Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/7B2A3BD459D211EFBDAC9A0AC4F9AE02.roa
File: 7B2A3BD459D211EFBDAC9A0AC4F9AE02.roa (raw, json)
Hash identifier: K4TPow5Ilqg3X+QzgwuR6ZC18wIyr1MBxtxZAj3TpjQ=
Subject key identifier: 07:64:1E:19:D0:FE:FD:C5:28:55:08:AC:A3:5A:C9:68:BA:11:45:30
Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F
Certificate serial: 34FB
Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/7B2A3BD459D211EFBDAC9A0AC4F9AE02.roa
Signing time: Wed 14 Aug 2024 11:21:51 +0000
ROA not before: Wed 14 Aug 2024 11:21:51 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 834
IP address blocks: 103.68.120.0/24 maxlen: 24
117.121.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 07:17:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13563 (0x34fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F
Validity
Not Before: Aug 14 11:21:51 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=66bc934f-f66b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9e:fc:13:37:97:58:f8:08:42:7e:26:9e:34:
e8:a6:c2:b3:09:12:e8:13:bc:cc:bd:88:37:54:ac:
99:a2:8e:46:14:d1:d0:c7:13:6a:69:41:af:38:70:
fe:f2:7f:c3:73:fb:47:00:b4:97:c4:61:a9:08:ec:
53:49:6e:fb:dc:ac:09:2c:10:2c:d5:6a:f6:28:63:
63:bf:28:30:59:0c:b3:25:18:9f:06:68:1a:3d:1e:
8c:7e:05:4e:d5:4a:02:bd:3c:02:bb:e4:c0:a4:57:
ca:af:c0:40:a1:ca:3b:f9:25:97:c0:e5:59:4f:86:
f0:a7:de:73:ff:84:c2:c4:da:22:75:e9:48:4a:61:
25:36:4a:cf:4d:a1:a4:77:21:42:68:f6:0a:ff:93:
e5:69:89:d8:d1:19:c1:92:ef:38:31:31:ab:a6:33:
86:50:a8:a5:90:b2:4d:a2:9a:af:2f:86:0a:0c:6b:
08:f1:db:c7:1f:79:df:39:d6:50:45:83:63:b3:a7:
29:09:f8:4d:13:43:d4:a1:1b:e6:38:f5:a5:44:68:
b5:2c:0d:cd:7e:e3:0c:90:b4:45:1e:fb:52:38:c7:
8a:7b:b3:b9:3e:10:72:4e:4c:cc:7b:b5:c7:4f:cd:
41:34:2d:12:98:0d:a6:39:a0:91:97:c5:fb:5c:11:
ce:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:64:1E:19:D0:FE:FD:C5:28:55:08:AC:A3:5A:C9:68:BA:11:45:30
X509v3 Authority Key Identifier:
keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/7B2A3BD459D211EFBDAC9A0AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.68.120.0/24
117.121.245.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:24:ef:7b:21:cf:b7:9d:ef:c4:d1:af:bb:63:13:42:cb:72:
f5:71:43:ae:c7:1f:98:db:21:e3:31:fe:d2:95:7f:1f:dc:c9:
1b:e9:c3:98:43:55:5f:53:d5:99:a9:bc:f5:7f:29:41:4b:f4:
d2:bd:92:15:5a:ad:62:21:3b:d0:3f:29:3d:96:ec:8d:ee:e3:
98:eb:40:d9:ce:8a:40:f2:71:7f:2a:c2:40:44:ba:08:a7:f0:
40:a1:52:0b:b5:b1:6c:1a:d9:8b:0b:a2:7b:c5:f8:f1:f3:91:
cd:43:97:c0:be:eb:70:6b:08:90:d7:c8:65:75:5c:22:22:80:
e1:69:0d:29:c8:1c:8f:c0:ed:70:7c:aa:08:49:84:fc:52:6f:
85:9e:f4:07:92:0b:b7:0d:61:9a:f0:d5:30:ee:d8:ba:40:0a:
32:32:05:c2:b1:bf:fa:79:92:c8:7e:5f:3c:82:3d:4d:0c:bc:
87:f0:7c:69:f6:da:53:d7:3e:9a:5e:d9:cd:a5:41:1f:95:e1:
0b:f6:fd:fd:b3:48:d4:d1:88:a2:83:40:2d:16:c0:8a:2c:20:
0e:ce:58:64:0a:20:7d:21:96:d8:ea:cc:83:2e:27:9d:06:11:
b8:a7:c4:ce:ee:80:d2:92:6c:c1:d6:d1:73:9f:46:a5:be:56:
9b:92:eb:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 09:51:35 2024 by rpki-client on console-fra.rpki-client.org