Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDCA4/EED99E32CB7E11E8993D1776C4F9AE02/35656C3668D811EEA2C8B938C4F9AE02.roa
File: 35656C3668D811EEA2C8B938C4F9AE02.roa (raw, json)
Hash identifier: yix10dEBweVjy0lOQ4ZX1jiajRmitkeO3zbdgRdgVfQ=
Subject key identifier: 48:14:F2:35:01:AF:52:CC:A2:A2:BA:71:A7:28:13:92:36:E6:DE:B2
Certificate issuer: /CN=A91FDCA4/serialNumber=762763B7D600972930E9DE7A1442C5D30F68C484
Certificate serial: 1162
Authority key identifier: 76:27:63:B7:D6:00:97:29:30:E9:DE:7A:14:42:C5:D3:0F:68:C4:84
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/didjt9YAlykw6d56FELF0w9oxIQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FDCA4/EED99E32CB7E11E8993D1776C4F9AE02/35656C3668D811EEA2C8B938C4F9AE02.roa
Signing time: Thu 12 Oct 2023 08:20:31 +0000
ROA not before: Thu 12 Oct 2023 08:20:31 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 48011
IP address blocks: 103.130.145.0/24 maxlen: 24
2403:bcc0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4450 (0x1162)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FDCA4/serialNumber=762763B7D600972930E9DE7A1442C5D30F68C484
Validity
Not Before: Oct 12 08:20:31 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=6527ac4f-cbed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0e:69:16:81:cf:9b:22:aa:98:c2:31:69:32:
83:6e:f5:ba:ef:f0:b3:09:74:4b:42:51:23:60:e4:
32:3b:da:fe:d5:9f:a9:c9:2c:d5:7c:1a:68:31:42:
55:9f:fc:86:8d:66:69:d2:e9:72:1a:cd:a4:4e:aa:
01:0a:b0:4d:3d:7e:3f:4e:5e:84:56:e6:17:07:f8:
f4:bd:f5:97:43:e3:54:2e:7c:a0:f4:fb:cb:fc:ca:
b8:56:b6:fc:45:5e:b9:2e:36:99:6b:7c:da:ee:57:
4c:18:55:81:20:5c:c9:90:c6:13:8a:42:0b:e1:a4:
c0:b1:4a:59:98:7a:2f:f4:65:26:4c:a9:aa:35:63:
cb:75:41:1e:2a:e3:df:91:40:ee:63:f1:7d:40:f3:
d7:a2:3a:b5:66:e3:cd:01:05:32:e6:83:66:e3:d2:
5f:47:af:2a:c2:9b:dd:66:e4:1b:dd:28:82:83:82:
8a:19:06:5d:37:d8:f9:e3:bb:f0:45:32:7a:6f:86:
fb:49:74:f9:ee:55:98:9e:15:71:b1:0d:98:68:2e:
bb:98:63:78:4c:b1:0f:e1:82:1a:8a:6e:49:a4:7b:
e1:da:8c:ca:d4:1d:51:b8:83:7b:93:32:32:c2:1a:
4c:78:8f:17:c3:ca:14:68:a9:b6:38:f2:44:d3:9b:
c6:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:14:F2:35:01:AF:52:CC:A2:A2:BA:71:A7:28:13:92:36:E6:DE:B2
X509v3 Authority Key Identifier:
keyid:76:27:63:B7:D6:00:97:29:30:E9:DE:7A:14:42:C5:D3:0F:68:C4:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FDCA4/EED99E32CB7E11E8993D1776C4F9AE02/didjt9YAlykw6d56FELF0w9oxIQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/didjt9YAlykw6d56FELF0w9oxIQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDCA4/EED99E32CB7E11E8993D1776C4F9AE02/35656C3668D811EEA2C8B938C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.145.0/24
IPv6:
2403:bcc0::/48
Signature Algorithm: sha256WithRSAEncryption
a2:47:bd:92:50:86:cd:85:68:d0:cf:f6:14:8f:0f:b6:25:53:
bf:49:b9:57:90:0f:2f:2e:1d:e4:ad:61:01:09:c8:0f:51:d0:
ec:c3:af:e4:37:3b:52:57:fd:ae:b6:94:6a:df:f7:1e:de:84:
2f:1c:c0:91:99:fe:b2:dd:c6:a2:57:9f:20:29:1a:de:26:d6:
2c:f3:e2:d1:db:3b:b5:bc:f0:2b:4b:47:1f:5f:ba:ce:b2:8c:
27:71:99:d4:03:b5:19:88:15:f0:07:ca:a4:24:18:38:a8:81:
10:0c:b5:01:9c:e6:58:b1:17:28:2f:e5:68:13:8d:60:90:24:
1d:2a:44:d8:eb:28:08:61:69:49:04:2a:c9:ea:1c:06:08:15:
7a:6b:dc:22:9c:61:1c:f4:06:7e:4b:c8:a4:5b:ae:5b:ea:f0:
68:ac:51:56:c3:03:5b:1e:da:72:f8:49:bd:91:03:d9:c8:f2:
5f:3e:59:48:74:f1:bc:32:20:73:74:bb:bb:92:c4:57:24:44:
1a:7b:03:24:87:d4:b7:19:e7:96:4c:6b:3f:9c:42:49:dc:2a:
24:07:17:42:10:b3:d9:8b:8e:5d:28:b5:bd:30:24:b1:1e:71:
9a:e7:89:dd:16:4f:ad:59:b3:99:15:49:84:4b:92:ed:fa:90:
b4:90:e9:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 14 05:29:20 2023 by rpki-client on console-fra.rpki-client.org