Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/BB7D9878EAD011EEA9C22037C4F9AE02.roa
File: BB7D9878EAD011EEA9C22037C4F9AE02.roa (raw, json)
Hash identifier: b4cg54kXXBVbNPFNhCBhV9upvJBzA5CWVtBpz/AZniY=
Subject key identifier: 8C:3F:FB:0F:26:29:E7:6D:D3:71:07:B7:73:16:EE:08:BD:3D:9B:1A
Certificate issuer: /CN=A91F52E8/serialNumber=C7C91D96FA7E8D2D92219522A64044237511E051
Certificate serial: 0298
Authority key identifier: C7:C9:1D:96:FA:7E:8D:2D:92:21:95:22:A6:40:44:23:75:11:E0:51
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8kdlvp-jS2SIZUipkBEI3UR4FE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/BB7D9878EAD011EEA9C22037C4F9AE02.roa
Signing time: Fri 29 Mar 2024 03:35:51 +0000
ROA not before: Fri 29 Mar 2024 03:35:50 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 58629
IP address blocks: 103.181.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Apr 2024 08:45:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 664 (0x298)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F52E8/serialNumber=C7C91D96FA7E8D2D92219522A64044237511E051
Validity
Not Before: Mar 29 03:35:50 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=66063716-0f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:55:69:91:67:09:fa:37:84:d9:8c:7c:6d:a0:
0e:05:50:20:4f:2f:1d:1c:53:85:b0:44:bd:cd:a4:
8e:a1:d9:6b:df:6a:b4:17:92:81:f6:3a:f9:3d:24:
26:32:59:7f:fb:ee:25:5a:1e:fc:de:cf:a0:97:43:
09:7f:40:26:68:1f:c8:08:94:1c:53:c7:65:71:8a:
0d:09:65:80:17:2e:e9:e3:72:b2:dc:9c:9e:60:64:
8d:b1:9c:23:06:fc:90:92:97:aa:70:98:a4:f7:af:
45:2c:dc:f5:3c:0b:35:26:be:51:5e:b5:e1:18:22:
a2:3b:13:45:a3:ea:6c:51:a1:03:06:d9:04:29:46:
df:fd:20:7d:da:9f:20:0f:b4:43:69:32:39:2e:55:
33:c9:48:a5:af:1c:a1:56:0b:82:d3:45:97:4f:ee:
7d:f3:5f:c2:50:db:d2:b9:d3:8b:46:e9:d5:ec:6f:
e4:5f:f4:37:82:6b:92:21:ef:4b:d4:b9:08:e0:7c:
ba:f7:0c:a7:67:7b:9e:33:dc:d3:f4:55:e8:19:d0:
98:eb:03:ab:fe:56:5c:12:f2:81:be:f0:77:10:04:
dd:be:a2:56:41:a1:4a:0d:fb:df:79:a4:c1:21:14:
77:11:bf:8d:ef:c2:f0:51:d8:3c:78:0e:74:d3:2a:
fa:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:3F:FB:0F:26:29:E7:6D:D3:71:07:B7:73:16:EE:08:BD:3D:9B:1A
X509v3 Authority Key Identifier:
keyid:C7:C9:1D:96:FA:7E:8D:2D:92:21:95:22:A6:40:44:23:75:11:E0:51
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8kdlvp-jS2SIZUipkBEI3UR4FE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/BB7D9878EAD011EEA9C22037C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.181.163.0/24
Signature Algorithm: sha256WithRSAEncryption
07:89:98:f2:af:d4:26:08:d2:21:c5:3a:64:64:26:f2:f6:42:
49:52:f2:64:df:77:ba:09:5c:ff:71:37:b5:f7:2f:e1:91:d3:
ac:80:6e:7b:83:c8:25:22:86:3a:da:18:b9:a3:c4:5c:ca:fc:
25:6b:c6:9b:f0:19:4d:51:6e:8f:36:56:86:c2:97:9d:c9:82:
07:46:46:13:de:7d:24:04:c0:b2:d5:11:66:fd:b9:fa:3b:8d:
8c:2d:77:f1:39:18:e3:3b:a7:d0:e7:40:d7:93:b5:46:76:30:
d7:6b:01:f3:ce:97:f1:34:59:8b:e0:4b:4b:7b:39:0b:dd:04:
e2:bc:b4:ad:3f:26:3f:f0:b8:b3:b7:71:ae:f1:e7:d0:0d:49:
21:d2:b0:83:89:91:92:da:f8:83:9a:fb:fc:c3:7d:e5:a7:dc:
d1:3b:a1:f9:e5:de:c4:a0:69:b6:95:4b:d1:fe:cb:f4:2f:9b:
36:b7:f7:ce:ea:a7:85:4c:8b:36:6f:52:5b:60:9d:31:ac:2d:
d6:01:c1:be:0b:02:fa:25:93:cf:7b:49:69:db:10:57:40:13:
e1:e4:30:3b:73:bf:e6:87:a1:1d:5d:dd:48:fe:cb:0b:bf:6b:
cb:1b:17:f0:27:cb:dc:c1:d1:2b:5f:41:2b:f9:5e:53:06:58:
d2:bb:c7:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:38 2024 by rpki-client on console-ams.rpki-client.org