Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133302e302f32332d3233203d3e203630353034.roa
File: 3130332e3233382e3133302e302f32332d3233203d3e203630353034.roa (raw, json)
Hash identifier: dlQIkzwaGYXvra8OfwdVOpGVCeJJG2ECQLsguzvRavo=
Subject key identifier: ED:45:82:CF:FD:5B:35:61:FE:36:BB:27:4E:1C:24:B0:E4:11:1A:82
Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800
Certificate serial: 4CF803BF97F8E89993F6CF4CAEA0A6394DFE3707
Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133302e302f32332d3233203d3e203630353034.roa
Signing time: Thu 12 Dec 2024 07:28:36 +0000
ROA not before: Thu 12 Dec 2024 07:23:36 +0000
ROA not after: Thu 11 Dec 2025 07:28:36 +0000
asID: 60504
IP address blocks: 103.238.130.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 18 Feb 2025 11:09:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:f8:03:bf:97:f8:e8:99:93:f6:cf:4c:ae:a0:a6:39:4d:fe:37:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A61310000
Validity
Not Before: Dec 12 07:23:36 2024 GMT
Not After : Dec 11 07:28:36 2025 GMT
Subject: CN=ED4582CFFD5B3561FE36BB274E1C24B0E4111A82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:02:f2:cb:1c:5e:20:d0:f8:f1:3f:47:3e:c7:
42:a5:5e:e9:17:72:f9:ad:90:c5:62:37:c2:5a:f2:
29:e4:83:6a:53:5e:31:76:70:ca:16:ac:ae:0f:f0:
f7:85:86:ef:d4:41:86:72:23:97:4f:8d:35:64:9b:
5c:3a:95:a2:f2:e4:1b:14:ab:01:45:9a:d9:87:4a:
5b:7c:71:b6:51:a8:ff:59:d3:db:05:c8:64:c1:d5:
87:88:46:dd:1c:4a:d8:47:f8:e9:7e:69:53:93:ff:
d2:f8:a2:5e:2f:91:91:bc:a2:b8:7b:85:76:4b:20:
10:79:77:66:93:c6:11:db:e1:4a:ed:70:fe:fb:6a:
41:44:f3:b1:b1:0e:a7:7b:d8:19:b7:37:e0:ef:bd:
fa:b9:a6:43:c5:19:45:e2:eb:5e:92:53:30:1e:91:
30:ba:36:8e:93:bd:04:b6:f9:5d:01:2d:7a:db:1d:
d3:04:0b:63:2a:4d:69:95:12:31:cb:f5:c0:49:e7:
fd:06:2e:71:af:20:60:9f:47:ed:cf:16:fc:76:de:
79:7e:ce:53:d4:a0:21:ba:2e:ab:13:e9:ee:8c:47:
58:0c:1b:10:5c:a8:ee:6e:48:95:37:fd:04:0e:85:
6c:1f:ae:af:5f:df:22:cf:39:b8:3d:57:38:37:15:
66:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:45:82:CF:FD:5B:35:61:FE:36:BB:27:4E:1C:24:B0:E4:11:1A:82
X509v3 Authority Key Identifier:
keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133302e302f32332d3233203d3e203630353034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.238.130.0/23
Signature Algorithm: sha256WithRSAEncryption
22:8c:42:b6:94:00:61:32:78:4d:27:88:60:a7:5c:fc:04:c3:
84:9c:8b:6e:76:f7:57:76:64:a1:13:95:c4:30:4c:2e:49:31:
f4:09:3a:de:1f:09:51:9c:d0:ea:2f:35:5c:d5:b1:c7:88:0b:
15:51:61:d9:f0:42:39:7a:93:35:bf:bb:52:b6:e7:80:aa:5b:
