Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6104/24798FCA11BA11EA89B16F6EC4F9AE02/1A1EDF7011BB11EAB13CBF6FC4F9AE02.roa
File: 1A1EDF7011BB11EAB13CBF6FC4F9AE02.roa (raw, json)
Hash identifier: fA8JXG7Y344+ZFfSQZS1xqoNiNJRyCwE5nihB/rSRTA=
Subject key identifier: A4:78:EC:D3:C2:B5:73:80:78:5A:98:06:49:7B:42:74:2D:53:DB:7D
Certificate issuer: /CN=A91F6104/serialNumber=4FE7796B073A32A25A7C2E00A21554303EA52875
Certificate serial: 0AFB
Authority key identifier: 4F:E7:79:6B:07:3A:32:A2:5A:7C:2E:00:A2:15:54:30:3E:A5:28:75
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-d5awc6MqJafC4AohVUMD6lKHU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F6104/24798FCA11BA11EA89B16F6EC4F9AE02/1A1EDF7011BB11EAB13CBF6FC4F9AE02.roa
Signing time: Sun 31 Dec 2023 19:57:14 +0000
ROA not before: Sun 31 Dec 2023 19:57:14 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 137049
IP address blocks: 103.103.6.0/23 maxlen: 23
103.103.6.0/24 maxlen: 24
103.103.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Feb 2024 10:27:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2811 (0xafb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F6104/serialNumber=4FE7796B073A32A25A7C2E00A21554303EA52875
Validity
Not Before: Dec 31 19:57:14 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=6591c79a-84a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a7:9e:db:3c:d5:f9:d2:82:52:45:43:6b:b2:
79:ae:78:21:2c:09:ec:d1:ce:39:48:9a:71:c5:3b:
3b:f8:fa:00:9d:e2:fa:c7:10:25:a6:aa:c9:92:9d:
66:d0:44:ae:48:11:9d:c9:84:0f:f5:b0:f4:d6:58:
0f:a0:d0:d9:9b:45:fb:3d:0a:0b:12:20:ea:24:8a:
bd:4f:9b:c5:b3:54:6d:6f:2e:46:83:b8:59:58:70:
25:88:64:f6:08:71:bb:aa:a8:39:9b:42:21:ec:77:
12:f8:67:ac:98:08:e5:90:61:04:df:d5:04:7d:57:
65:d5:f6:e4:49:cf:36:27:d5:d9:32:cf:b8:10:4e:
1f:33:04:03:b5:3f:25:38:46:76:db:46:3c:3a:72:
33:b1:b6:89:1b:c9:3b:3b:6a:f5:ad:7a:79:31:77:
78:a1:bf:67:20:af:88:f3:0d:2d:b1:2d:36:f8:95:
a2:94:5d:a6:8b:a4:48:1e:00:eb:e2:9e:c8:8f:03:
dd:23:ec:f8:4c:2f:29:88:5a:6a:3e:24:6d:59:16:
5d:d7:8e:56:24:ac:84:e2:3b:48:f4:dc:d2:90:9b:
d0:d4:99:d0:8d:b4:98:87:37:91:d6:24:71:6a:78:
b8:b8:e3:24:30:5c:1c:4e:18:a6:23:d6:23:5f:54:
ba:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:78:EC:D3:C2:B5:73:80:78:5A:98:06:49:7B:42:74:2D:53:DB:7D
X509v3 Authority Key Identifier:
keyid:4F:E7:79:6B:07:3A:32:A2:5A:7C:2E:00:A2:15:54:30:3E:A5:28:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F6104/24798FCA11BA11EA89B16F6EC4F9AE02/T-d5awc6MqJafC4AohVUMD6lKHU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-d5awc6MqJafC4AohVUMD6lKHU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6104/24798FCA11BA11EA89B16F6EC4F9AE02/1A1EDF7011BB11EAB13CBF6FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.103.6.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:3a:21:a1:b5:b4:6f:21:50:d0:9a:cc:9a:8d:4d:4b:05:15:
