Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/B3900AB8D6E611EEAD5FBD64C4F9AE02.roa
File: B3900AB8D6E611EEAD5FBD64C4F9AE02.roa (raw, json)
Hash identifier: uZU+JZkWsfyjJETrsdCDrNEwsjCh07EOZnQzennonz4=
Subject key identifier: FE:AA:B7:C0:3B:AA:0D:D3:AB:B2:77:F7:F8:00:BA:0B:B1:9C:19:EE
Certificate issuer: /CN=A91ED8E0/serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049
Certificate serial: 081A
Authority key identifier: CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/B3900AB8D6E611EEAD5FBD64C4F9AE02.roa
Signing time: Fri 12 Jul 2024 22:12:56 +0000
ROA not before: Fri 12 Jul 2024 22:12:56 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 58715
IP address blocks: 103.151.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Aug 2024 20:26:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2074 (0x81a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91ED8E0/serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049
Validity
Not Before: Jul 12 22:12:56 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6691aa68-842f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4f:eb:ad:f3:87:57:01:3b:d7:32:e1:5a:7e:
b5:1f:8c:49:67:a1:dd:7f:e1:45:ae:4f:76:69:f5:
20:6c:40:ad:7d:33:d7:13:e2:c0:36:c8:58:6c:74:
c5:33:fa:20:ec:ee:e1:59:ca:fc:3f:b4:78:bd:9c:
50:8f:62:d2:1b:34:d0:4d:94:af:4e:af:32:3c:83:
d7:5f:d5:27:f1:21:69:13:a3:a2:03:22:5a:67:03:
9a:12:50:44:50:a9:14:8b:9e:a7:00:5e:b3:78:a4:
11:05:9d:c9:0a:b0:3f:0f:7b:7d:da:8b:fe:bd:55:
57:7b:02:2e:95:35:72:25:1c:1f:82:4e:a2:7c:bb:
3d:c5:93:d0:69:75:b4:2d:c0:35:71:1c:ca:4d:5c:
ba:f5:5f:fc:60:3e:1c:7a:53:18:d7:5b:e6:c3:8a:
75:0f:11:71:0f:15:57:a9:26:89:57:74:68:9e:3b:
a1:20:8b:08:67:4a:16:25:71:18:9b:f1:b3:35:38:
da:0b:9e:26:c4:c9:f5:1a:8c:12:b2:f2:47:fd:21:
ab:b1:53:1f:00:e5:3f:76:cd:16:7f:2c:85:f2:4c:
ba:b6:c4:ef:3b:86:88:ff:10:3c:cb:06:2b:4d:14:
78:ea:e9:c9:bf:17:21:98:12:d6:ae:91:24:9e:6b:
ed:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:AA:B7:C0:3B:AA:0D:D3:AB:B2:77:F7:F8:00:BA:0B:B1:9C:19:EE
X509v3 Authority Key Identifier:
keyid:CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/B3900AB8D6E611EEAD5FBD64C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.10.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:f0:a4:84:5c:d3:2e:36:25:0c:fc:f1:1a:17:be:a5:72:df:
38:e1:1e:78:ae:9d:f8:64:78:0e:4a:dd:f1:41:fe:02:81:52:
d0:bd:6e:00:ec:4e:b7:4e:3b:08:53:81:3c:6d:a5:37:ee:d6:
c4:b3:6e:1d:5d:a3:79:46:e7:37:cc:47:ba:8f:54:bc:83:57:
de:8a:b6:92:de:08:db:71:bd:90:49:0f:2c:bc:04:3c:44:f5:
4d:53:23:24:0e:2e:21:5e:79:98:ab:2f:5a:80:12:d8:cd:11:
f1:0f:01:1a:52:6e:7b:b2:73:00:06:74:2b:f7:b4:47:44:64:
19:3c:98:79:0f:07:df:00:dc:33:f6:4d:11:3c:5b:21:db:8b:
3c:0f:eb:29:c8:b7:66:80:55:ee:f8:0b:4f:ee:80:a6:d9:7b:
07:73:c3:ed:07:af:e3:dd:26:c7:d1:61:73:e4:b4:95:55:13:
19:c2:7c:4e:b8:61:3c:58:e9:e2:27:69:d5:83:30:67:cb:67:
3a:ac:f8:9d:a9:3c:c2:51:76:8e:66:4f:59:6b:03:39:24:00:
be:af:cb:d2:d0:24:43:6c:f5:df:b9:41:49:ed:5f:33:b7:41:
89:dd:ff:78:ee:b4:19:a9:e0:19:7d:43:bf:72:f9:7a:41:2f:
5a:78:df:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 18 22:02:31 2024 by rpki-client on console-fra.rpki-client.org