Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/EE134A3E4DD311EE9AA82946C4F9AE02.roa
File: EE134A3E4DD311EE9AA82946C4F9AE02.roa (raw, json)
Hash identifier: VCKlxSUgksrNpY3FZMsloyj1dl7Xy+Puh/nRkt1vbv0=
Subject key identifier: 68:BA:8F:AB:14:BE:76:61:4B:0B:F0:46:92:BB:E7:82:06:4F:27:65
Certificate issuer: /CN=A917EFA9/serialNumber=7B91A8B011D619C4271D45203A0E33D9185EF781
Certificate serial: 22
Authority key identifier: 7B:91:A8:B0:11:D6:19:C4:27:1D:45:20:3A:0E:33:D9:18:5E:F7:81
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5GosBHWGcQnHUUgOg4z2Rhe94E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/EE134A3E4DD311EE9AA82946C4F9AE02.roa
Signing time: Thu 07 Sep 2023 23:11:52 +0000
ROA not before: Thu 07 Sep 2023 23:11:52 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 135889
IP address blocks: 103.79.23.0/24 maxlen: 24
103.102.50.0/23 maxlen: 23
103.102.51.0/24 maxlen: 24
103.102.52.0/24 maxlen: 24
182.16.152.0/22 maxlen: 22
202.62.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Sep 2023 23:15:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34 (0x22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917EFA9/serialNumber=7B91A8B011D619C4271D45203A0E33D9185EF781
Validity
Not Before: Sep 7 23:11:52 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=64fa58b8-062a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:28:41:85:fe:89:67:a0:76:df:5a:d3:74:bd:
b9:76:da:da:aa:b4:c4:a5:7f:b3:94:3d:fc:19:c6:
0b:75:94:c7:39:17:f4:0d:47:64:45:9c:ea:cf:3e:
08:4d:3f:a7:f8:79:c9:82:75:b7:d7:a1:a4:03:48:
5c:f6:d4:7f:69:a4:93:ab:8b:01:ef:51:08:0e:6a:
2c:1b:c1:5b:2b:95:f0:44:d1:ff:06:af:1b:65:ba:
0e:65:18:a0:ca:31:ff:87:42:f4:f7:2a:ab:42:24:
dc:3e:30:83:5d:00:d2:91:d7:3c:78:3d:73:86:04:
c4:fc:1d:47:0f:47:f4:8e:eb:25:b0:7c:09:fa:8a:
de:5f:e5:f9:db:d5:dd:3d:17:b2:6e:99:04:71:0f:
81:13:a8:0f:0d:a1:51:96:3a:c8:79:d1:99:94:0e:
16:42:37:b6:55:38:38:92:d3:ba:56:64:79:3a:70:
aa:fe:43:80:4e:c5:86:0b:56:51:9c:1d:8d:c1:49:
d1:09:8e:a9:51:bd:64:3d:ad:91:bf:ec:9c:2b:16:
ef:81:5d:31:00:2e:3a:17:f3:d8:89:f6:be:e7:13:
f3:31:e8:b2:61:7f:11:b0:9c:49:e2:fd:5a:30:37:
0c:cf:a8:bb:0c:c1:65:f5:a0:b0:a1:65:86:4c:dc:
e0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:BA:8F:AB:14:BE:76:61:4B:0B:F0:46:92:BB:E7:82:06:4F:27:65
X509v3 Authority Key Identifier:
keyid:7B:91:A8:B0:11:D6:19:C4:27:1D:45:20:3A:0E:33:D9:18:5E:F7:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/e5GosBHWGcQnHUUgOg4z2Rhe94E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5GosBHWGcQnHUUgOg4z2Rhe94E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/EE134A3E4DD311EE9AA82946C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.79.23.0/24
103.102.50.0-103.102.52.255
182.16.152.0/22
202.62.245.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:77:1f:65:e6:44:f5:d5:5d:30:7f:cb:3a:d2:4e:cb:a0:7f:
d1:01:48:24:3e:55:f3:61:ca:27:36:a8:69:b4:57:96:9d:b9:
79:7f:42:56:74:23:86:9a:03:f2:f5:06:7d:f1:64:1a:43:20:
34:d4:0c:2f:7c:62:c5:ff:bb:75:84:c3:7c:52:fa:8c:a7:80:
93:28:60:51:0a:e7:63:c2:79:b9:74:93:c5:4a:36:6f:ee:68:
00:40:81:69:f1:a3:0c:ca:45:c5:36:1e:c5:bc:aa:da:38:eb:
d1:d4:86:e1:d5:f5:93:2b:16:f8:61:5e:81:7c:a6:25:6f:d5:
62:ee:80:8d:ee:0c:46:ed:19:36:40:bb:a4:c6:7a:5e:71:fd:
43:5b:cc:30:64:9a:52:0b:31:bf:5b:4d:a2:7e:ea:2b:20:7c:
8d:d3:45:8b:76:d0:cc:e6:54:b5:a3:3c:40:dd:98:32:05:23:
cf:c0:f4:d6:f8:c8:57:c5:5d:06:b7:32:7e:ae:33:4d:5d:ec:
9d:e4:d6:f7:16:7c:02:ea:b1:6a:a6:3a:ab:4c:7d:e7:0f:86:
aa:76:e8:9b:df:c5:c6:7f:e7:7a:b4:17:6b:26:84:14:e6:41:
36:9d:cb:1b:ec:7f:56:3e:49:a8:2c:6a:c5:e4:61:b8:31:92:
67:b4:da:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:13 2024 by rpki-client on console-fra.rpki-client.org