Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/3BD3BE94592211EEB3068F36C4F9AE02.roa
File: 3BD3BE94592211EEB3068F36C4F9AE02.roa (raw, json)
Hash identifier: D0InpLlr86FOtig4lOr6GT+C4A29OdX7JmTO6Su7HmM=
Subject key identifier: 04:F0:A8:DC:4B:DE:29:A9:7E:FD:1F:E4:CB:EF:46:70:AE:CE:9E:4E
Certificate issuer: /CN=A91F715C/serialNumber=E77132E4FEAD04EED4FE946D607A0DCB57A42065
Certificate serial: 17
Authority key identifier: E7:71:32:E4:FE:AD:04:EE:D4:FE:94:6D:60:7A:0D:CB:57:A4:20:65
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53Ey5P6tBO7U_pRtYHoNy1ekIGU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/3BD3BE94592211EEB3068F36C4F9AE02.roa
Signing time: Fri 22 Sep 2023 08:30:06 +0000
ROA not before: Fri 22 Sep 2023 08:30:06 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 56913
IP address blocks: 103.72.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Jan 2024 09:18:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23 (0x17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F715C/serialNumber=E77132E4FEAD04EED4FE946D607A0DCB57A42065
Validity
Not Before: Sep 22 08:30:06 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=650d508e-00b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:cb:6b:3d:cc:55:31:48:48:5b:78:32:7b:84:
3a:48:ec:3b:f1:40:92:27:70:de:24:d3:c8:0c:f3:
0c:c3:99:e0:b5:c9:44:f1:b7:1b:84:36:2f:5d:27:
ca:a1:21:a6:35:89:4d:f8:c1:5c:ca:5c:4f:35:00:
fd:18:9d:dd:20:f8:24:9b:8f:72:ad:d7:0a:8c:5a:
b2:fd:e0:2b:27:49:ea:a5:a9:94:8c:95:62:30:ce:
6a:33:ba:1a:5b:a6:1b:d7:2d:1c:5b:63:d3:b7:87:
5a:77:ec:af:d5:a7:f6:dc:da:33:85:a5:aa:7e:9d:
1a:a9:06:cb:c6:0f:59:91:24:78:12:db:51:11:39:
e2:7b:da:47:e1:70:fb:c9:c7:ee:a3:a2:0e:5b:bd:
7e:1c:96:84:48:04:db:d7:5e:25:9e:4b:b6:28:0b:
33:24:ce:0f:69:88:d9:c3:88:74:77:bf:1d:cf:e9:
86:3e:20:f7:f8:38:81:48:96:fc:ea:49:95:21:6e:
53:dc:46:60:e7:14:c3:08:6c:af:12:95:cd:cd:7a:
59:e6:cc:6f:0f:a3:09:9f:ff:3e:e2:c7:c2:e4:7a:
c7:9b:5e:f4:35:8c:fb:cf:07:fd:6e:4d:c3:b7:0f:
59:b2:4d:9a:5e:ca:29:ec:a9:10:be:24:60:2b:c2:
a2:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:F0:A8:DC:4B:DE:29:A9:7E:FD:1F:E4:CB:EF:46:70:AE:CE:9E:4E
X509v3 Authority Key Identifier:
keyid:E7:71:32:E4:FE:AD:04:EE:D4:FE:94:6D:60:7A:0D:CB:57:A4:20:65
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/53Ey5P6tBO7U_pRtYHoNy1ekIGU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53Ey5P6tBO7U_pRtYHoNy1ekIGU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/3BD3BE94592211EEB3068F36C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.72.63.0/24
Signature Algorithm: sha256WithRSAEncryption
76:51:17:11:97:3b:f9:8e:63:e0:8b:28:fd:ae:9b:b2:e8:a1:
ce:86:d2:8d:d7:a3:fd:d3:ec:78:4e:80:4a:68:64:e1:42:e9:
8e:0d:52:84:36:3f:ba:10:bb:ce:68:bb:55:dc:0d:27:4b:88:
33:f0:01:95:50:29:c2:78:93:c7:27:e4:c1:68:2e:cd:f8:1e:
c4:94:bc:d9:89:42:33:e5:85:18:fd:0a:98:8a:59:a1:12:c1:
fd:d9:e8:76:0b:c8:e6:ef:cb:52:4a:8c:6f:7d:7a:a1:df:fe:
d6:f5:8f:7b:11:4f:52:c9:c6:00:1c:e9:70:d9:ef:06:ff:a2:
0a:d4:e9:bf:9e:47:2e:41:ae:a4:3f:a3:60:f4:32:96:20:3d:
74:bc:ef:fb:24:b4:c4:c7:9a:fc:b5:e4:e6:d3:b6:46:a7:a2:
d3:00:7f:a5:b0:9a:09:66:18:e5:9a:c1:7d:05:9d:fd:0f:7e:
10:08:10:5d:32:9b:62:69:17:23:9c:65:6a:63:2d:f8:b8:50:
84:12:74:91:96:7b:e3:9f:19:db:34:4b:a7:fb:41:df:f6:49:
d0:c5:66:4a:c7:46:eb:a2:2f:98:f3:3a:62:9a:88:31:d3:c0:
49:1e:2c:b3:50:7b:48:c4:1a:4f:ba:5e:68:0c:cd:89:13:99:
7e:09:b8:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:38 2024 by rpki-client on console-ams.rpki-client.org