Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/655B386A632A11EFBFA40F53C4F9AE02.roa
File: 655B386A632A11EFBFA40F53C4F9AE02.roa (raw, json)
Hash identifier: t37WR9jzNvjdL6fs8SxSHvpsyfkjVOu1juS/uQimG7Y=
Subject key identifier: 35:88:A2:F0:14:BD:03:C2:59:A7:D4:17:E0:F9:D2:DC:45:EF:6E:A7
Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F
Certificate serial: 3527
Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/655B386A632A11EFBFA40F53C4F9AE02.roa
Signing time: Mon 16 Sep 2024 14:51:05 +0000
ROA not before: Mon 16 Sep 2024 14:51:05 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 215415
IP address blocks: 103.230.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 27 Oct 2024 21:56:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13607 (0x3527)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F
Validity
Not Before: Sep 16 14:51:05 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66e845d9-ba29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:78:45:bc:b8:ea:1a:a6:d6:a2:55:8a:78:37:
a4:3f:4c:de:a3:35:db:c2:52:b0:9d:ec:45:63:64:
68:45:6c:71:4b:61:0d:a2:da:80:16:82:2f:40:13:
01:d6:39:7a:c0:3d:28:98:cf:21:95:b3:c0:ca:7c:
66:34:53:06:41:ad:18:cf:d6:3c:ca:d1:f5:3d:0e:
e2:bc:96:99:8a:82:9f:2d:c2:0a:dc:74:f0:7d:ca:
46:fc:98:d8:39:7f:bd:48:4e:1b:32:72:15:c0:99:
33:d1:7a:36:c5:4b:ab:45:e0:2e:e6:81:7e:27:95:
ab:a7:6c:8a:96:96:c2:f5:06:c9:13:6f:e8:96:bc:
6c:c0:2e:f0:02:fe:e7:b2:55:61:17:03:3c:ec:9a:
89:25:e7:a4:9c:d4:17:b9:a2:61:c1:81:e7:d8:6f:
f7:47:c0:84:ab:b4:12:d6:93:03:28:30:7b:80:89:
62:65:1b:5b:87:8b:7a:cf:f6:8a:b0:ce:a5:84:ac:
7f:fb:72:b4:f9:48:32:9a:fd:24:13:7b:f8:22:a7:
0f:17:18:6c:13:19:28:e1:c8:e3:24:d7:d2:d5:b4:
27:79:1c:cb:74:ec:85:cc:20:12:8b:e4:61:55:e1:
96:fc:5a:ee:04:15:9c:be:83:fc:b8:fb:bb:bd:36:
20:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:88:A2:F0:14:BD:03:C2:59:A7:D4:17:E0:F9:D2:DC:45:EF:6E:A7
X509v3 Authority Key Identifier:
keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/655B386A632A11EFBFA40F53C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.230.69.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:30:a2:3d:4c:cf:d8:9d:0c:1a:2b:f2:28:9c:a6:8c:6b:70:
07:59:00:75:68:c9:c2:34:ae:99:e9:66:ed:67:4a:34:7c:83:
bf:e2:f0:82:c0:da:c1:4c:5b:8d:ab:99:e6:08:9f:64:c9:40:
7d:cf:f6:7d:f8:b4:e0:9b:62:df:32:fb:6a:7a:d0:4b:f5:d2:
f5:dc:7d:6b:a6:67:d3:79:5f:b9:76:a5:5d:3f:3c:4a:2c:a1:
0a:6e:b7:c8:ed:22:d2:14:69:a5:f4:38:91:77:e8:ec:b1:ca:
ea:ba:05:50:a1:2c:e8:d0:fd:a0:5f:8c:3b:9a:8a:a1:fb:5f:
a0:aa:fa:35:d3:c4:c5:27:ac:4a:4b:14:0d:53:4c:e7:59:55:
1a:7d:da:55:29:11:de:67:b8:94:48:0b:2b:09:01:0c:28:2a:
de:6a:47:15:5f:ab:58:01:cf:fb:74:30:83:8e:83:f9:42:40:
be:69:89:5d:91:63:d1:c2:43:8d:75:7d:2a:87:76:05:35:00:
a2:13:cc:85:4e:5d:ac:77:5d:42:60:d5:84:31:bd:35:94:2a:
0e:ac:4d:51:57:d2:dc:75:29:7c:e9:ae:9f:53:93:01:b2:00:
cd:0b:00:71:c1:25:c2:41:c1:ab:f4:fb:2e:09:64:d0:98:68:
66:a7:19:56
-----BEGIN CERTIFICATE-----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Generated at Sun Oct 27 23:25:20 2024 by rpki-client on console-ams.rpki-client.org