Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/C364C636687C11EFAE05032AC4F9AE02.roa
File: C364C636687C11EFAE05032AC4F9AE02.roa (raw, json)
Hash identifier: z2D2Z+YFYNUhKy+TUOK5Rmm+8dd1jHS4dHkbDWujZ2k=
Subject key identifier: 24:3C:53:0B:A7:4B:7F:09:13:7F:60:B4:AD:33:2B:D0:DB:06:69:7B
Certificate issuer: /CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E
Certificate serial: DD
Authority key identifier: 09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/C364C636687C11EFAE05032AC4F9AE02.roa
Signing time: Sun 01 Sep 2024 16:10:53 +0000
ROA not before: Sun 01 Sep 2024 16:10:53 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 151810
IP address blocks: 103.218.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 06:06:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221 (0xdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E
Validity
Not Before: Sep 1 16:10:53 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=66d4920d-dae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b0:2d:56:84:86:b6:f8:af:3d:a0:6f:9a:bf:
3f:44:f7:7b:94:1d:82:0b:f2:19:e9:1b:dd:69:45:
d1:17:bc:c3:5b:ca:59:be:11:93:b8:e0:18:31:77:
d6:ed:25:ca:02:f6:02:27:ad:57:ec:fa:45:eb:04:
c1:67:3b:da:e7:e6:90:a7:be:5b:3f:99:4a:69:4d:
40:d3:39:7f:95:85:e7:23:95:f1:5f:11:29:5a:35:
35:e4:dd:86:57:92:3c:a9:aa:f8:c9:43:ae:40:e8:
cb:82:08:19:fb:f7:fe:9c:bb:45:14:57:8d:31:1a:
67:19:b5:c4:90:7b:3d:04:35:c1:1a:01:c4:f9:1e:
a9:2a:e6:74:c4:0a:bd:23:f2:a3:51:f0:54:f7:38:
e6:04:2e:3a:e6:24:df:75:dd:56:8d:54:5f:88:e7:
59:6d:0b:b9:03:26:7c:5e:b9:09:58:69:e1:18:54:
bc:28:41:e2:8b:23:8d:96:f3:6b:62:5d:c8:64:cd:
61:5a:40:e6:e5:de:79:ad:26:ac:b4:33:60:44:0c:
db:8d:d5:8b:aa:2e:4e:44:ed:56:52:ae:e8:64:66:
78:62:7e:cd:0f:e5:da:fa:7a:d0:79:61:02:c5:c2:
b6:b8:35:59:1e:b7:04:37:8e:a1:bd:65:cc:59:67:
05:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:3C:53:0B:A7:4B:7F:09:13:7F:60:B4:AD:33:2B:D0:DB:06:69:7B
X509v3 Authority Key Identifier:
keyid:09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/C364C636687C11EFAE05032AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.218.173.0/24
Signature Algorithm: sha256WithRSAEncryption
96:92:6e:c2:05:4e:bc:44:46:e7:b5:9b:8f:ff:04:4a:79:1d:
7f:71:3a:94:4c:89:ad:a8:63:e3:4f:c3:01:b8:28:64:a2:06:
4a:dd:9f:4f:34:bf:75:d8:6a:97:91:75:9f:ed:3d:98:88:ad:
ed:0b:71:7f:56:a1:88:da:1b:07:15:d4:a9:c5:c6:bc:0c:d8:
95:83:5e:38:25:d4:eb:5c:f2:36:80:3b:27:29:13:9f:d3:f6:
9c:47:34:16:38:b8:5b:ea:ba:7b:be:17:d0:c2:5b:c3:d9:cc:
7f:98:5a:41:ba:b4:c2:34:8a:43:ef:7d:b3:d6:1f:fa:e5:6d:
a2:45:2f:42:86:02:9b:37:9e:e8:9b:9e:0e:3a:c6:ad:b3:66:
af:32:aa:ae:f4:8f:ef:7c:b1:79:a0:7f:f3:20:e4:6c:fa:90:
d2:82:21:3c:c6:0d:18:c4:cf:e8:63:37:c6:48:fc:b6:ac:41:
23:e2:99:be:b5:05:bb:90:ea:f8:d0:24:2a:ce:a7:f4:17:f5:
51:de:b7:c7:e6:9e:5c:f7:17:8e:aa:43:9c:39:42:4f:47:75:
fc:cd:8f:c7:6a:9a:1a:e8:6f:36:b5:dd:c0:9f:e8:f9:c1:de:
53:93:26:9c:8f:57:f6:d4:c1:9e:e4:b5:1b:61:8a:6b:00:cd:
be:e7:0a:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 4 07:35:29 2024 by rpki-client on console-fra.rpki-client.org