Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3132382e302f32342d3234203d3e20383334.roa
File: 3130332e3233382e3132382e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: vdfzqatvAKA3q+uyJjuYj9LiKbkiUGLbqmLPdydFPNo=
Subject key identifier: 73:CD:53:95:8A:60:0A:33:18:03:BB:6B:1C:F7:AC:EB:12:98:B3:D5
Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800
Certificate serial: 6BCF2A762AAAB5EBF54AD8A144F6C3D9F44E8FE5
Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3132382e302f32342d3234203d3e20383334.roa
Signing time: Tue 16 Jul 2024 08:18:32 +0000
ROA not before: Tue 16 Jul 2024 08:13:32 +0000
ROA not after: Tue 15 Jul 2025 08:18:32 +0000
asID: 834
IP address blocks: 103.238.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jul 2024 15:13:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:cf:2a:76:2a:aa:b5:eb:f5:4a:d8:a1:44:f6:c3:d9:f4:4e:8f:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800
Validity
Not Before: Jul 16 08:13:32 2024 GMT
Not After : Jul 15 08:18:32 2025 GMT
Subject: CN=73CD53958A600A331803BB6B1CF7ACEB1298B3D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:38:b9:fc:0e:bc:9d:b5:c3:6c:6b:ae:fd:e0:
0e:64:7f:6e:89:fc:1b:64:d5:a7:15:ce:33:d0:68:
30:03:2f:20:9c:ca:9c:b1:f1:c3:16:b2:fa:0c:49:
57:c1:c5:ec:77:ba:9e:38:2f:5d:fc:92:8a:a6:97:
99:26:99:69:1a:49:5b:47:e3:e8:c0:7d:6d:c7:cc:
dd:aa:38:23:82:d9:c3:f9:be:a6:ad:b8:bb:2e:82:
6c:27:6c:7f:2e:73:d2:9c:06:62:65:9a:d2:14:9a:
55:24:dd:c8:af:97:68:5b:16:99:37:0a:1a:c3:3b:
5f:43:47:bf:c2:8c:ee:a6:79:a2:67:2a:b1:b2:19:
1d:c0:e9:3a:4e:07:a7:0c:b2:58:40:b6:97:04:ab:
2d:b4:35:93:65:fc:4e:ca:95:e9:3c:24:2f:d3:09:
66:73:1b:ba:70:31:59:6c:3b:18:ed:85:93:93:d9:
d0:2c:49:43:a8:bc:52:2c:30:30:b6:d5:44:95:fb:
7e:98:cc:b3:1d:bd:9b:9a:f1:ae:8e:8e:72:5d:1a:
b4:87:d8:6c:e2:d8:80:27:8f:4c:dd:f4:c9:c5:e1:
8a:29:47:d1:63:fb:93:c7:3e:6b:cd:dc:d2:61:58:
59:83:da:22:c7:0e:90:3a:d3:e9:b1:ad:15:8e:61:
ca:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:CD:53:95:8A:60:0A:33:18:03:BB:6B:1C:F7:AC:EB:12:98:B3:D5
X509v3 Authority Key Identifier:
keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3132382e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.238.128.0/24
Signature Algorithm: sha256WithRSAEncryption
34:45:e4:e9:fe:30:95:50:f7:5e:93:7e:f6:09:fa:e8:0a:d9:
8a:4c:30:62:79:2c:82:5b:da:eb:86:df:e3:f1:db:2f:ba:0f:
5f:87:75:85:81:48:2f:d9:71:77:c7:d6:e5:2d:70:f7:cf:ec:
c9:c2:df:f0:6e:7e:47:8b:ee:59:34:d3:3f:1d:9e:2a:98:e2:
06:51:cd:09:b7:6c:fc:8d:b2:ef:9d:65:01:90:7d:16:99:ed:
31:c5:9b:da:7d:10:37:f2:ce:c9:57:6b:6e:e6:fc:c8:d7:88:
70:90:f2:6d:7e:53:2f:95:a2:d3:f2:25:de:9b:b7:e3:81:de:
91:94:31:db:5e:d4:df:e8:1f:08:24:a1:66:c2:cf:7a:11:8b:
10:b6:5b:87:6a:0a:f5:db:2c:4b:61:e7:b1:e2:05:ef:3a:6a:
5f:34:a5:81:81:7d:b2:c0:48:26:3d:93:a7:c6:58:19:9a:6a:
55:0b:3a:3a:4c:bb:fa:b7:79:07:70:cc:03:48:c5:a4:b6:1f:
3e:60:95:99:e4:eb:e6:c3:43:d6:fd:c5:8c:83:5b:ae:08:39:
03:cd:44:8d:ac:33:e6:ab:f1:02:5b:c4:47:ff:75:41:b3:a4:
47:2f:3f:d9:01:6c:66:76:5c:82:e3:23:8f:bd:a9:27:3a:ab:
38:89:d4:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 17 19:33:29 2024 by rpki-client on console-fra.rpki-client.org