Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/827B33528C9611EE88DE0726C4F9AE02.roa
File: 827B33528C9611EE88DE0726C4F9AE02.roa (raw, json)
Hash identifier: L3+xGxmStVA52VcnA33FQ+2AymkwdhF0G1WKs/z3chE=
Subject key identifier: 82:2B:A1:92:7D:AB:CB:3E:68:22:4D:78:7F:01:A9:AE:65:2B:93:22
Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F
Certificate serial: 3452
Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/827B33528C9611EE88DE0726C4F9AE02.roa
Signing time: Sun 26 Nov 2023 20:00:56 +0000
ROA not before: Sun 26 Nov 2023 20:00:56 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 834
IP address blocks: 103.68.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Jan 2024 22:40:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13394 (0x3452)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F
Validity
Not Before: Nov 26 20:00:56 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=6563a3f7-1fa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:c3:7f:f4:84:62:34:ea:1f:e7:30:88:cb:4e:
bd:cd:48:05:f3:a5:68:29:d8:3c:9a:c2:ab:82:10:
fa:49:5f:dc:a3:c6:d6:e2:6e:a6:74:28:f0:d9:00:
7a:7c:35:31:86:c8:65:3d:05:9b:9f:fb:d1:c4:f5:
f2:34:95:d9:2e:22:97:9c:8b:ad:07:89:5a:93:ce:
c8:e5:78:19:bc:da:bc:8e:72:d7:8c:7f:44:9d:fc:
1c:38:dd:ac:85:df:29:9d:53:d6:3d:f7:92:73:c8:
a8:2c:38:40:8c:3e:35:95:9b:ba:76:50:07:b0:2e:
1d:1a:6f:14:c5:e9:f3:80:8a:94:42:f3:3b:15:5b:
66:ba:a4:a6:cc:dc:04:26:9b:58:ec:9b:8a:4f:59:
e2:ba:26:cb:ea:44:6c:e6:fd:e9:2d:fa:12:3d:be:
ed:26:24:dc:52:f4:16:6b:0e:1f:8b:ae:59:1f:06:
45:54:79:26:98:27:b3:74:0d:d1:3a:4a:11:35:d8:
51:42:f5:32:74:ae:be:e9:b8:99:67:87:50:77:93:
94:c8:04:d3:9e:cd:70:77:f7:f7:20:54:d6:74:fd:
fe:2b:f3:6a:84:4c:8f:3a:6e:a9:06:87:c1:06:ca:
c0:26:7c:f4:35:82:7c:24:23:e5:60:7d:65:99:11:
fe:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:2B:A1:92:7D:AB:CB:3E:68:22:4D:78:7F:01:A9:AE:65:2B:93:22
X509v3 Authority Key Identifier:
keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/827B33528C9611EE88DE0726C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.68.120.0/24
Signature Algorithm: sha256WithRSAEncryption
74:0a:1a:74:d2:55:cd:e9:2b:1e:25:cf:5c:e0:74:59:f8:b2:
0e:29:91:a5:e9:0e:0d:7c:c2:78:0c:ba:e8:78:af:a9:2b:60:
a1:1f:f3:13:5b:2d:3e:c9:77:0a:43:c0:d9:d9:b4:82:a7:b7:
db:4c:ef:1d:8c:3b:47:6d:2b:ad:fe:21:97:63:b5:39:c8:e1:
1a:bd:cf:e0:b5:76:e3:21:1d:c7:89:b7:0c:04:d1:fd:4e:54:
a3:d6:5b:84:ee:eb:c1:e3:86:00:d7:4f:97:8e:b1:a1:0a:af:
94:d7:be:cd:a8:94:88:a1:5a:bc:29:91:e0:a2:13:35:7d:56:
37:a0:de:86:c7:90:a7:33:6e:1a:32:49:71:35:ee:99:c8:d9:
84:5b:0b:b3:69:74:af:0f:22:b7:3b:c4:bc:03:76:1b:96:ec:
be:14:54:a8:2d:e5:60:fc:3a:64:08:9b:c1:ea:d9:32:07:71:
18:30:2a:3e:f7:f3:cd:ef:3d:8f:16:f5:fb:32:30:73:63:f1:
76:18:eb:6d:36:a9:1a:00:2c:02:c0:c7:1c:8f:98:42:c7:b9:
03:b1:82:8e:dd:a2:a4:b2:ba:b5:ff:93:78:43:94:f1:27:5b:
86:90:d0:80:8b:15:f9:36:a9:0d:cf:cd:9e:d7:98:eb:17:4f:
bc:8f:ec:fb
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICNFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0
OTExRjFGNEYwHhcNMjMxMTI2MjAwMDU2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTYzYTNmNy0xZmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1MN/9IRiNOof5zCIy069zUgF86VoKdg8msKrghD6SV/co8bW4m6mdCjw2QB6
fDUxhshlPQWbn/vRxPXyNJXZLiKXnIutB4lak87I5XgZvNq8jnLXjH9EnfwcON2s
hd8pnVPWPfeSc8ioLDhAjD41lZu6dlAHsC4dGm8UxenzgIqUQvM7FVtmuqSmzNwE
JptY7JuKT1niuibL6kRs5v3pLfoSPb7tJiTcUvQWaw4fi65ZHwZFVHkmmCezdA3R
OkoRNdhRQvUydK6+6biZZ4dQd5OUyATTns1wd/f3IFTWdP3+K/NqhEyPOm6pBofB
BsrAJnz0NYJ8JCPlYH1lmRH+DwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIIroZJ9
q8s+aCJNeH8Bqa5lK5MiMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE
OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI
MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvODI3QjMzNTI4
Qzk2MTFFRTg4REUwNzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnRHgwDQYJKoZIhvcNAQELBQADggEBAHQKGnTSVc3pKx4l
z1zgdFn4sg4pkaXpDg18wngMuuh4r6krYKEf8xNbLT7JdwpDwNnZtIKnt9tM7x2M
O0dtK63+IZdjtTnI4Rq9z+C1duMhHceJtwwE0f1OVKPWW4Tu68HjhgDXT5eOsaEK
r5TXvs2olIihWrwpkeCiEzV9Vjeg3obHkKczbhoySXE17pnI2YRbC7NpdK8PIrc7
xLwDdhuW7L4UVKgt5WD8OmQIm8Hq2TIHcRgwKj73883vPY8W9fsyMHNj8XYY6202
qRoALALAxxyPmELHuQOxgo7doqSyurX/k3hDlPEnW4aQ0ICLFfk2qQ3PzZ7XmOsX
T7yP7Ps=
-----END CERTIFICATE-----
Generated at Tue Feb 27 00:58:03 2024 by rpki-client on console.sobornost.net