Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD8BE/C68EFF9EE5D611EE8B356739C4F9AE02/5837A990E63711EEA4F6C95AC4F9AE02.roa
File: 5837A990E63711EEA4F6C95AC4F9AE02.roa (raw, json)
Hash identifier: A+7yPA+OiC/Z0nxNrlXB1vQDgkDDxHfBa6hrtOFSl1c=
Subject key identifier: B2:4F:D7:05:C3:08:6F:DA:D0:0C:B1:4D:F7:57:4B:80:C7:6C:49:39
Certificate issuer: /CN=A91FD8BE/serialNumber=E3F18D412026F31BA443EA33F56706FFB2F0F162
Certificate serial: 03
Authority key identifier: E3:F1:8D:41:20:26:F3:1B:A4:43:EA:33:F5:67:06:FF:B2:F0:F1:62
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_GNQSAm8xukQ-oz9WcG_7Lw8WI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FD8BE/C68EFF9EE5D611EE8B356739C4F9AE02/5837A990E63711EEA4F6C95AC4F9AE02.roa
Signing time: Tue 19 Mar 2024 21:26:27 +0000
ROA not before: Tue 19 Mar 2024 21:26:27 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 54702
IP address blocks: 103.67.54.0/24 maxlen: 24
103.67.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Apr 2024 14:35:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FD8BE/serialNumber=E3F18D412026F31BA443EA33F56706FFB2F0F162
Validity
Not Before: Mar 19 21:26:27 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=65fa0303-7040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:a1:31:95:aa:c5:91:e0:36:df:cc:57:35:56:
94:28:2f:f8:8d:04:53:49:44:a4:a5:0b:e8:bd:26:
23:e8:a6:b2:ae:c3:ca:80:6f:44:99:59:43:a2:1d:
4a:ee:38:60:59:a8:76:b0:d1:21:f6:82:c2:dc:78:
2d:5a:c6:61:bf:47:37:d7:96:b4:2b:f9:f7:ef:0d:
c7:f7:91:f2:c9:86:87:9f:91:c1:54:58:42:32:12:
9d:1e:54:b4:c4:f2:cd:39:f2:ad:70:aa:63:2d:a2:
6e:88:bd:e1:84:eb:ab:9d:3e:57:e3:1f:19:f8:a3:
1b:eb:0c:a1:6d:e7:99:a4:23:5e:9f:76:5c:4c:f5:
53:f5:d2:b5:a1:cc:d3:ec:95:e6:b4:b6:69:db:be:
0c:6c:ef:b7:f2:34:f3:a2:7d:2a:84:8b:53:5e:4f:
76:96:d3:55:31:c8:cb:9a:75:5e:cb:f8:f6:9e:71:
25:e5:47:b9:46:18:53:1e:20:ae:a8:56:62:8b:dd:
eb:a1:19:00:79:02:2f:2c:15:08:43:0e:c3:45:28:
16:4a:9b:94:15:5f:9b:00:01:d7:67:04:d8:8b:a0:
b4:96:0d:f4:58:ec:f0:ea:19:94:19:4e:e6:81:cf:
14:aa:2b:91:dd:46:42:0a:eb:08:55:82:c9:6a:55:
c7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:4F:D7:05:C3:08:6F:DA:D0:0C:B1:4D:F7:57:4B:80:C7:6C:49:39
X509v3 Authority Key Identifier:
keyid:E3:F1:8D:41:20:26:F3:1B:A4:43:EA:33:F5:67:06:FF:B2:F0:F1:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FD8BE/C68EFF9EE5D611EE8B356739C4F9AE02/4_GNQSAm8xukQ-oz9WcG_7Lw8WI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_GNQSAm8xukQ-oz9WcG_7Lw8WI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD8BE/C68EFF9EE5D611EE8B356739C4F9AE02/5837A990E63711EEA4F6C95AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.67.54.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:dc:d6:bd:b4:d0:be:d6:1d:b7:c8:ee:f8:d5:f1:d8:52:26:
a7:58:23:01:bd:ab:d3:80:4b:86:02:e6:76:f9:72:66:09:d2:
b7:80:5f:46:1d:fe:8d:22:ce:15:5b:e1:22:e0:9a:d9:e1:69:
5b:76:e1:a5:9b:79:f8:81:96:02:e1:f8:21:a3:99:c0:8c:a2:
10:d2:81:54:04:be:c1:60:62:8e:3e:46:86:04:f4:39:7a:d3:
56:a0:1e:59:d5:51:07:31:82:24:ce:15:2f:9d:3d:88:88:05:
19:e3:10:f7:b4:79:7c:a6:53:56:b6:4d:61:52:ce:ce:f4:f0:
4d:42:58:87:3a:d3:08:99:d7:11:4a:42:73:91:80:7a:cf:7f:
2c:b6:11:e5:27:b9:ce:c0:a3:72:6b:5f:0b:bd:3e:88:5c:b3:
63:ea:ed:43:9f:a2:9f:82:26:c1:1a:fc:c9:4f:37:25:3a:5c:
a0:75:67:03:a8:48:32:69:dd:84:15:f6:45:cd:a3:80:97:d4:
04:3b:a9:d2:29:8e:76:2b:cb:19:22:ec:cc:40:18:b5:20:8d:
21:f0:a7:69:29:b5:d0:a0:ef:44:c7:cd:1e:75:da:f2:ff:59:
ad:7e:d9:52:9f:cb:db:a2:f6:c9:a5:91:90:1a:e8:25:46:3f:
3a:ae:79:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:40 2024 by rpki-client on console-ams.rpki-client.org