Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/83834CF0F27411EEB974F03FC4F9AE02.roa
File: 83834CF0F27411EEB974F03FC4F9AE02.roa (raw, json)
Hash identifier: jvjpWFYaCXma0ma4o/TEjxBFwv2uRxI2tIDo4tGz7oY=
Subject key identifier: 43:5A:5B:65:7D:CF:78:15:E2:38:5A:31:16:58:C8:C2:1C:84:E9:41
Certificate issuer: /CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E
Certificate serial: 87
Authority key identifier: 09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/83834CF0F27411EEB974F03FC4F9AE02.roa
Signing time: Thu 04 Apr 2024 11:14:33 +0000
ROA not before: Thu 04 Apr 2024 11:14:33 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 151810
IP address blocks: 103.218.172.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 07 Jun 2024 13:04:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135 (0x87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E
Validity
Not Before: Apr 4 11:14:33 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=660e8b99-9e50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:24:98:38:0a:b1:db:8a:7b:a8:f1:47:c9:5b:
a4:5c:37:48:e9:40:5f:17:58:b2:66:18:d6:04:c0:
b0:53:2f:9c:93:07:ef:19:d2:c3:c9:bf:21:ed:40:
10:fb:50:75:9c:cb:f8:70:c2:8c:e5:2d:9e:a7:46:
46:f0:05:46:01:09:6b:dc:e1:9d:65:a4:bd:c0:48:
34:3d:6a:01:68:7e:49:d9:0d:8f:e6:90:a0:2f:8b:
59:07:e9:4c:d3:09:d1:c8:73:92:80:98:d4:74:61:
ab:91:db:73:52:88:af:ab:5c:16:28:e9:09:81:00:
f0:96:33:ff:d1:bb:c5:f6:f6:dd:d5:ec:ca:f2:fe:
16:e2:12:60:1c:01:9a:26:72:49:de:cf:42:41:79:
4b:01:37:ac:be:c3:40:e5:7e:81:51:5e:f1:e4:a3:
96:9e:c8:8c:7b:42:16:68:7a:e7:94:93:eb:34:d3:
a0:1a:e7:06:bc:d8:4e:b9:e4:ca:54:73:b7:bd:65:
75:0f:68:ca:72:ff:07:5b:5a:d7:94:75:2d:51:e4:
66:57:49:ed:ce:20:c7:19:16:a1:fd:97:41:2e:86:
d7:62:05:ec:f1:14:4d:23:7b:14:85:95:b0:03:60:
45:ea:e1:27:39:99:6c:2e:c0:22:69:37:ef:9c:42:
66:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:5A:5B:65:7D:CF:78:15:E2:38:5A:31:16:58:C8:C2:1C:84:E9:41
X509v3 Authority Key Identifier:
keyid:09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/83834CF0F27411EEB974F03FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.218.172.0/23
Signature Algorithm: sha256WithRSAEncryption
39:bd:bb:73:e1:93:50:4a:50:52:e1:2b:d1:54:b6:cd:24:a4:
f7:9b:15:3d:5b:7b:98:38:db:53:5e:58:1c:30:6a:dd:5c:7c:
20:47:71:5c:0f:d1:ec:4f:73:d2:db:49:17:9c:61:ad:8f:55:
4a:70:11:19:41:c0:63:3b:fd:f3:11:53:cc:96:6a:20:54:88:
9f:bf:1b:3e:10:2d:74:f7:bb:68:12:f2:75:cb:3d:d8:85:0c:
80:13:41:d0:df:9f:d3:72:4b:42:0e:ed:99:2a:33:e0:66:43:
0b:24:21:36:ed:d1:55:1a:97:a4:0c:a9:75:1d:bd:9a:74:91:
7d:d7:a9:49:af:8f:8e:e6:a3:25:f9:a6:bd:d0:f1:cc:70:0e:
fa:39:56:9c:8d:fd:0d:62:56:14:07:87:37:9b:4a:f1:76:83:
51:d4:46:55:8c:f2:8b:6b:62:67:e1:64:7e:81:13:b4:cb:39:
1d:0c:7e:aa:7b:d9:38:38:41:0c:b9:ee:bf:2c:ef:50:c9:37:
56:77:e6:c4:91:91:04:2f:a7:9a:a1:0e:45:41:d2:63:ba:3a:
e2:d7:ec:61:68:71:01:f9:db:77:81:42:c9:41:c2:9d:9e:40:
87:99:76:c0:7f:46:7e:b7:de:60:69:0d:1f:3f:54:2c:78:97:
ca:f5:37:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 17:03:47 2024 by rpki-client on console-fra.rpki-client.org