Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3132382e302f32342d3234203d3e20383334.roa
File: 3130332e3233382e3132382e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: Np2i9T58NXKEYacS4Lfhtbn6S3pHyxNxFltuc81giMA=
Subject key identifier: B7:2C:63:A7:B1:B6:5B:CA:6F:88:8C:0B:67:08:FC:08:DE:16:90:53
Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800
Certificate serial: 011DDF8A0BBBD48E31266D971FC7A958093D8660
Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3132382e302f32342d3234203d3e20383334.roa
Signing time: Wed 20 Mar 2024 18:16:51 +0000
ROA not before: Wed 20 Mar 2024 18:11:51 +0000
ROA not after: Wed 19 Mar 2025 18:16:51 +0000
asID: 834
IP address blocks: 103.238.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Mar 2024 15:44:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:1d:df:8a:0b:bb:d4:8e:31:26:6d:97:1f:c7:a9:58:09:3d:86:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800
Validity
Not Before: Mar 20 18:11:51 2024 GMT
Not After : Mar 19 18:16:51 2025 GMT
Subject: CN=B72C63A7B1B65BCA6F888C0B6708FC08DE169053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:a3:a2:98:53:36:05:0a:f8:5c:f8:f3:49:ba:
7e:eb:f8:6c:4f:60:f9:c9:e7:b5:8b:0b:04:99:aa:
5f:30:36:cc:b3:ef:51:9b:30:f1:2f:b1:3e:00:02:
4b:ae:42:b3:7f:48:2c:53:5e:fd:5f:d3:6f:2a:f1:
c0:dc:d3:cd:33:8c:68:42:b2:61:00:6d:0a:82:e7:
72:6c:45:69:88:1f:8f:ac:53:d4:6a:b7:75:cf:22:
a7:ed:09:33:fc:2d:04:e0:e7:bd:6f:70:73:b8:71:
a9:a6:ef:f2:0a:2f:ae:fc:1b:98:ff:1d:3d:44:28:
5a:f3:92:82:01:ba:fb:bb:2b:fb:28:93:81:75:5e:
b4:13:79:f2:f1:94:09:9d:67:0c:21:56:bb:01:25:
d1:c9:0d:03:11:8e:2b:b7:ea:74:24:98:11:c7:23:
bf:91:4a:51:23:01:b6:dc:09:56:66:03:f1:8c:2c:
e5:a3:41:a2:89:cc:5c:99:cf:bb:20:61:e0:28:53:
2c:eb:1e:e1:70:c7:42:8c:a1:9f:5d:9b:a8:f4:01:
a6:11:7b:82:ba:54:de:4d:5f:3d:39:7a:84:c6:d0:
9e:67:ba:d6:7d:19:80:0e:b9:f4:d9:ce:1a:23:82:
93:d3:95:96:24:3b:be:cd:35:4e:08:ab:31:29:6a:
2d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:2C:63:A7:B1:B6:5B:CA:6F:88:8C:0B:67:08:FC:08:DE:16:90:53
X509v3 Authority Key Identifier:
keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3132382e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.238.128.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:61:13:3a:4a:08:fe:ff:80:cf:91:59:54:cb:21:b2:fa:67:
da:95:79:2d:c5:a9:e4:93:89:42:67:18:cc:fe:89:48:4f:f3:
72:53:dc:7d:37:07:47:8c:5b:7b:3d:41:90:e2:ae:83:be:3d:
cc:e9:e1:f6:10:05:c8:4e:7a:65:5c:96:90:8e:39:c2:ed:ac:
e1:72:57:ff:13:30:cb:b1:1f:f0:18:0a:09:e5:12:03:05:cf:
86:67:5a:99:c3:8d:89:3d:e7:5b:2c:51:f0:17:fb:e2:64:8e:
31:39:72:22:02:fb:26:61:c1:e6:fb:d2:f0:2b:8d:94:c2:b9:
8a:dd:af:d4:8f:52:61:b1:40:af:ee:8d:5e:d7:e7:67:9c:0f:
7b:0b:8d:93:57:c3:db:4e:d9:f8:3b:3f:ce:49:82:d0:33:f1:
5b:8a:71:9a:4f:e9:3c:a6:47:2c:52:c8:35:20:d4:09:22:f6:
3c:c5:c9:ab:ea:6f:db:7d:7b:4f:0a:ea:0d:90:98:cc:90:56:
36:20:d1:ef:ab:33:31:23:a2:b5:7a:36:a7:fb:b9:da:1e:f6:
04:b8:84:73:0f:27:fc:96:77:0f:ef:1b:5d:32:32:24:55:b1:
9c:b1:0d:51:e7:f4:d5:ad:3f:67:22:73:8d:74:bc:16:b0:b7:
a0:82:c5:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:25 2024 by rpki-client on console-fra.rpki-client.org