Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/DC8132440F5811EF91000875C4F9AE02.roa
File: DC8132440F5811EF91000875C4F9AE02.roa (raw, json)
Hash identifier: 7W4ZzL97PgTaiJV2wm0HmET+IJPF/QfQLT6u69qUP1s=
Subject key identifier: 30:A2:AE:32:8D:DC:F8:28:CC:7B:34:E2:D4:60:62:F1:E8:E5:49:F6
Certificate issuer: /CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33
Certificate serial: 17
Authority key identifier: AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/DC8132440F5811EF91000875C4F9AE02.roa
Signing time: Sat 11 May 2024 05:39:40 +0000
ROA not before: Sat 11 May 2024 05:39:40 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 23470
IP address blocks: 103.14.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jun 2024 09:11:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23 (0x17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33
Validity
Not Before: May 11 05:39:40 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=663f049c-d472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:71:0a:98:fc:1f:a5:4e:73:fe:00:57:c2:8c:
92:4e:e5:4c:39:7f:6e:56:ec:e2:f4:e5:43:90:20:
a6:19:2a:fc:44:67:54:66:8b:c0:2f:bd:56:70:a2:
cb:53:06:5f:d6:a1:09:a2:b0:96:f9:93:1e:d7:f9:
80:6e:50:59:35:48:f8:d5:6e:8c:03:0e:7b:52:26:
3d:92:7b:1f:bc:f1:1d:79:2e:d6:54:22:d9:e2:74:
6a:7b:b7:e5:9f:17:e4:0e:36:9d:cf:b4:f4:e9:e1:
6f:17:0a:2c:c1:a3:a4:7e:21:b5:38:c5:44:28:73:
1b:bd:5b:d3:56:3a:52:58:26:1a:3d:1f:14:f1:ac:
0a:30:e7:17:e4:6a:82:6c:13:92:ce:05:f7:ce:78:
5e:97:02:53:93:7b:89:16:c1:c2:28:9c:4a:6c:4b:
61:9f:d1:e0:97:95:52:39:d3:11:15:1c:ef:fe:03:
7b:8d:99:27:49:81:a8:49:4f:5a:a8:07:bf:0c:f0:
17:89:24:d5:51:5e:52:55:1c:e3:19:0c:3b:da:f4:
54:85:60:09:86:ac:46:64:28:d6:89:0c:e7:f8:30:
ab:97:5d:90:f4:0f:55:7b:76:c7:5a:f9:1e:ef:85:
37:e7:3b:ca:e8:47:04:42:cd:b0:a0:f6:46:7d:e4:
e7:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:A2:AE:32:8D:DC:F8:28:CC:7B:34:E2:D4:60:62:F1:E8:E5:49:F6
X509v3 Authority Key Identifier:
keyid:AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/DC8132440F5811EF91000875C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.14.22.0/24
Signature Algorithm: sha256WithRSAEncryption
16:0e:4a:43:dc:11:06:9d:d9:a4:24:9a:27:3e:da:a9:67:b4:
3a:fa:27:21:0e:79:d2:19:e4:81:ee:7c:1a:8d:cf:74:4f:cc:
33:e2:cc:58:d3:b0:17:c5:99:11:49:5e:9c:2f:81:db:5d:a1:
6a:12:cd:27:fd:a4:f2:f0:3c:70:91:ef:29:4e:56:c0:10:f8:
07:04:3e:69:83:d7:d5:31:21:62:b7:32:28:a5:0f:6c:1e:08:
4c:84:17:b8:ea:9f:be:ae:5a:3f:18:0c:45:6f:9c:73:53:14:
f2:91:7c:ca:3e:2d:73:aa:36:3b:ef:5b:3a:08:81:d0:15:a9:
97:d4:65:e8:3e:31:a0:87:7c:37:e4:cc:df:97:87:a7:fc:3b:
47:54:fc:d1:e0:b2:0a:c5:c7:49:b2:8f:98:38:d3:10:b9:21:
71:f3:16:ea:85:47:b0:93:c3:b7:62:03:19:48:98:f9:f2:59:
ed:95:e6:a4:44:e0:dd:19:85:77:57:ec:2d:5b:90:9c:0f:b3:
7a:8b:73:3a:8f:2c:3f:c8:d1:7c:96:34:7b:4e:da:65:23:31:
15:96:a3:89:cd:df:fc:73:e6:fd:c7:70:4b:1f:33:00:48:8d:
28:bf:2d:c9:27:13:0c:c1:46:a2:b5:71:93:83:12:54:98:ee:
d3:38:87:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 14 13:58:28 2024 by rpki-client on console-ams.rpki-client.org