:A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/724391A22C2211EE8A91A155C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.26.10.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:96:c2:f9:38:72:25:ff:bc:3b:c0:e6:8e:4b:38:44:51:67:
48:b2:59:a5:c7:e8:ae:99:f6:89:cb:ae:f0:07:33:3f:fe:52:
f2:c8:79:d7:64:d9:fa:bd:db:65:13:df:5b:86:6c:03:f8:0c:
3f:a7:17:31:57:37:50:9a:ac:7b:cc:d6:3a:8b:46:2e:f8:d9:
49:d3:f0:b1:db:3e:b0:27:18:ed:f0:34:c5:5a:10:d8:3f:74:
69:3c:99:53:51:b3:97:7f:3f:28:ce:3d:1d:e0:ba:5d:36:a5:
bc:11:50:ec:cc:c6:65:40:fe:40:f7:89:5f:38:f2:ed:ec:73:
a3:64:3e:2d:4f:14:a2:7c:c9:57:a6:79:ce:ae:c3:2a:0b:fc:
ea:01:e1:1c:6d:f0:97:25:28:c2:ce:b5:90:df:f6:ba:69:e8:
a3:02:65:38:b3:f7:4f:2a:97:aa:44:f1:f0:66:c2:95:a0:5f:
78:c1:9e:e0:57:cc:3c:41:eb:00:43:a8:9e:37:e4:55:75:ae:
48:89:78:46:56:b5:9e:bb:4e:45:2a:4b:aa:1d:ff:f3:8e:69:
10:70:3b:21:38:ce:1c:09:68:23:6d:ae:66:05:de:13:8f:a4:
46:0a:64:10:a3:ca:07:62:d3:48:8b:87:a4:0c:69:23:4b:20:
bb:29:4d:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:32 2024 by rpki-client on console-ams.rpki-client.org