Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/6FCE41B271DE11EFA543C55CC4F9AE02.roa
File: 6FCE41B271DE11EFA543C55CC4F9AE02.roa (raw, json)
Hash identifier: 0OzTEkTBD2zGEndL1r94Th9N9s6weAuDIeDEiN8TSIg=
Subject key identifier: 5B:BA:0C:70:16:30:65:FB:50:05:30:79:F9:96:2E:8F:DA:D6:CC:13
Certificate issuer: /CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E
Certificate serial: F0
Authority key identifier: 09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/6FCE41B271DE11EFA543C55CC4F9AE02.roa
Signing time: Fri 13 Sep 2024 14:42:45 +0000
ROA not before: Fri 13 Sep 2024 14:42:44 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 209242
IP address blocks: 103.218.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Sep 2024 14:45:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 240 (0xf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E
Validity
Not Before: Sep 13 14:42:44 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=66e44f64-4234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2a:02:04:91:a1:42:ab:46:29:0a:c2:21:58:
ae:ac:b4:93:19:57:49:10:ed:9e:7c:77:4e:4f:81:
e2:62:c3:94:64:ed:03:80:c0:f2:42:1e:91:f1:ad:
7f:85:08:3f:7f:03:ed:a8:99:53:06:b9:c8:d6:db:
b9:aa:49:34:e7:88:02:b3:e3:77:56:97:ee:d4:a1:
a5:64:10:58:23:1d:ae:bc:82:96:a6:08:47:11:d9:
e8:25:8c:cd:2c:db:40:7b:ca:2d:f3:f5:95:d0:9f:
32:0e:e1:8f:ff:b7:e5:aa:c1:49:a5:3d:2e:48:27:
bf:87:da:2d:e3:dd:b7:4c:fe:0f:26:c5:76:68:06:
5b:91:af:27:88:60:bd:51:95:9b:de:4e:28:97:a5:
40:d6:a4:1d:7d:eb:69:ec:f9:35:e3:32:70:13:e1:
48:73:94:54:83:12:54:97:45:22:2c:f1:19:9c:2d:
f6:20:51:48:5d:82:c7:56:2c:4e:8d:7c:55:26:d6:
01:eb:97:1b:71:d7:c1:36:cb:08:9f:66:c8:e6:f6:
32:ef:13:7a:89:00:f4:cc:b7:85:b6:38:08:3e:86:
c9:64:b7:99:cc:85:df:c1:d3:d8:fa:22:32:4d:76:
1a:36:54:be:df:93:3f:8e:97:cd:03:d2:ce:03:2e:
8d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:BA:0C:70:16:30:65:FB:50:05:30:79:F9:96:2E:8F:DA:D6:CC:13
X509v3 Authority Key Identifier:
keyid:09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/6FCE41B271DE11EFA543C55CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.218.173.0/24
Signature Algorithm: sha256WithRSAEncryption
85:3f:cc:ef:15:09:c2:0d:fc:bd:7d:cf:86:63:c4:23:d1:9a:
ec:99:0d:68:62:21:d9:b5:a8:38:f8:ec:e5:5a:8c:60:cb:d1:
38:13:20:b7:26:a6:e5:02:a5:78:f4:c4:70:68:25:49:cf:6e:
d5:6c:93:c1:85:1f:60:c1:a1:23:a5:04:6c:06:1c:09:ee:4a:
7c:4b:2e:66:8e:0b:5b:f5:ad:49:36:40:c9:c3:d4:37:6c:c1:
04:1b:47:b5:46:d6:a4:f2:aa:94:c8:f0:f0:7d:d0:2f:62:7a:
7d:4e:3e:45:16:6c:6e:a1:29:c2:fc:60:cb:13:8d:32:02:09:
35:d3:c5:47:6c:a9:d4:21:78:e6:99:34:95:d1:6b:ec:25:73:
a6:8a:a8:bb:a6:9c:3c:29:45:89:50:ef:4e:e1:0e:f7:83:55:
a8:f6:56:dc:b6:a6:75:85:28:84:f7:24:e4:d6:1b:69:bd:83:
6f:d4:5e:88:d5:61:df:3a:0c:1d:2a:6a:7b:8d:ae:54:4b:7c:
ca:4b:54:ee:ba:bb:0c:5e:56:84:03:46:14:db:d0:43:f5:1b:
45:ac:33:97:64:71:6a:ef:99:8c:3b:6a:c3:e0:06:34:19:95:
8b:1c:ca:ff:72:af:70:d2:b4:25:1c:d2:50:9e:70:11:0f:e1:
58:4e:d1:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 13 17:40:58 2024 by rpki-client on console-fra.rpki-client.org