Route Origin Authorization
$ rpki-client -vvf rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133312e302f32342d3234203d3e203630353034.roa
File: 3130332e3233382e3133312e302f32342d3234203d3e203630353034.roa (raw, json)
Hash identifier: It+R5HxtEYqqDgRfdkfgqAnNxZX3mTjU885v1lTIBOA=
Subject key identifier: 39:4A:9F:DB:28:37:78:F1:E5:EC:58:FB:A6:C8:3E:2A:46:16:62:E9
Certificate issuer: /CN=A91A61310000/serialNumber=72EC0D8B386D96FBC741C05F3661CB7ADA8EB800
Certificate serial: 1367CD662A9D9A0EC56CE5D2D449CF56B5F1361B
Authority key identifier: 72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer
Subject info access: rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133312e302f32342d3234203d3e203630353034.roa
Signing time: Thu 12 Dec 2024 07:28:36 +0000
ROA not before: Thu 12 Dec 2024 07:23:36 +0000
ROA not after: Thu 11 Dec 2025 07:28:36 +0000
asID: 60504
IP address blocks: 103.238.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Feb 2025 11:09:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:67:cd:66:2a:9d:9a:0e:c5:6c:e5:d2:d4:49:cf:56:b5:f1:36:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A61310000
Validity
Not Before: Dec 12 07:23:36 2024 GMT
Not After : Dec 11 07:28:36 2025 GMT
Subject: CN=394A9FDB283778F1E5EC58FBA6C83E2A461662E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f8:4a:4a:b8:40:e4:94:8d:61:92:03:10:a9:
c0:e1:4a:34:ab:38:41:56:50:cf:59:26:3b:db:5a:
f9:63:0c:a4:05:9e:71:f7:e0:e4:bb:90:72:ae:fb:
bd:fc:46:0a:e1:b8:8e:34:92:81:3a:83:64:fe:6e:
cf:ec:77:47:56:9a:be:84:f9:f6:b5:26:5b:0e:98:
6f:f4:0e:6e:69:ba:4e:26:6e:6a:37:bc:70:aa:34:
32:a4:f8:2d:26:f4:6c:05:83:d5:74:bb:ff:ba:f9:
6e:c6:43:f4:41:00:be:40:ec:29:01:cf:1d:58:50:
c7:56:b8:f2:78:6b:35:93:a7:95:dd:96:43:72:f8:
10:85:19:9b:67:eb:fe:ec:8f:f2:b2:71:1d:25:e1:
83:ce:b2:b3:bf:65:f3:87:51:55:08:9d:5b:f5:f9:
bb:4a:9e:2c:cc:81:a4:16:b1:d8:fe:e5:e5:28:65:
b6:df:3d:39:4b:d0:82:21:8f:5d:90:01:8b:79:63:
18:cc:f3:39:0f:f8:e1:ed:ce:9b:99:e9:14:69:03:
67:06:16:91:dd:0e:e5:5d:bd:ad:da:09:de:93:f5:
59:48:b5:be:5a:2b:02:b8:1d:e0:ab:46:7b:0e:6d:
e9:ac:d3:44:97:34:30:58:13:eb:70:dc:cd:6d:ca:
70:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:4A:9F:DB:28:37:78:F1:E5:EC:58:FB:A6:C8:3E:2A:46:16:62:E9
X509v3 Authority Key Identifier:
keyid:72:EC:0D:8B:38:6D:96:FB:C7:41:C0:5F:36:61:CB:7A:DA:8E:B8:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/72EC0D8B386D96FBC741C05F3661CB7ADA8EB800.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cuwNizhtlvvHQcBfNmHLetqOuAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91A61310000/0/3130332e3233382e3133312e302f32342d3234203d3e203630353034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.238.131.0/24
Signature Algorithm: sha256WithRSAEncryption
06:34:56:48:13:3d:9e:77:9e:91:6b:48:f4:99:d2:7f:2c:d5:
3c:7b:03:98:ed:d3:57:f5:df:29:04:f3:5b:9d:71:43:4c:ad:
48:05:41:4c:dd:e7:e1:e0:30:94:1a:7b:7a:d4:eb:a4:74:4a:
74:5c:b4:87:3e:52:b3:e1:f7:3f:a4:3e:e1:50:e2:2b:80:c2:
11:06:ca:2a:8f:48:03:11:b3:c8:05:6d:61:83:7c:fd:e7:ee:
16:97:87:ec:ff:d5:42:3f:01:a4:83:1d:4d:71:4a:b0:87:db:
29:e5:05:7c:0e:de:53:16:09:f7:bd:a6:ab:b4:b5:99:59:81:
d5:29:a4:39:f5:23:0c:64:14:76:36:3d:a8:a5:89:ef:4f:28:
ee:e6:78:23:3f:4d:17:a9:aa:b2:6a:f5:d1:19:d6:ef:11:ef:
6b:d8:3d:77:b5:49:8f:17:b3:5a:85:2c:53:26:40:0d:39:1f:
cb:1a:3d:63:37:ff:1f:4d:82:60:1a:37:a7:8e:67:fe:76:c4:
01:5e:3e:00:e7:56:ef:4b:26:b3:8a:37:4e:4a:10:6e:3c:58:
c4:24:33:b1:ca:81:09:95:b5:6d:1d:8c:4f:f4:c2:d8:3c:42:
80:17:4f:70:c6:ee:d9:f2:a5:47:5f:0e:23:29:12:db:50:df:
54:62:09:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 21:29:24 2025 by rpki-client