Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915C281/002013461D9911E2BC10668308B02CD2/69752DB4934D11EEA9D0376AC4F9AE02.roa
File: 69752DB4934D11EEA9D0376AC4F9AE02.roa (raw, json)
Hash identifier: WIE0jxqJf/3FzQZ3n2gxgsuGydq7WhaDeI/jXhJfg4s=
Subject key identifier: 52:05:81:B9:F5:45:8A:E9:59:56:19:4E:3E:26:7E:6C:09:DC:1A:75
Certificate issuer: /CN=A915C281/serialNumber=131768A36B30346E3DBEBEBF87B8481BAABE3EEB
Certificate serial: 33C8
Authority key identifier: 13:17:68:A3:6B:30:34:6E:3D:BE:BE:BF:87:B8:48:1B:AA:BE:3E:EB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Exdoo2swNG49vr6_h7hIG6q-Pus.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915C281/002013461D9911E2BC10668308B02CD2/69752DB4934D11EEA9D0376AC4F9AE02.roa
Signing time: Wed 06 Dec 2023 16:27:36 +0000
ROA not before: Wed 06 Dec 2023 16:27:36 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 45245
IP address blocks: 27.54.144.0/22 maxlen: 24
43.245.120.0/23 maxlen: 24
43.245.122.0/23 maxlen: 24
103.15.164.0/22 maxlen: 24
103.67.156.0/23 maxlen: 24
103.67.158.0/23 maxlen: 24
103.244.12.0/22 maxlen: 24
103.253.44.0/22 maxlen: 24
116.58.200.0/22 maxlen: 24
116.58.204.0/22 maxlen: 24
150.242.104.0/22 maxlen: 24
202.86.216.0/21 maxlen: 24
203.223.92.0/23 maxlen: 24
203.223.94.0/23 maxlen: 24
2401:1900::/32 maxlen: 32
2401:1900::/40 maxlen: 48
2401:1900:100::/42 maxlen: 46
2401:1900:1000::/40 maxlen: 48
2401:1900:2000::/40 maxlen: 48
2401:1900:8000::/40 maxlen: 48
2401:1900:9000::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 May 2024 11:44:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13256 (0x33c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915C281/serialNumber=131768A36B30346E3DBEBEBF87B8481BAABE3EEB
Validity
Not Before: Dec 6 16:27:36 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=6570a0f8-22e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ca:9f:19:9e:80:f8:a2:bf:50:30:3b:d3:f5:
2a:58:2e:a1:d8:79:b2:1b:b9:9c:eb:78:2d:fe:b0:
cc:f0:52:63:6f:1e:86:eb:58:10:76:5e:20:c2:e9:
a0:2a:f0:cb:2c:d3:96:5e:d2:b5:8b:35:1c:da:72:
88:ea:b5:77:d8:81:69:80:16:77:08:b9:e1:3d:93:
63:3a:bf:6a:58:b8:29:ab:92:13:91:af:1c:94:73:
88:81:fb:65:41:27:17:9d:47:83:bc:03:d4:c4:b3:
e1:ba:69:b6:f2:95:1e:e7:32:00:09:ad:a6:e8:a4:
60:96:1c:b9:00:88:bf:18:6e:1a:66:81:02:af:ac:
85:cf:09:2a:af:15:f3:4d:56:39:37:fc:7b:66:a4:
95:bd:cc:f5:74:c1:0c:f8:82:c7:59:08:08:6f:ea:
21:62:8d:f4:bb:44:75:b7:48:4d:94:3a:8e:fa:c9:
59:d3:5c:6d:c8:eb:2e:70:f1:bb:fe:fb:a1:36:70:
f0:1a:34:e0:27:b0:f8:14:9c:92:f7:a6:43:74:d0:
89:c4:a6:f7:a8:89:e6:de:21:4a:a6:db:cd:c3:29:
fb:dc:78:06:1a:a2:57:21:25:40:b4:31:b5:89:05:
90:65:3a:e1:3a:ba:58:03:4f:3c:bc:0a:bd:46:ba:
1d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:05:81:B9:F5:45:8A:E9:59:56:19:4E:3E:26:7E:6C:09:DC:1A:75
X509v3 Authority Key Identifier:
keyid:13:17:68:A3:6B:30:34:6E:3D:BE:BE:BF:87:B8:48:1B:AA:BE:3E:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915C281/002013461D9911E2BC10668308B02CD2/Exdoo2swNG49vr6_h7hIG6q-Pus.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Exdoo2swNG49vr6_h7hIG6q-Pus.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C281/002013461D9911E2BC10668308B02CD2/69752DB4934D11EEA9D0376AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.54.144.0/22
43.245.120.0/22
103.15.164.0/22
103.67.156.0/22
103.244.12.0/22
103.253.44.0/22
116.58.200.0/21
150.242.104.0/22
202.86.216.0/21
203.223.92.0/22
IPv6:
2401:1900::/32
Signature Algorithm: sha256WithRSAEncryption
55:f8:23:bb:00:fd:7f:f9:89:46:d5:07:8a:bd:8b:11:af:97:
1c:b3:10:eb:3a:f2:f1:8e:33:3b:a7:5b:24:e9:61:b1:83:fa:
d1:06:e1:cc:1a:34:d2:1c:6c:4a:cb:ce:08:d9:0b:86:68:d1:
82:cd:94:fe:6f:07:3f:75:19:75:8a:be:31:3f:a4:68:b6:ea:
6e:33:aa:7a:ba:dd:22:0d:2f:bd:42:72:ef:6d:eb:e6:75:25:
f9:26:aa:9b:2e:f4:a0:57:0d:95:be:b7:dc:55:db:46:79:20:
ba:cf:98:5f:cc:21:58:86:ac:f4:65:2d:2a:b8:51:9a:75:fb:
cf:3e:46:9d:9a:b9:71:83:41:9b:55:1a:ae:93:0a:dd:35:c2:
81:9a:03:b8:2b:0a:d7:d7:33:7f:67:06:8c:a5:88:5c:ce:d4:
b4:46:8c:aa:6d:f7:6b:76:5c:da:a9:bd:b3:46:3b:5a:da:99:
4e:36:41:18:79:36:3a:89:3b:9a:4b:85:2e:34:0e:e2:61:f7:
de:4a:bd:ca:6b:6b:0c:63:c1:17:2d:79:9f:34:34:f2:7f:55:
a7:b6:be:cf:08:63:e2:ab:6a:9e:6f:aa:cf:53:67:cb:b5:55:
e0:0f:45:f8:cc:a4:68:66:b9:a5:5b:74:0c:da:e1:b6:17:ce:
22:14:f8:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-ams.rpki-client.org