Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/C6088BAA053211EF81CC9417C4F9AE02.roa
File: C6088BAA053211EF81CC9417C4F9AE02.roa (raw, json)
Hash identifier: 31Oezyen0761dnhp/1pk4oXLzjmJur3Hy76bnQxgNTA=
Subject key identifier: 07:EF:B3:C2:E8:87:49:AA:01:03:74:46:E1:0B:8C:FD:3F:9E:40:70
Certificate issuer: /CN=A91229A5/serialNumber=56F928C72A5728C17A9825109BBBB7210313BBCA
Certificate serial: 80
Authority key identifier: 56:F9:28:C7:2A:57:28:C1:7A:98:25:10:9B:BB:B7:21:03:13:BB:CA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VvkoxypXKMF6mCUQm7u3IQMTu8o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/C6088BAA053211EF81CC9417C4F9AE02.roa
Signing time: Thu 13 Jun 2024 05:13:12 +0000
ROA not before: Thu 13 Jun 2024 05:13:12 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 61414
IP address blocks: 103.93.76.0/22 maxlen: 22
103.93.76.0/24 maxlen: 24
103.93.77.0/24 maxlen: 24
103.93.78.0/24 maxlen: 24
103.93.79.0/24 maxlen: 24
103.225.68.0/23 maxlen: 23
123.253.108.0/22 maxlen: 22
123.253.108.0/24 maxlen: 24
123.253.109.0/24 maxlen: 24
123.253.110.0/24 maxlen: 24
123.253.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 23 Jun 2024 09:41:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128 (0x80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91229A5/serialNumber=56F928C72A5728C17A9825109BBBB7210313BBCA
Validity
Not Before: Jun 13 05:13:12 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=666a7fe8-0244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a9:cf:19:8f:2a:7b:cc:5a:77:c6:ed:47:04:
36:29:f4:2d:aa:9d:13:9b:4f:d5:e7:e9:ed:9d:99:
6a:81:bd:95:f5:e7:d9:ad:5e:8a:78:74:5c:a5:26:
a0:3e:f0:5a:10:4a:d0:68:0e:c9:4b:c1:46:74:41:
1d:2e:2c:cf:42:61:6b:04:81:e5:0b:73:1c:30:21:
79:90:9b:a4:e4:b4:57:65:aa:fb:02:51:56:1d:ae:
28:d2:bf:29:03:0b:dc:43:08:10:6e:d5:e9:dc:77:
25:76:6f:7f:ec:6b:29:67:88:29:7b:7f:09:02:92:
e7:c6:af:46:f0:e1:2f:ed:1e:b1:e5:92:e8:e3:a3:
21:4a:9c:62:73:50:6c:eb:3c:1e:5a:e0:26:33:07:
55:a8:59:3a:cb:ae:f9:d3:d5:7c:32:41:13:4b:48:
45:15:4f:8d:9e:01:b7:94:fd:88:99:fc:64:18:93:
1b:ef:df:34:99:d0:1a:e4:ea:92:75:a1:18:50:ec:
89:8a:e7:fb:da:4e:b0:3c:83:87:9f:14:f2:76:42:
e3:f4:d9:db:0c:39:98:1b:eb:32:72:20:07:a5:3d:
c9:d2:54:b1:2b:15:c9:38:57:44:73:44:05:c2:4a:
b7:d3:66:46:ef:5a:c9:c3:f9:29:fb:9e:96:d7:b6:
7c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EF:B3:C2:E8:87:49:AA:01:03:74:46:E1:0B:8C:FD:3F:9E:40:70
X509v3 Authority Key Identifier:
keyid:56:F9:28:C7:2A:57:28:C1:7A:98:25:10:9B:BB:B7:21:03:13:BB:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/VvkoxypXKMF6mCUQm7u3IQMTu8o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VvkoxypXKMF6mCUQm7u3IQMTu8o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/C6088BAA053211EF81CC9417C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.93.76.0/22
103.225.68.0/23
123.253.108.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:0c:07:6e:88:ca:c4:b5:7d:5b:64:88:3e:15:e2:bf:51:23:
01:a6:8b:d6:42:85:f2:58:a4:5e:61:c2:5a:b7:92:86:f5:dc:
27:91:17:0a:14:dd:a1:cf:33:b6:4b:ff:a7:59:6b:8a:0a:03:
15:45:b9:8d:fe:18:06:a7:09:01:7d:a0:c2:c1:fa:16:64:fe:
30:4d:00:96:f9:a5:22:d5:55:ec:5d:f5:c0:b7:74:db:3d:71:
83:5b:7f:1c:91:d6:f2:99:d0:d6:56:0e:6f:1d:4c:60:7a:61:
e4:9c:0e:7f:8d:49:b5:a8:8e:fd:6d:85:37:c5:68:f2:87:83:
13:96:50:27:24:3b:f2:9f:47:54:94:c1:ac:80:28:21:8e:7c:
5f:75:53:e3:87:ca:1f:e1:d0:8c:ad:53:34:22:0e:2c:7c:d7:
33:f0:43:75:60:94:b8:59:e4:ad:6c:92:f4:14:fd:43:7d:2f:
b3:f6:53:f3:a8:79:c8:c8:61:4a:0c:98:4f:3b:ef:ba:d0:d4:
54:cd:5b:42:25:78:46:21:da:94:8e:20:d1:84:85:32:b1:9f:
bb:59:6b:55:7f:0c:7c:3e:35:26:75:cf:87:ad:02:b0:9c:5a:
05:0b:75:07:69:32:2e:2d:d4:e3:e5:e9:32:2c:9e:15:d4:4e:
3d:ba:f8:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 15:32:46 2024 by rpki-client on console-ams.rpki-client.org