Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/41DE7080F25C11EEB13CC667C4F9AE02.roa
File: 41DE7080F25C11EEB13CC667C4F9AE02.roa (raw, json)
Hash identifier: d9UqEcMXC+v5WG7tC0dEHURncgyHXVgGT8wGmWAxBFo=
Subject key identifier: D3:AD:8F:66:9A:BE:8D:93:CD:BA:40:97:FF:C6:E2:AE:43:58:42:72
Certificate issuer: /CN=A91FE9DC/serialNumber=0F9F7158DBDFFA2A57AE02487C98206B78380496
Certificate serial: 3B
Authority key identifier: 0F:9F:71:58:DB:DF:FA:2A:57:AE:02:48:7C:98:20:6B:78:38:04:96
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D59xWNvf-ipXrgJIfJgga3g4BJY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/41DE7080F25C11EEB13CC667C4F9AE02.roa
Signing time: Tue 09 Jul 2024 07:28:25 +0000
ROA not before: Tue 09 Jul 2024 07:28:25 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 17547
IP address blocks: 103.230.92.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Sep 2024 22:42:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59 (0x3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FE9DC/serialNumber=0F9F7158DBDFFA2A57AE02487C98206B78380496
Validity
Not Before: Jul 9 07:28:25 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=668ce699-44df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d4:e0:52:87:65:40:17:b2:9d:14:7f:0a:72:
20:5a:fb:26:c6:4f:72:01:e2:54:f6:74:01:a5:c0:
a4:d0:e8:3e:98:b3:6f:2e:94:a8:06:17:39:a1:35:
20:c9:a6:a4:ad:d7:89:3b:e0:da:4f:13:59:8c:39:
9d:50:72:19:ef:b7:b8:b3:6f:28:97:6c:c0:6b:9d:
bd:0e:c0:0c:2f:92:83:21:05:68:fa:dd:87:eb:b0:
d2:9f:ed:d5:d7:63:c8:a5:e2:e0:c8:c9:c4:8d:ea:
8d:82:a5:3f:a5:03:3a:d1:17:7d:34:71:e5:4a:b0:
9b:59:7e:f0:17:c9:76:d2:2b:7c:d2:74:d3:72:39:
52:c8:02:a2:91:75:83:67:50:4c:16:3e:d6:d1:66:
a2:57:55:22:35:2a:6c:c8:7d:51:ea:e9:f8:24:70:
1c:eb:5d:77:62:4d:c6:72:c1:a9:8d:c3:1d:e4:5a:
93:ae:12:ef:13:50:9a:23:fc:c3:04:46:ff:fd:db:
1a:e9:6a:9d:5f:aa:3b:43:0f:d5:52:5d:d5:dc:c9:
20:25:06:08:57:4d:3e:79:b2:8d:c8:3b:6b:0b:6f:
7c:94:1a:b5:d3:90:0c:e3:d6:f4:ae:dd:39:95:e6:
63:3a:73:a5:28:29:ae:4f:21:8a:65:4e:59:23:bc:
8b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:AD:8F:66:9A:BE:8D:93:CD:BA:40:97:FF:C6:E2:AE:43:58:42:72
X509v3 Authority Key Identifier:
keyid:0F:9F:71:58:DB:DF:FA:2A:57:AE:02:48:7C:98:20:6B:78:38:04:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/D59xWNvf-ipXrgJIfJgga3g4BJY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D59xWNvf-ipXrgJIfJgga3g4BJY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/41DE7080F25C11EEB13CC667C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.230.92.0/23
Signature Algorithm: sha256WithRSAEncryption
81:d9:20:f2:f3:a6:e5:77:a9:56:14:7b:25:71:00:a0:41:8e:
73:06:bd:a7:c2:49:b5:be:55:bf:b4:55:22:d9:8a:88:fd:5d:
ed:18:c1:43:20:59:19:d7:07:2d:32:cd:de:df:78:bc:a2:8a:
b0:5f:eb:02:b1:54:c5:96:66:43:bf:80:74:c4:17:18:99:f3:
bc:5b:10:b5:a7:a9:99:17:19:20:ae:2b:3d:0a:15:c2:91:44:
11:25:6a:08:25:8e:0e:e0:2d:52:94:2e:cb:bd:f2:d1:d2:84:
d8:89:eb:e3:ba:9a:27:cd:38:6e:4e:07:e5:e3:25:4e:13:77:
fa:ef:3f:2a:28:35:d8:c0:f6:a5:2d:8f:28:5a:00:34:45:4a:
a9:79:56:d2:0a:1e:b2:8d:8b:31:19:cc:5a:b5:fa:cb:bd:83:
d1:48:93:8b:f0:bd:d4:ae:57:c8:c4:8c:96:ec:5c:92:72:e2:
61:72:a0:e1:3b:f5:2f:cf:cb:73:12:b6:b2:44:1f:df:1d:bf:
38:51:5b:43:dd:85:0e:0c:bb:b8:80:46:70:bb:32:f9:67:77:
b6:7e:2a:62:de:98:26:3d:3c:30:1a:0b:81:b5:7b:c6:57:d5:
38:42:03:4a:47:ce:bc:4f:68:cd:19:03:07:fe:22:fa:76:00:
d3:42:b5:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 6 01:30:16 2024 by rpki-client on console-fra.rpki-client.org