42:1e:6c:66:92:db:d4:3a:d7:d9:e5:0c:6a:e6:75:0f:c7:de:
a2:58:ec:d9:77:4d:e3:34:75:34:31:f5:9a:66:9c:3f:c0:7a:
40:30:94:a7:c5:64:91:f7:72:c3:d3:87:c1:05:25:43:e1:5c:
1d:ba:e4:41:c4:56:88:89:4e:51:6b:7b:cb:fc:85:a0:9a:79:
34:c8:90:7c:d2:35:4a:da:cc:fa:8d:d0:06:4a:09:c5:58:a6:
76:a7:d8:51:f8:74:47:da:7c:05:60:30:57:a7:9f:5f:05:cf:
20:5b:25:33:b7:57:98:f9:e9:61:7a:92:9e:73:7a:82:83:8e:
58:be:85:2b:86:35:5a:fd:78:7f:e0:06:93:68:03:1f:92:2d:
17:67:78:fc:d6:00:d1:50:aa:43:a1:14:2b:97:9b:70:ce:e3:
e8:ad:fc:49:82:46:44:33:87:26:92:79:c8:81:25:a2:1c:98:
75:58:32:8a:e4:66:a7:b6:91:ad:50:37:d4:b3:0e:06:89:5c:
3f:08:05:00:1b:22:f5:a5:76:7a:85:6b:11:d3:52:9a:85:14:
60:d9:53:6f:c8:bf:58:20:11:97:80:df:c8:38:d4:9b:8f:c1:
2c:e8:7b:29
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICCvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjYxMDQxMTAvBgNVBAUTKDRGRTc3OTZCMDczQTMyQTI1QTdDMkUwMEEyMTU1NDMw
M0VBNTI4NzUwHhcNMjMxMjMxMTk1NzE0WhcNMjQwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTkxYzc5YS04NGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtKee2zzV+dKCUkVDa7J5rnghLAns0c45SJpxxTs7+PoAneL6xxAlpqrJkp1m
0ESuSBGdyYQP9bD01lgPoNDZm0X7PQoLEiDqJIq9T5vFs1Rtby5Gg7hZWHAliGT2
CHG7qqg5m0Ih7HcS+GesmAjlkGEE39UEfVdl1fbkSc82J9XZMs+4EE4fMwQDtT8l
OEZ220Y8OnIzsbaJG8k7O2r1rXp5MXd4ob9nIK+I8w0tsS02+JWilF2mi6RIHgDr
4p7IjwPdI+z4TC8piFpqPiRtWRZd145WJKyE4jtI9NzSkJvQ1JnQjbSYhzeR1iRx
ani4uOMkMFwcThimI9YjX1S6HQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKR47NPC
tXOAeFqYBkl7QnQtU9t9MB8GA1UdIwQYMBaAFE/neWsHOjKiWnwuAKIVVDA+pSh1
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjEwNC8yNDc5OEZDQTEx
QkExMUVBODlCMTZGNkVDNEY5QUUwMi9ULWQ1YXdjNk1xSmFmQzRBb2hWVU1ENmxL
SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1QtZDVhd2M2TXFKYWZDNEFvaFZVTUQ2bEtIVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RjYxMDQvMjQ3OThGQ0ExMUJBMTFFQTg5QjE2RjZFQzRGOUFFMDIvMUExRURGNzAx
MUJCMTFFQUIxM0NCRjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnZwYwDQYJKoZIhvcNAQELBQADggEBAJw6IaG1tG8hUNCa
zJqNTUsFFUIebGaS29Q619nlDGrmdQ/H3qJY7Nl3TeM0dTQx9ZpmnD/AekAwlKfF
ZJH3csPTh8EFJUPhXB265EHEVoiJTlFre8v8haCaeTTIkHzSNUrazPqN0AZKCcVY
pnan2FH4dEfafAVgMFenn18FzyBbJTO3V5j56WF6kp5zeoKDjli+hSuGNVr9eH/g
BpNoAx+SLRdnePzWANFQqkOhFCuXm3DO4+it/EmCRkQzhyaSeciBJaIcmHVYMork
Zqe2ka1QN9SzDgaJXD8IBQAbIvWldnqFaxHTUpqFFGDZU2/Iv1ggEZeA38g41JuP
wSzoeyk=
-----END CERTIFICATE-----
Generated at Mon Feb 19 15:21:38 2024 by rpki-client on console-fra.rpki-client.org