Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158552/64E1C24CE4FD11E98DCC0166C4F9AE02/F2044602E4FF11E994F6396CC4F9AE02.roa
File: F2044602E4FF11E994F6396CC4F9AE02.roa (raw, json)
Hash identifier: slsQ0TfC9TLeadmcPKtY9ye0N89Fw1u4c7aDKjzX9nU=
Subject key identifier: 4E:00:BF:FF:88:AC:81:B6:5D:BF:1B:AC:4A:D9:49:E9:C1:82:65:E8
Certificate issuer: /CN=A9158552/serialNumber=23168A662FCC09FBAAFBF5041AC77B2A89DA47C7
Certificate serial: 0B4D
Authority key identifier: 23:16:8A:66:2F:CC:09:FB:AA:FB:F5:04:1A:C7:7B:2A:89:DA:47:C7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IxaKZi_MCfuq-_UEGsd7KonaR8c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9158552/64E1C24CE4FD11E98DCC0166C4F9AE02/F2044602E4FF11E994F6396CC4F9AE02.roa
Signing time: Thu 02 Feb 2023 19:46:21 +0000
ROA not before: Thu 02 Feb 2023 19:46:21 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 138482
IP address blocks: 103.126.216.0/22 maxlen: 23
103.126.216.0/24 maxlen: 24
103.126.217.0/24 maxlen: 24
103.126.218.0/24 maxlen: 24
103.126.219.0/24 maxlen: 24
2404:11c0::/32 maxlen: 32
2404:11c0::/36 maxlen: 36
2404:11c0::/48 maxlen: 48
2404:11c0:1::/48 maxlen: 48
2404:11c0:2::/48 maxlen: 48
2404:11c0:3::/48 maxlen: 48
2404:11c0:4::/48 maxlen: 48
2404:11c0:5::/48 maxlen: 48
2404:11c0:6::/48 maxlen: 48
2404:11c0:7::/48 maxlen: 48
2404:11c0:8::/48 maxlen: 48
2404:11c0:9::/48 maxlen: 48
2404:11c0:a::/48 maxlen: 48
2404:11c0:b::/48 maxlen: 48
2404:11c0:c::/48 maxlen: 48
2404:11c0:d::/48 maxlen: 48
2404:11c0:e::/48 maxlen: 48
2404:11c0:f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 10 Jan 2024 06:41:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2893 (0xb4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9158552/serialNumber=23168A662FCC09FBAAFBF5041AC77B2A89DA47C7
Validity
Not Before: Feb 2 19:46:21 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=63dc130d-fcbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9d:d2:c0:5d:de:b0:26:9d:88:f5:0c:da:0b:
8b:87:29:36:d5:6d:a7:80:43:f9:d5:5f:9b:4a:34:
b7:b8:ab:0f:53:d4:29:65:c5:03:35:62:ce:07:6f:
95:90:a6:c3:5a:02:72:19:7b:73:01:61:3b:2b:e6:
75:f4:5c:f0:74:f6:a8:35:a1:ee:b5:09:2b:06:69:
13:ac:f9:68:d2:4b:ad:eb:27:0e:eb:aa:b5:9d:57:
b7:9d:13:43:51:2d:69:7a:c4:c7:31:70:e3:e6:7f:
3a:c0:61:5b:1c:4f:bb:86:16:47:92:fc:0a:c4:b1:
62:19:c3:85:d7:f4:62:14:2b:fa:b7:32:a6:74:c0:
d5:d8:c9:4a:34:7f:9a:51:0a:7a:68:68:d2:45:38:
a2:7c:8f:bc:64:77:10:55:5c:b5:06:30:69:1b:bc:
d8:62:86:cf:ce:0c:25:55:59:ea:5f:f2:15:df:42:
49:37:d8:2c:5b:c8:54:48:92:fe:67:21:af:87:c7:
53:41:76:c9:85:61:72:ee:36:21:2f:d4:ab:23:1c:
3a:2d:8c:5d:8d:59:a9:e7:91:e7:3e:94:eb:26:17:
de:dd:17:43:e9:b2:ee:ec:73:b6:63:22:99:bb:dd:
e9:23:e1:1a:58:5b:8f:59:4f:32:19:9d:7a:69:72:
61:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:00:BF:FF:88:AC:81:B6:5D:BF:1B:AC:4A:D9:49:E9:C1:82:65:E8
X509v3 Authority Key Identifier:
keyid:23:16:8A:66:2F:CC:09:FB:AA:FB:F5:04:1A:C7:7B:2A:89:DA:47:C7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9158552/64E1C24CE4FD11E98DCC0166C4F9AE02/IxaKZi_MCfuq-_UEGsd7KonaR8c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IxaKZi_MCfuq-_UEGsd7KonaR8c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158552/64E1C24CE4FD11E98DCC0166C4F9AE02/F2044602E4FF11E994F6396CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.126.216.0/22
IPv6:
2404:11c0::/32
Signature Algorithm: sha256WithRSAEncryption
54:3c:ce:14:77:f8:89:d4:a2:67:ce:49:7b:7d:5f:a2:2e:9e:
f1:d4:27:d8:07:9a:f0:02:24:75:eb:64:bf:1d:43:10:b1:e5:
cc:94:d5:53:5b:37:07:fa:a3:38:8c:9d:6f:7f:e8:15:f5:4d:
23:e2:9f:31:84:8e:42:55:8a:f5:9a:25:ee:ef:e5:b8:79:c1:
39:42:6e:e3:7b:47:b2:7d:73:5e:bf:9b:06:51:5c:c7:38:e7:
04:45:9d:73:76:e3:b2:2e:33:41:32:be:75:94:e0:32:6a:0d:
df:37:b9:9f:9c:7c:22:df:9d:b7:1e:95:43:df:74:6a:1c:f9:
14:ca:0f:ea:e8:4b:9b:f1:2b:e7:ad:f3:68:a2:ae:72:f4:4b:
8d:4a:7b:32:e1:fc:f4:b9:8a:fc:06:d1:06:9a:b9:d0:c8:0c:
df:93:cc:3b:e3:94:9e:a7:27:0f:d0:2f:e1:7f:7f:e0:f4:54:
74:d3:e0:14:93:fe:b4:6f:cf:2f:d9:07:12:b5:c2:ac:de:fc:
2b:22:14:22:43:e5:b0:7a:5d:9b:f5:cc:4b:91:5b:14:c2:60:
d1:a9:64:b2:05:f9:59:67:18:52:a0:14:76:de:de:b5:60:d0:
f0:1a:1e:73:54:84:79:30:b1:31:56:fe:c3:d9:b5:de:ae:36:
44:88:4e:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 10 08:35:44 2024 by rpki-client on console-ams.rpki-client.org