6f:86:0e:86:86:d6:5e:d1:d1:0d:f3:35:19:98:52:c1:de:f1:
99:97:30:2a:30:f5:80:30:57:73:cb:18:01:67:c2:d0:d4:3d:
20:0c:72:be:30:37:32:29:f7:da:d7:e4:74:e1:d2:89:53:b8:
45:0f:4a:62:fc:47:2c:ce:06:54:66:ea:b6:6d:93:a3:cf:b9:
4c:b3:fb:d2:ce:88:ed:a5:0b:f0:27:c2:f5:80:e3:de:d2:43:
6e:1a:f7:6a:46:e8:1f:51:d5:6e:42:53:21:a2:fd:6a:13:66:
02:97:26:1a:d5:e5:97:58:6a:79:e7:3b:9d:ec:3e:ac:26:c0:
b6:0a:7e:f8:78:28:17:8a:cf:f7:a4:b4:ce:3a:eb:00:23:1c:
51:23:32:82:7b:b7:dc:ae:5a:51:1b:ac:e4:71:80:f4:40:9a:
5b:27:b1:19:82:d7:2d:4e:9a:ef:77:35:dc:4e:53:2e:6f:44:
60:aa:64:3f
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgIUTPgDv5f46JmT9s9MrqCmOU3+NwcwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxQTYxMzEwMDAwMTEwLwYDVQQFEyg3MkVDMEQ4QjM4
NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwMB4XDTI0MTIxMjA3MjMzNloX
DTI1MTIxMTA3MjgzNlowMzExMC8GA1UEAxMoRUQ0NTgyQ0ZGRDVCMzU2MUZFMzZC
QjI3NEUxQzI0QjBFNDExMUE4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALIC8sscXiDQ+PE/Rz7HQqVe6Rdy+a2QxWI3wlryKeSDalNeMXZwyhasrg/w
94WG79RBhnIjl0+NNWSbXDqVovLkGxSrAUWa2YdKW3xxtlGo/1nT2wXIZMHVh4hG
3RxK2Ef46X5pU5P/0viiXi+RkbyiuHuFdksgEHl3ZpPGEdvhSu1w/vtqQUTzsbEO
p3vYGbc34O+9+rmmQ8UZReLrXpJTMB6RMLo2jpO9BLb5XQEtetsd0wQLYypNaZUS
Mcv1wEnn/QYuca8gYJ9H7c8W/HbeeX7OU9SgIbouqxPp7oxHWAwbEFyo7m5IlTf9
BA6FbB+ur1/fIs85uD1XODcVZvcCAwEAAaOCAhQwggIQMB0GA1UdDgQWBBTtRYLP
/Vs1Yf42uydOHCSw5BEagjAfBgNVHSMEGDAWgBRy7A2LOG2W+8dBwF82Yct62o64
ADAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp
LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFBNjEzMTAwMDAvMC83MkVDMEQ4
QjM4NkQ5NkZCQzc0MUMwNUYzNjYxQ0I3QURBOEVCODAwLmNybDB+BggrBgEFBQcB
AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np
dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9jdXdOaXpodGx2
dkhRY0JmTm1ITGV0cU91QUEuY2VyMIGOBggrBgEFBQcBCwSBgTB/MH0GCCsGAQUF
BzALhnFyc3luYzovL3Jwa2kuc3ViLmFwbmljLm5ldC9yZXBvc2l0b3J5L0E5MUE2
MTMxMDAwMC8wLzMxMzAzMzJlMzIzMzM4MmUzMTMzMzAyZTMwMmYzMjMzMmQzMjMz
MjAzZDNlMjAzNjMwMzUzMDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ+6CMA0GCSqGSIb3DQEBCwUA
A4IBAQAijEK2lABhMnhNJ4hgp1z8BMOEnItudvdXdmShE5XEMEwuSTH0CTreHwlR
nNDqLzVc1bHHiAsVUWHZ8EI5epM1v7tStueAqltvhg6GhtZe0dEN8zUZmFLB3vGZ
lzAqMPWAMFdzyxgBZ8LQ1D0gDHK+MDcyKffa1+R04dKJU7hFD0pi/EcszgZUZuq2
bZOjz7lMs/vSzojtpQvwJ8L1gOPe0kNuGvdqRugfUdVuQlMhov1qE2YClyYa1eWX
WGp55zud7D6sJsC2Cn74eCgXis/3pLTOOusAIxxRIzKCe7fcrlpRG6zkcYD0QJpb
J7EZgtctTprvdzXcTlMub0RgqmQ/
-----END CERTIFICATE-----
Generated at Thu Mar 13 21:29:25 2025 by rpki-client