Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/5884A74E64A711ED99D40117C4F9AE02.roa
File: 5884A74E64A711ED99D40117C4F9AE02.roa (raw, json)
Hash identifier: k3AuuKVGDje24vkqkNmAzk2TfmLJD3ya6qvHyH3KTJ0=
Subject key identifier: 58:B7:D8:B2:04:35:F3:C1:AC:E6:F7:48:8A:2D:77:D1:9A:A5:C9:92
Certificate issuer: /CN=A91ED073/serialNumber=08AED3E1DCB6ED7742303CEFF47DE02D92B3EDE5
Certificate serial: D5
Authority key identifier: 08:AE:D3:E1:DC:B6:ED:77:42:30:3C:EF:F4:7D:E0:2D:92:B3:ED:E5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CK7T4dy27XdCMDzv9H3gLZKz7eU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/5884A74E64A711ED99D40117C4F9AE02.roa
Signing time: Mon 01 Jan 2024 05:06:18 +0000
ROA not before: Mon 01 Jan 2024 05:06:18 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 150180
IP address blocks: 103.37.184.0/24 maxlen: 24
103.37.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Mar 2024 08:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 213 (0xd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91ED073/serialNumber=08AED3E1DCB6ED7742303CEFF47DE02D92B3EDE5
Validity
Not Before: Jan 1 05:06:18 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=6592484a-3043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:db:a7:fd:b0:9c:d7:9b:df:c7:59:ef:d8:7b:
70:b8:7e:69:7f:bd:41:46:33:16:45:95:65:7c:b2:
fa:bc:fb:18:42:cf:36:fb:c9:cf:81:8f:9e:9c:5a:
23:ec:44:b2:4d:73:6b:e1:62:64:e9:62:6a:a8:9f:
f0:eb:7d:f5:fe:db:32:1a:a9:80:23:0a:b0:66:33:
9e:88:9a:7d:9c:18:5d:bc:52:8b:82:d5:fd:b3:8d:
ee:e7:cd:cc:36:e9:95:5c:7a:b0:8d:07:52:c3:20:
ad:be:e8:c0:89:1f:10:64:0a:8b:51:a4:3e:57:80:
d3:31:84:2b:e0:66:91:96:c8:64:d4:de:30:0d:45:
a2:ed:2f:8b:da:0c:b1:b1:a7:56:13:e1:17:c5:d3:
cc:f1:9e:fe:eb:59:79:12:7b:6e:cd:6d:7a:1b:f3:
15:8f:33:d7:aa:3e:db:e0:ce:db:85:dd:49:07:dc:
82:ab:a3:4a:bf:5b:0b:b1:61:4f:d6:36:e5:b4:39:
68:f3:ed:00:32:24:a9:82:a2:3f:40:75:7e:c2:c9:
04:3a:b2:54:9b:1c:f0:97:68:de:e0:4f:a4:90:b6:
b0:57:ec:d5:69:f6:d4:e7:d2:93:65:0a:db:d7:47:
8d:76:e6:d4:8c:96:b2:69:39:6f:e7:14:16:e8:1d:
89:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B7:D8:B2:04:35:F3:C1:AC:E6:F7:48:8A:2D:77:D1:9A:A5:C9:92
X509v3 Authority Key Identifier:
keyid:08:AE:D3:E1:DC:B6:ED:77:42:30:3C:EF:F4:7D:E0:2D:92:B3:ED:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/CK7T4dy27XdCMDzv9H3gLZKz7eU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CK7T4dy27XdCMDzv9H3gLZKz7eU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED073/F4B4CA5264A411EDA0876B16C4F9AE02/5884A74E64A711ED99D40117C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.37.184.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:ee:1e:d0:ef:3b:c3:3f:7f:1d:37:53:c4:8a:d9:e1:c8:33:
29:14:29:50:82:90:9f:3e:32:d6:63:d9:f5:ad:ab:a2:c8:7b:
53:e9:81:21:a8:82:52:48:06:fd:16:8c:d3:1a:32:48:4a:2e:
d8:88:d1:77:a5:9a:cd:b8:91:bd:66:af:84:cf:b8:a0:a5:ef:
e2:45:fb:45:47:f7:9c:a3:14:af:87:a3:6c:cc:a3:de:20:e4:
d1:af:ad:57:54:df:cd:31:fe:70:b3:bc:6b:1b:6d:80:46:1c:
d3:24:4e:71:36:13:02:62:00:b1:52:1a:50:95:2e:18:cb:95:
5b:6f:45:a1:82:54:b1:6a:14:39:2c:e6:97:ac:7c:19:60:98:
6f:3b:1f:c7:99:00:22:55:1c:52:82:ab:c4:7d:51:ba:85:1b:
69:f8:e2:94:b7:13:0c:83:68:ef:16:70:72:48:8e:2a:93:0d:
cb:b7:35:c7:e3:63:96:a8:86:73:46:6c:93:18:c2:bc:84:4f:
44:96:e1:e4:44:8e:9e:7b:5f:75:f7:05:69:7c:07:3a:a4:d2:
78:61:4f:52:79:da:c8:e2:16:85:04:aa:1c:7a:b8:9f:0e:aa:
90:b3:86:d4:50:08:d8:b2:38:12:b5:31:21:c3:39:fb:94:3a:
ee:93:56:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 12:46:35 2024 by rpki-client on console-ams.rpki-client.org