Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A73F2FCA710C11EB94489765C4F9AE02.roa
File: A73F2FCA710C11EB94489765C4F9AE02.roa (raw, json)
Hash identifier: YxM0W1E7dYCLTyJNVellhFQxSCZfEo6UJvfiKBoRM6g=
Subject key identifier: EB:04:23:BE:E8:1E:D3:3B:FB:AA:24:88:0A:B3:E6:08:46:B0:8B:C5
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 8A30
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A73F2FCA710C11EB94489765C4F9AE02.roa
Signing time: Thu 30 May 2024 16:01:57 +0000
ROA not before: Thu 30 May 2024 16:01:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 135244
IP address blocks: 43.226.2.0/23 maxlen: 24
45.113.62.0/23 maxlen: 24
45.251.68.0/22 maxlen: 24
103.42.16.0/23 maxlen: 24
103.220.24.0/22 maxlen: 24
103.235.23.0/24 maxlen: 24
103.254.27.0/24 maxlen: 24
2403:73c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 13 Jan 2025 05:56:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35376 (0x8a30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: May 30 16:01:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658a2f5-dbff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:da:d2:3a:11:40:b6:89:d6:2a:e2:06:68:bf:
d4:5c:f5:cc:ff:5c:42:67:06:d6:79:00:99:53:73:
d0:4c:ee:0f:90:8e:ba:57:38:3a:77:37:0e:f3:2a:
b9:6e:3e:b3:4e:b7:79:f6:24:1b:25:29:f1:7c:f5:
7f:a8:35:c1:da:31:a6:a9:b3:ef:75:e2:98:30:36:
9f:db:c7:1f:f7:7e:c7:43:22:ab:5d:08:c3:7b:5c:
a4:8d:4c:ae:a8:30:45:c4:b6:21:7a:26:22:d2:7e:
c8:08:68:14:0c:59:f6:5b:de:9b:b4:42:ce:56:18:
a4:3c:45:7b:ca:85:bc:9b:26:6d:f7:3a:68:ed:47:
79:6d:53:68:fb:da:a0:aa:bd:1e:d6:fa:f1:1a:da:
b9:14:5b:9f:a6:73:6e:ee:da:cc:65:85:5c:f7:eb:
14:64:26:c2:d0:f7:37:45:9e:0d:e1:3b:30:8d:1e:
a4:0d:1e:13:69:25:3c:00:df:5c:9e:ae:ce:d9:60:
4d:1c:ed:74:85:cb:83:36:15:dc:2b:e4:c0:c5:13:
e0:e5:e4:32:82:8e:65:53:fd:6a:b5:ce:37:82:eb:
0e:0f:62:02:00:2b:6f:e7:7a:e3:c1:14:c7:7b:b7:
07:04:8f:5d:56:13:19:70:c5:04:bf:55:c5:bb:0b:
c3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:04:23:BE:E8:1E:D3:3B:FB:AA:24:88:0A:B3:E6:08:46:B0:8B:C5
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A73F2FCA710C11EB94489765C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.2.0/23
45.113.62.0/23
45.251.68.0/22
103.42.16.0/23
103.220.24.0/22
103.235.23.0/24
103.254.27.0/24
IPv6:
2403:73c0::/32
Signature Algorithm: sha256WithRSAEncryption
80:aa:cb:6a:3a:a1:01:97:0f:f9:5a:73:cd:ab:67:8e:86:0a:
a5:1a:16:b4:13:0a:f2:c9:d0:9e:fb:c4:01:ab:1f:15:32:93:
6f:01:42:50:2a:e9:f9:f5:f0:51:98:bb:53:d9:e6:38:b9:99:
6b:26:09:fa:3e:93:94:96:52:7a:ee:68:eb:ba:10:8f:35:6d:
c0:88:3b:67:6d:d5:38:b5:21:f2:a0:3a:a7:42:da:06:14:ec:
0a:18:5d:a9:a4:51:58:f9:d4:14:37:10:a5:d6:8d:8f:53:ce:
59:12:47:32:06:92:38:fa:b6:ca:f7:77:d6:d6:86:41:37:09:
bd:a5:fa:47:46:22:2a:84:c8:75:9f:57:74:c7:14:05:91:5d:
02:e6:6e:bb:50:43:28:c9:4b:5c:fa:3e:a4:53:ba:0b:7f:8b:
3b:94:a3:1c:44:20:e8:20:5f:26:6e:1b:a5:a7:a2:0b:f5:7c:
3f:d0:52:71:fd:ed:12:cd:98:5a:93:9d:40:4c:8f:db:56:bc:
8f:e0:1b:be:c1:8c:66:4d:a3:e4:d6:0e:73:73:c2:20:9d:3e:
69:30:a0:3a:6d:de:b8:33:59:e0:5b:02:53:d2:75:26:2c:9c:
96:01:ff:e8:50:2d:ce:5b:b4:a2:c0:49:48:41:42:fb:d9:f8:
70:2a:8b:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:29:44 2025 by rpki-client