Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/A7E511108C3D11EF8BE69B76C4F9AE02.roa
File: A7E511108C3D11EF8BE69B76C4F9AE02.roa (raw, json)
Hash identifier: R0HWNySp+N8AY03xKgIFyxxz1av7aL3Jhmv6mow1+c8=
Subject key identifier: B4:E4:03:43:4C:99:EE:DA:19:06:8F:A6:75:BC:C0:01:A4:42:08:87
Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686
Certificate serial: 023A
Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/A7E511108C3D11EF8BE69B76C4F9AE02.roa
Signing time: Thu 17 Oct 2024 04:09:51 +0000
ROA not before: Thu 17 Oct 2024 04:09:51 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 834
IP address blocks: 103.67.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 23 Oct 2024 02:50:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 570 (0x23a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686
Validity
Not Before: Oct 17 04:09:51 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=67108e0f-f259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:02:3a:31:36:38:65:b8:8f:56:72:0e:a4:4c:
79:29:49:05:7a:86:c7:d4:a9:1b:14:63:2b:3d:6f:
a5:ae:90:49:2c:e2:77:ba:cd:9b:79:18:eb:2e:4c:
ea:97:b7:b3:86:29:76:81:9f:5a:0f:fa:01:f1:32:
6d:39:24:c7:93:4e:65:e9:ba:f6:76:b5:e5:70:da:
0e:63:0c:96:15:fb:86:40:47:81:5e:56:06:be:68:
0b:04:82:04:1c:5d:c1:c2:4c:b2:18:f9:86:dc:ce:
09:2b:38:d2:ef:c7:73:da:9d:22:e1:a7:3c:c0:18:
eb:e7:ed:e6:33:b3:6e:07:42:9e:97:7f:d8:21:18:
6f:3a:ad:62:f2:c8:1d:52:89:a0:16:e0:cb:43:65:
b9:ca:13:25:4c:9b:1a:91:4e:c1:71:de:da:56:09:
74:4b:1c:ae:6d:23:a6:a2:ab:43:c9:6e:fe:dd:d1:
6f:61:47:b9:7d:97:8a:e0:77:81:9f:cc:87:4e:90:
7c:b3:49:39:9b:31:8a:7c:3e:b4:06:06:a7:4b:8c:
8d:44:63:4e:58:89:b2:a0:69:de:d4:9d:26:9b:d1:
3e:f5:46:fa:76:63:3b:6e:d7:08:a2:72:77:ba:5a:
52:b6:4d:04:e2:b5:0c:49:51:be:f2:d7:5e:15:7b:
e8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:E4:03:43:4C:99:EE:DA:19:06:8F:A6:75:BC:C0:01:A4:42:08:87
X509v3 Authority Key Identifier:
keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/A7E511108C3D11EF8BE69B76C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.67.244.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:e1:ef:99:2c:fe:15:eb:b4:6d:90:42:a4:fd:29:ab:fe:29:
ea:91:b0:8d:a1:8b:0f:c3:e4:82:bb:00:45:63:b8:4b:9d:1f:
a4:12:3f:8c:33:10:9c:4d:07:28:5c:7d:ef:1e:a7:65:df:66:
94:dc:b0:3d:d6:72:19:e2:ba:4c:f2:b5:8c:0b:d7:1d:83:1d:
5c:c7:e5:14:d0:f9:67:be:14:ff:6f:a8:dc:fb:75:f1:c9:07:
db:de:0f:f6:c7:6a:0f:cf:33:f4:0f:07:d9:f2:ab:ae:22:3a:
a0:93:c1:e6:7c:0e:d5:b9:fd:df:e9:76:6b:94:19:bf:d6:a7:
3a:e1:b0:8b:63:0c:a8:27:0d:4c:d6:56:ef:65:64:bb:7d:cb:
62:46:a8:d0:73:0c:3a:3d:fd:fb:34:e2:1c:35:39:48:1b:d4:
3b:41:23:b6:7a:5c:78:8e:63:c9:cc:9c:1e:7d:cc:dc:e8:20:
2c:67:01:74:3d:2e:4e:93:b8:ab:7b:07:a3:40:7c:a9:92:92:
ad:7f:40:d0:89:fd:10:9a:20:b7:4a:32:07:ae:7c:1b:68:a8:
3a:50:d4:54:8f:86:5d:95:c8:a5:ae:48:13:97:c1:0a:48:e0:
65:ab:47:d7:73:ae:9a:90:70:63:a3:0f:52:fc:28:2a:ef:25:
9c:00:99:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 04:49:48 2024 by rpki-client on console-ams.rpki-client.org