Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/ED7ECB5471DE11EF9FAF905DC4F9AE02.roa
File: ED7ECB5471DE11EF9FAF905DC4F9AE02.roa (raw, json)
Hash identifier: V45LqGl02O3jKZD5VxTMMHc5HWfD2AusfFN6vKY3dG0=
Subject key identifier: 9A:02:17:77:BD:60:A0:55:AF:55:D5:3E:4E:96:49:3C:76:13:10:49
Certificate issuer: /CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E
Certificate serial: F4
Authority key identifier: 09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/ED7ECB5471DE11EF9FAF905DC4F9AE02.roa
Signing time: Fri 13 Sep 2024 14:46:15 +0000
ROA not before: Fri 13 Sep 2024 14:46:15 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 209242
IP address blocks: 103.218.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 05:57:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 244 (0xf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E
Validity
Not Before: Sep 13 14:46:15 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=66e45037-2ae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e2:47:64:e6:be:30:87:85:a5:eb:49:2a:09:
7b:0f:88:b5:b3:65:13:e0:5f:98:26:5f:fa:b6:ac:
ac:e0:67:18:b6:5c:2e:0b:9b:ec:38:fe:98:21:db:
40:87:a7:29:a8:37:18:43:6e:a5:d1:30:33:06:75:
05:af:cd:55:8e:45:b3:d2:08:65:71:a0:6e:b0:34:
0e:d3:2a:df:5f:fc:05:a7:8c:72:c4:0c:8f:79:c9:
41:f0:06:f2:92:80:16:bd:40:ee:33:ff:68:93:44:
91:8a:d3:48:2a:65:ee:4e:66:dc:2f:05:ba:d7:27:
43:a0:ee:a9:85:b7:82:4d:83:e3:64:e6:40:50:ed:
8a:04:55:8f:2d:46:b7:40:54:92:e4:c4:3d:1d:c3:
27:d1:57:a9:15:18:12:af:1a:db:37:e1:55:83:3d:
39:2c:54:c4:d8:4f:e2:48:cb:25:ad:37:83:4d:cf:
c2:7c:00:af:b7:54:1c:fe:4b:05:b3:cc:2b:14:ad:
38:84:ab:86:ae:73:71:df:b4:af:f0:d6:4a:25:30:
3a:c3:c1:a3:46:1f:51:89:be:5b:f3:aa:16:01:57:
78:be:7b:7c:70:00:4a:6c:bc:46:d3:de:ed:57:fd:
bb:1c:04:2e:12:ce:a5:d1:53:35:36:97:63:ef:5a:
8c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:02:17:77:BD:60:A0:55:AF:55:D5:3E:4E:96:49:3C:76:13:10:49
X509v3 Authority Key Identifier:
keyid:09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/ED7ECB5471DE11EF9FAF905DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.218.173.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:6e:a1:d7:1e:44:2d:8a:8f:01:59:a8:42:d3:37:33:b0:f4:
c6:20:c5:00:2d:0b:95:fb:79:a9:88:0f:3f:71:f8:89:b5:d3:
97:53:85:73:30:e3:56:aa:6e:14:80:49:93:e8:b9:e6:3e:b7:
12:0d:17:dd:71:71:5b:01:71:97:4d:c6:7c:7a:5b:57:72:e2:
3c:ac:b7:c8:e4:0e:87:56:43:52:b8:d6:41:5a:49:11:3e:14:
fa:f6:81:aa:b0:7c:cf:55:25:8a:f8:82:b4:11:af:e3:24:30:
cd:b3:da:a1:90:ee:46:f2:31:08:a4:b3:d5:ff:ad:05:cb:51:
7c:b0:07:73:04:1b:3c:74:76:75:b2:b5:01:db:48:7e:7d:e7:
f4:f1:b0:6a:a3:eb:d8:3d:ec:7f:25:57:3b:25:46:14:59:9c:
62:09:9b:1d:d0:ef:b9:a3:d5:6d:7d:57:7e:b7:67:11:8c:fa:
7c:18:da:4f:64:cc:cf:87:f3:25:e0:66:c8:82:aa:a6:c8:20:
70:3d:1b:a4:8a:64:fc:f1:98:9c:9e:18:d9:ab:69:a5:53:7f:
a7:52:67:6d:36:c1:5b:89:b1:b3:ac:81:0a:f5:93:4a:b0:41:
0e:04:5d:46:1a:72:f3:55:ee:05:95:47:a5:ba:cf:cf:8e:d6:
0c:88:50:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 19 07:47:40 2024 by rpki-client on console-fra.rpki-client.org