Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915B5B1/ED629F0CD7E811EC92A94F4CC4F9AE02/A76F747C194A11EDBD91853DC4F9AE02.roa
File: A76F747C194A11EDBD91853DC4F9AE02.roa (raw, json)
Hash identifier: 6drhxmKICrJbRmHjjgxZSFkvkkiN0X+/1CMGPCy1qow=
Subject key identifier: FD:89:6A:90:DB:21:0D:18:4C:66:74:2B:A3:F2:DF:CB:4A:68:20:D4
Certificate issuer: /CN=A915B5B1/serialNumber=DFDC3ADB33CAA8591EFAF2776C3B0C556C08A2B6
Certificate serial: 01C3
Authority key identifier: DF:DC:3A:DB:33:CA:A8:59:1E:FA:F2:77:6C:3B:0C:55:6C:08:A2:B6
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/39w62zPKqFke-vJ3bDsMVWwIorY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915B5B1/ED629F0CD7E811EC92A94F4CC4F9AE02/A76F747C194A11EDBD91853DC4F9AE02.roa
Signing time: Sat 29 Jul 2023 03:03:01 +0000
ROA not before: Sat 29 Jul 2023 03:03:01 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 139673
IP address blocks: 103.187.245.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 451 (0x1c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915B5B1/serialNumber=DFDC3ADB33CAA8591EFAF2776C3B0C556C08A2B6
Validity
Not Before: Jul 29 03:03:01 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=64c48165-5183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:4f:28:01:08:ac:e1:a6:72:1f:32:15:2d:dd:
69:ec:be:5d:ec:4b:e3:af:27:84:f0:b2:f9:dc:9c:
22:4d:5a:4c:17:95:3d:38:10:64:d3:10:8a:4b:9c:
41:d4:c6:46:70:b6:77:5d:d9:33:a6:21:2e:f3:89:
01:23:5f:d1:41:57:d0:17:f2:72:a7:1d:f1:9f:84:
bb:2a:0b:05:36:af:55:5a:9e:c8:88:ef:d5:6f:27:
8a:6b:07:c0:29:78:6d:1a:d2:75:4d:ed:34:12:a5:
17:4d:ac:d8:9e:a6:76:b0:cb:e1:d4:1a:11:55:7f:
25:e9:5e:87:a6:73:06:2d:57:e1:7b:f0:48:e3:9e:
57:c3:ac:c8:3d:4f:15:b9:36:81:d8:86:d8:95:e1:
31:8b:e3:9c:cd:a4:60:59:f0:d4:e2:93:e9:73:64:
33:67:fe:0f:b1:79:56:b0:7b:d8:c4:9d:d3:fe:7c:
d6:40:bd:9e:8f:b4:92:dd:18:09:35:d3:f6:ae:34:
9c:3e:e4:f6:56:16:23:2c:84:cb:b1:9e:1a:9c:3f:
fb:41:b5:bd:8b:1b:f0:a7:b9:7d:37:0f:92:08:9d:
b3:47:b7:5b:52:8c:53:c1:86:29:69:5b:c2:a1:29:
0a:95:44:81:cc:6c:ce:aa:05:8c:49:95:8d:5c:f3:
fc:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:89:6A:90:DB:21:0D:18:4C:66:74:2B:A3:F2:DF:CB:4A:68:20:D4
X509v3 Authority Key Identifier:
keyid:DF:DC:3A:DB:33:CA:A8:59:1E:FA:F2:77:6C:3B:0C:55:6C:08:A2:B6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915B5B1/ED629F0CD7E811EC92A94F4CC4F9AE02/39w62zPKqFke-vJ3bDsMVWwIorY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/39w62zPKqFke-vJ3bDsMVWwIorY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B5B1/ED629F0CD7E811EC92A94F4CC4F9AE02/A76F747C194A11EDBD91853DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.187.245.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:68:fb:92:b1:77:31:b8:a2:79:57:31:f5:a5:31:79:43:6c:
ac:ef:b2:28:c7:97:ac:91:34:0b:e6:03:4b:52:69:10:68:af:
4b:64:17:f8:d4:6f:28:46:18:a6:09:4f:1c:22:52:ff:e2:97:
d3:20:4c:90:1f:d3:00:87:bb:7d:ef:d2:7e:ac:7a:d7:d6:56:
df:96:51:7f:fa:3e:28:ad:10:4a:90:10:a1:e3:16:3d:e1:49:
af:5c:3c:56:e0:aa:6e:7f:a3:3f:fa:b8:49:aa:44:b7:28:be:
b3:75:ad:97:32:7d:e5:38:5c:eb:f2:e3:eb:5f:38:9d:cc:ff:
85:77:55:61:8b:a7:88:4d:d5:9d:60:69:ae:5c:9d:34:32:a8:
6c:02:23:16:9e:f1:3e:2a:a5:80:1b:9f:d6:d4:cb:d0:8a:9a:
81:90:7f:f1:a3:95:a2:4d:25:93:39:be:5e:98:ea:e8:b9:8d:
0e:6b:d0:45:5d:e1:f5:a6:ae:8c:cf:d9:2e:31:83:bf:60:25:
0b:a4:8d:bf:fc:04:1c:dd:51:d7:f7:00:81:68:b3:16:1e:85:
45:f4:26:9e:02:5c:fa:19:f3:1f:d0:33:fe:6f:23:5f:4d:0d:
cf:c6:7e:40:30:3f:01:23:1f:2e:f2:22:3d:4c:60:70:0c:4d:
ed:0e:6b:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:26 2023 by rpki-client on console.sobornost.net