Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/6804606CF00E11EE974DF92AC4F9AE02.roa
File: 6804606CF00E11EE974DF92AC4F9AE02.roa (raw, json)
Hash identifier: BbnjtFYsW3vg/p964jZz/Ve8Gl471yplnvHLShXMrHQ=
Subject key identifier: 2C:11:33:28:D9:E2:3F:67:83:B2:D9:06:9B:9A:CE:60:A5:80:BD:92
Certificate issuer: /CN=A91FE9DC/serialNumber=0F9F7158DBDFFA2A57AE02487C98206B78380496
Certificate serial: 39
Authority key identifier: 0F:9F:71:58:DB:DF:FA:2A:57:AE:02:48:7C:98:20:6B:78:38:04:96
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D59xWNvf-ipXrgJIfJgga3g4BJY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/6804606CF00E11EE974DF92AC4F9AE02.roa
Signing time: Tue 09 Jul 2024 07:28:23 +0000
ROA not before: Tue 09 Jul 2024 07:28:23 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 137185
IP address blocks: 103.230.92.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Sep 2024 22:43:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57 (0x39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FE9DC/serialNumber=0F9F7158DBDFFA2A57AE02487C98206B78380496
Validity
Not Before: Jul 9 07:28:23 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=668ce697-e782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:7e:ba:04:a8:9f:e3:c3:82:97:14:85:f6:85:
41:f3:ac:65:a8:67:46:60:9a:9f:ba:46:21:c5:91:
29:73:63:0b:25:ad:cc:1d:29:3e:63:03:c3:f3:95:
2f:01:30:cd:c7:8d:34:19:35:f3:fd:f1:9e:a0:02:
20:08:0e:bb:ed:bd:44:2c:4e:e5:31:db:f9:73:ae:
63:3b:f0:9e:2d:da:05:16:af:9c:56:c0:8c:a8:7e:
dd:83:30:1d:9f:c5:b8:37:e9:a3:9c:a9:b6:29:d7:
c1:9f:ca:d3:ec:cd:1c:34:a2:95:bd:42:8f:c1:be:
5a:5b:3d:93:8b:2c:be:2a:7e:1b:ee:40:51:e2:24:
0c:d5:64:3c:1a:e6:b8:81:c7:e6:62:67:40:f3:ea:
c7:b2:e4:e8:c9:17:07:29:d7:eb:43:f6:6b:4e:f9:
26:d1:a8:8c:53:a2:82:c9:ca:3c:41:39:f1:c7:a8:
4b:be:9c:39:b7:07:d9:83:b8:41:6a:10:09:9f:d8:
05:68:c5:0b:f1:1f:d5:c0:6c:05:0d:29:e4:d0:ec:
7d:dd:94:aa:0e:8b:1b:b9:32:06:0e:58:39:b5:79:
c7:4c:19:f0:c6:82:2e:ea:47:ba:47:ea:71:9b:87:
e7:5e:a8:02:3a:08:20:e1:36:94:7d:80:df:b3:32:
c0:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:11:33:28:D9:E2:3F:67:83:B2:D9:06:9B:9A:CE:60:A5:80:BD:92
X509v3 Authority Key Identifier:
keyid:0F:9F:71:58:DB:DF:FA:2A:57:AE:02:48:7C:98:20:6B:78:38:04:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/D59xWNvf-ipXrgJIfJgga3g4BJY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D59xWNvf-ipXrgJIfJgga3g4BJY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/6804606CF00E11EE974DF92AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.230.92.0/23
Signature Algorithm: sha256WithRSAEncryption
48:d0:99:69:a9:55:53:5b:7b:37:aa:55:4a:c6:a6:2e:cc:dc:
55:9d:ee:2f:71:37:fa:f8:0f:ab:cf:75:b9:2d:ed:87:ea:dc:
5c:69:b1:2c:5f:52:42:69:61:bc:e0:79:c1:49:44:5e:c1:cb:
18:d9:31:d9:eb:74:a6:c6:62:02:bc:45:ad:85:bc:3e:a3:a8:
31:99:88:5c:b8:3f:04:4e:1c:4d:fe:7a:12:12:1f:98:79:ee:
0d:bf:67:c6:bc:55:9d:11:22:7f:9d:37:a0:ee:6c:2e:65:d0:
63:8f:da:7f:32:2b:90:03:c5:c6:cd:a0:85:8a:ea:7b:f6:14:
2e:fc:d2:44:04:fb:07:19:c1:c9:7e:96:64:11:6a:fd:ee:f8:
92:2e:84:ad:7d:e9:fe:e7:76:9d:a3:6d:9a:e1:66:81:c1:b3:
13:30:10:a1:35:11:e4:b7:91:0e:7e:03:8c:3e:3b:6d:f5:cd:
40:21:4a:66:a9:11:37:85:1a:e7:37:3f:2f:0c:a8:2f:8f:27:
ee:48:d4:c7:54:94:6c:40:62:8f:4a:c0:ed:df:ad:74:80:11:
1b:21:77:0c:24:51:37:a9:59:07:f4:d7:34:0b:0f:ec:68:69:
78:87:2d:43:c9:1c:63:a9:b6:c9:81:71:90:50:f9:2c:c7:2c:
71:92:68:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 6 01:50:16 2024 by rpki-client on console-ams.rpki-client.org