Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/E3714130917A11EF9F673C2BC4F9AE02.roa
File: E3714130917A11EF9F673C2BC4F9AE02.roa (raw, json)
Hash identifier: UqV/Yci9AdbpWURPb0l5GC/j70f/m0cb6ehV1wY/9TI=
Subject key identifier: E9:26:0E:18:BB:56:A4:70:D6:5A:F8:2A:8C:E6:61:89:A8:DB:CF:52
Certificate issuer: /CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4
Certificate serial: 0A8B
Authority key identifier: 1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/E3714130917A11EF9F673C2BC4F9AE02.roa
Signing time: Wed 23 Oct 2024 20:13:44 +0000
ROA not before: Wed 23 Oct 2024 20:13:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 137703
IP address blocks: 103.113.192.0/22 maxlen: 24
2404:5e40::/33 maxlen: 33
2404:5e40::/34 maxlen: 34
2404:5e40::/48 maxlen: 48
2404:5e40:1::/48 maxlen: 48
2404:5e40:2::/48 maxlen: 48
2404:5e40:3::/48 maxlen: 48
2404:5e40:4::/48 maxlen: 48
2404:5e40:5::/48 maxlen: 48
2404:5e40:6::/48 maxlen: 48
2404:5e40:7::/48 maxlen: 48
2404:5e40:8::/48 maxlen: 48
2404:5e40:9::/48 maxlen: 48
2404:5e40:a::/48 maxlen: 48
2404:5e40:b::/48 maxlen: 48
2404:5e40:c::/48 maxlen: 48
2404:5e40:d::/48 maxlen: 48
2404:5e40:e::/48 maxlen: 48
2404:5e40:f::/48 maxlen: 48
2404:5e40:4000::/34 maxlen: 34
2404:5e40:8000::/33 maxlen: 33
2404:5e40:8000::/34 maxlen: 34
2404:5e40:8001::/48 maxlen: 48
2404:5e40:8002::/48 maxlen: 48
2404:5e40:8003::/48 maxlen: 48
2404:5e40:c000::/34 maxlen: 34
Validation: Failed, certificate revoked on Mon 04 Nov 2024 20:38:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2699 (0xa8b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913F721/serialNumber=1DD717B229936190CEB667C7CE1CA9F9BFB5FAC4
Validity
Not Before: Oct 23 20:13:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=671958f7-ee5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0c:73:50:84:ae:e7:b2:b7:ca:49:db:d6:4a:
26:88:0e:93:94:58:b7:1b:0b:e9:c6:89:fd:94:5a:
c6:11:9d:48:e5:c9:bf:dc:43:5c:79:90:a8:b2:ee:
28:f5:02:a4:61:7f:6f:d5:71:c3:cc:35:ca:18:c5:
fe:b8:52:c4:55:af:35:74:a4:af:eb:cf:32:71:19:
d3:07:a2:6a:42:3f:f2:79:11:38:e4:39:c5:a8:b0:
2d:b8:63:aa:30:13:27:d7:fe:83:aa:4a:d1:09:1c:
4a:24:9b:70:f4:b6:14:ae:eb:73:e3:88:6b:a2:7d:
e1:61:03:86:8e:f4:bb:6b:5d:d0:74:91:c4:8a:cf:
72:48:29:08:0b:6c:fb:52:82:39:4c:56:7f:0b:3c:
a1:bc:1a:d9:eb:d6:b3:58:05:ec:92:f3:45:2a:9b:
a9:4d:59:f1:8e:5e:1b:fe:26:c6:89:8c:23:76:ed:
0b:08:1e:8c:79:c3:14:09:09:56:65:44:41:77:f9:
4e:b2:05:37:20:4e:63:ff:17:59:d9:c6:62:ed:d4:
df:09:b6:fe:ad:71:40:89:3d:e1:1c:a3:16:af:e1:
ce:70:2d:e9:ce:23:ac:e5:52:85:5f:20:ad:b1:a6:
d5:98:18:46:58:9e:cd:e0:41:b3:e0:42:10:2f:55:
42:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:26:0E:18:BB:56:A4:70:D6:5A:F8:2A:8C:E6:61:89:A8:DB:CF:52
X509v3 Authority Key Identifier:
keyid:1D:D7:17:B2:29:93:61:90:CE:B6:67:C7:CE:1C:A9:F9:BF:B5:FA:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/HdcXsimTYZDOtmfHzhyp-b-1-sQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdcXsimTYZDOtmfHzhyp-b-1-sQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F721/6442437A53AC11EA9AD54B2FC4F9AE02/E3714130917A11EF9F673C2BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.113.192.0/22
IPv6:
2404:5e40::/32
Signature Algorithm: sha256WithRSAEncryption
9c:3c:71:48:ac:a4:19:4e:14:66:b4:a0:54:26:9f:28:b2:b8:
bc:a9:66:64:b9:7d:16:8f:f7:96:fa:bd:0d:74:2a:a1:7c:5a:
1f:b8:b3:c6:8e:9d:1f:a6:64:aa:d9:0c:70:4f:5d:4e:ce:ea:
69:6e:ee:52:53:23:d9:54:4c:15:7a:32:26:6a:b8:d9:d1:7a:
4a:67:cf:47:90:19:c3:4c:18:4d:dd:f4:c5:08:fd:23:5a:03:
41:5f:ef:eb:bd:b0:07:75:aa:46:5c:ad:17:72:f6:ba:b5:21:
bf:05:77:0d:01:66:ea:1a:e4:80:bf:37:62:5c:a2:37:81:c0:
91:6c:92:06:db:59:aa:23:0a:be:13:34:b7:7e:40:9a:42:ea:
3d:7f:bc:d3:f9:d8:84:e1:b8:4a:29:02:14:77:a5:25:70:bb:
7c:73:c5:f7:58:2b:90:72:c2:7f:a4:fa:1b:16:72:1d:74:67:
3d:a8:dd:c8:21:fc:62:e7:8e:96:03:2b:a4:36:15:16:5c:38:
08:ed:b8:ce:39:bc:ba:66:f5:11:b7:76:44:3f:0b:f0:ec:18:
e5:f7:23:ac:b0:f3:3a:f8:ea:fc:03:0b:75:6a:16:ac:38:80:
a9:a1:69:56:25:5c:31:ba:e1:0a:79:68:6b:67:7f:c3:69:93:
3a:3c:19:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 00:13:35 2024 by rpki-client on console-ams.rpki-client.org