Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9111926/7C6A0E4421FF11EAA7232A3DC4F9AE02/4D5E29F6BEA111EB9D19D662C4F9AE02.roa
File: 4D5E29F6BEA111EB9D19D662C4F9AE02.roa (raw, json)
Hash identifier: y3jfcVd5Y3l+pntNjl62XucDYAjrXjwXyImRLb311v4=
Subject key identifier: 8E:79:40:6E:46:67:05:9B:26:3D:5A:FD:1A:AD:38:5A:D4:23:7C:3E
Certificate issuer: /CN=A9111926/serialNumber=6F23BB4BE82F34B0E7461279520C73977AB1D23C
Certificate serial: 0B80
Authority key identifier: 6F:23:BB:4B:E8:2F:34:B0:E7:46:12:79:52:0C:73:97:7A:B1:D2:3C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byO7S-gvNLDnRhJ5Ugxzl3qx0jw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9111926/7C6A0E4421FF11EAA7232A3DC4F9AE02/4D5E29F6BEA111EB9D19D662C4F9AE02.roa
Signing time: Tue 21 Jan 2025 04:15:10 +0000
ROA not before: Tue 21 Jan 2025 04:15:10 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 38442
IP address blocks: 27.123.128.0/18 maxlen: 24
103.244.228.0/22 maxlen: 24
183.81.128.0/20 maxlen: 24
2401:5100::/32 maxlen: 40
2401:5100:300::/48 maxlen: 48
2401:5100:301::/48 maxlen: 48
2401:5100:302::/48 maxlen: 48
2401:5100:303::/48 maxlen: 48
2401:5100:304::/48 maxlen: 48
2401:5100:305::/48 maxlen: 48
2401:5100:306::/48 maxlen: 48
2401:5100:307::/48 maxlen: 48
2401:5100:308::/48 maxlen: 48
2401:5100:309::/48 maxlen: 48
2401:5100:30a::/48 maxlen: 48
2401:5100:30b::/48 maxlen: 48
2401:5100:2300::/46 maxlen: 46
2401:5100:2300::/48 maxlen: 48
2401:5100:2301::/48 maxlen: 48
2401:5100:2302::/48 maxlen: 48
2401:5100:2303::/48 maxlen: 48
2401:5100:2308::/48 maxlen: 48
2401:5100:2309::/48 maxlen: 48
2401:5100:230a::/48 maxlen: 48
2401:5100:230b::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 21 Jan 2025 22:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2944 (0xb80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9111926, serialNumber=6F23BB4BE82F34B0E7461279520C73977AB1D23C
Validity
Not Before: Jan 21 04:15:10 2025 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=678f1f4e-7165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:46:94:54:73:6c:f7:20:06:18:50:bf:a2:7f:
9c:55:7f:e9:e8:aa:ab:fd:29:fc:88:1f:e8:7c:30:
d0:5f:14:e4:ac:0c:35:ae:49:2f:7b:d3:a0:13:c6:
a5:5f:c3:b2:9b:0e:34:32:63:c7:8d:b5:a2:c0:71:
52:e2:c7:c0:80:f9:37:e3:3d:86:6c:76:a2:ee:0c:
a4:50:32:24:ae:5f:c2:06:02:e1:52:13:89:52:39:
73:14:91:6a:84:18:66:a0:5b:c5:a8:96:78:8d:b1:
d7:8e:fd:fc:3a:26:40:c9:57:a7:64:43:17:3c:ce:
71:2a:04:46:eb:6b:79:10:86:24:4b:96:c1:c4:1f:
9e:0c:c2:21:f4:ee:9d:c7:cc:cb:9a:8a:23:87:a7:
0d:d9:f3:d5:14:a0:24:30:df:92:a5:85:9f:8d:89:
2d:5c:9b:10:cb:cd:8a:ca:c7:7a:e8:5c:87:4f:31:
ba:7b:10:8b:12:a7:fe:02:37:0b:0b:35:fa:a1:d7:
1f:af:fc:a6:87:53:4f:88:1b:ef:ae:46:47:10:1f:
94:ac:79:5f:2e:1b:dc:71:df:2c:26:75:61:55:21:
f8:a5:eb:81:10:21:07:e6:d0:f5:ef:ff:9c:a7:c1:
1f:20:9c:bb:51:6c:88:0e:d1:c2:53:c7:e1:3c:58:
e2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:79:40:6E:46:67:05:9B:26:3D:5A:FD:1A:AD:38:5A:D4:23:7C:3E
X509v3 Authority Key Identifier:
keyid:6F:23:BB:4B:E8:2F:34:B0:E7:46:12:79:52:0C:73:97:7A:B1:D2:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9111926/7C6A0E4421FF11EAA7232A3DC4F9AE02/byO7S-gvNLDnRhJ5Ugxzl3qx0jw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byO7S-gvNLDnRhJ5Ugxzl3qx0jw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111926/7C6A0E4421FF11EAA7232A3DC4F9AE02/4D5E29F6BEA111EB9D19D662C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.123.128.0/18
103.244.228.0/22
183.81.128.0/20
IPv6:
2401:5100::/32
Signature Algorithm: sha256WithRSAEncryption
84:1e:b4:ef:36:f7:b3:b2:35:d1:b4:a7:f8:ae:4d:65:96:f6:
92:5f:f6:98:97:91:21:bb:03:ba:f2:2d:fc:b6:48:e3:90:21:
05:50:30:49:69:ee:dc:32:f3:ae:3e:4e:5a:66:17:96:d3:1f:
ef:c3:e6:4e:b2:c4:c5:23:eb:a3:8e:70:17:48:45:d4:f1:15:
66:43:26:e3:56:03:12:ed:44:28:ca:e4:8a:35:da:21:06:c1:
6d:c6:90:3e:9c:a9:09:f7:a6:8a:f3:42:bb:d6:45:de:f7:63:
0c:62:4e:c8:f7:bc:0f:91:f3:ff:e3:46:7f:d4:16:0b:c3:c0:
a1:9f:a9:ab:a3:3b:54:0e:0b:2c:32:74:89:91:9b:d1:ed:98:
13:cb:4c:1f:9c:f0:78:d3:a0:7e:c4:1f:f9:4f:23:4c:26:bd:
1c:29:6d:81:b7:16:20:a9:e1:b5:6b:a2:a0:8a:c6:6a:3f:31:
b8:76:cb:78:13:c3:16:df:48:0d:aa:78:70:94:20:e7:fb:f6:
f3:8a:de:42:aa:69:e2:00:bd:3c:ee:a5:ce:48:1c:de:b7:4b:
d4:0c:44:d6:8b:f0:2e:76:4e:7d:59:84:00:86:36:8d:c7:2a:
56:34:4e:1d:e5:35:5a:05:46:67:e7:3f:47:8f:e7:fc:5c:4d:
9d:be:fc:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:01:54 2025 by rpki-client