Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/FC0C402A0C9411EFA8D0B354C4F9AE02.roa
File: FC0C402A0C9411EFA8D0B354C4F9AE02.roa (raw, json)
Hash identifier: kMAJCFT1gQvcnAliudAQJjTlq5Rcm8U1HeBVpIysTGA=
Subject key identifier: E1:08:8A:C1:51:29:02:6D:C5:F6:BC:F4:18:F9:46:10:7D:91:D4:BA
Certificate issuer: /CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33
Certificate serial: 10
Authority key identifier: AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/FC0C402A0C9411EFA8D0B354C4F9AE02.roa
Signing time: Tue 07 May 2024 17:12:29 +0000
ROA not before: Tue 07 May 2024 17:12:29 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 103.14.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Nov 2024 18:56:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16 (0x10)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33
Validity
Not Before: May 7 17:12:29 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=663a60fd-0d65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:85:33:2f:1d:df:a9:4e:53:9c:ee:e2:e1:8b:
4b:b9:eb:ec:79:e5:46:f1:39:55:be:8d:d5:b0:cf:
ac:c3:84:3b:de:26:68:ed:0d:8e:dd:8d:49:9a:3e:
d8:11:63:01:d1:51:3d:ed:02:e3:21:ba:f1:46:3a:
5e:9d:03:4f:fc:fe:89:4c:f4:f8:d9:da:83:1c:c2:
8c:5e:e9:61:7a:21:ea:9d:02:ee:d7:34:b1:22:65:
00:0a:3f:42:11:8a:a0:7e:9f:0b:c0:aa:47:5f:09:
b4:0f:cb:d9:c1:c1:ba:ff:98:6d:1b:1e:0a:24:04:
d8:7a:e4:48:62:56:e0:aa:12:ce:ea:7f:0b:43:d0:
01:65:3f:b7:0b:06:4b:53:05:20:6d:c6:32:dd:50:
b4:fc:db:7c:b7:36:ca:e7:d9:72:79:ae:ed:2b:c5:
00:e2:af:86:8c:8b:c4:83:bb:ff:7b:b5:fc:80:df:
60:ae:90:b3:dc:0a:62:23:f3:a3:94:c8:00:69:6c:
4f:f0:ac:59:82:a9:17:59:c9:3a:c8:3a:91:ea:e4:
c7:8a:8b:63:22:3c:86:31:9a:9b:96:9e:af:24:4e:
95:a9:1b:5b:b4:a7:e7:bd:62:d6:03:5d:0e:35:8d:
50:6f:c0:7a:3a:d5:e3:88:07:8c:ec:a2:4a:2a:b2:
ef:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:08:8A:C1:51:29:02:6D:C5:F6:BC:F4:18:F9:46:10:7D:91:D4:BA
X509v3 Authority Key Identifier:
keyid:AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/FC0C402A0C9411EFA8D0B354C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.14.23.0/24
Signature Algorithm: sha256WithRSAEncryption
11:08:72:a1:0e:a7:76:79:9d:d1:d2:0e:42:d4:f7:74:dc:4a:
aa:d6:68:fa:dd:4e:4a:f4:fd:23:0c:8a:b1:7a:e8:d0:79:3a:
d0:8e:98:4d:46:a6:d2:02:f5:45:f6:90:a4:39:59:ab:86:7d:
f4:78:4d:ee:16:3a:24:0d:e7:77:68:0f:31:e0:b8:04:b8:49:
27:8c:5f:35:57:5b:89:fd:e0:a8:b8:8f:fd:67:f3:9a:0f:a6:
75:5c:b1:3c:9f:8c:df:6d:c4:4f:30:9f:ca:e8:ba:c9:7d:4c:
da:9e:33:21:b1:3a:53:22:ec:38:01:09:13:f6:1f:cc:cd:a8:
2c:8a:c7:84:31:00:ee:aa:34:30:63:9f:b8:a0:f2:f3:10:5b:
7c:6d:18:e4:c7:0e:70:cb:d8:ac:8a:67:c1:ba:98:10:11:8e:
87:66:ed:b2:cc:bf:ec:01:9b:0f:4f:0c:b6:bd:1a:94:ad:6d:
ab:d5:6c:3c:f7:3d:3e:a2:02:72:8c:d4:c4:0c:12:0d:a1:71:
18:a2:9f:a3:d1:c2:27:35:d0:dd:0d:08:54:69:94:1b:61:a5:
3b:31:08:a8:47:32:e2:16:83:b6:4b:5e:e0:c4:ee:92:28:3e:
57:60:e2:25:36:69:4e:15:0e:bd:4a:e4:2b:2d:cb:09:86:ce:
cf:e3:60:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 21:31:32 2024 by rpki-client on console-ams.rpki-client.org