Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D2410FDACCA411EEAE4B947BC4F9AE02.roa
File: D2410FDACCA411EEAE4B947BC4F9AE02.roa (raw, json)
Hash identifier: jDZW5JAqyP6DLe2yuNbTK8gWrenVptSeHRl8WDvsbqw=
Subject key identifier: D0:0E:14:7B:CC:B0:50:D2:C2:95:D5:3A:95:7A:C2:FE:6F:E3:00:65
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 9314
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D2410FDACCA411EEAE4B947BC4F9AE02.roa
Signing time: Mon 24 Jun 2024 12:41:19 +0000
ROA not before: Mon 24 Jun 2024 12:41:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 141329
IP address blocks: 103.50.20.0/24 maxlen: 24
103.50.21.0/24 maxlen: 24
103.120.62.0/24 maxlen: 24
103.120.63.0/24 maxlen: 24
103.146.224.0/23 maxlen: 24
103.171.58.0/23 maxlen: 24
103.171.194.0/23 maxlen: 24
103.177.234.0/23 maxlen: 24
103.189.134.0/23 maxlen: 24
103.189.179.0/24 maxlen: 24
103.210.0.0/23 maxlen: 24
103.217.80.0/22 maxlen: 24
2001:df0:d0c0::/48 maxlen: 48
2001:df2:8140::/48 maxlen: 48
2407:c040::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 05 Jul 2024 11:58:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37652 (0x9314)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: Jun 24 12:41:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6679696f-685d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:bc:03:ab:6a:01:63:53:24:1c:cc:aa:11:4d:
3b:6e:06:db:58:96:b0:57:b2:a2:00:ff:e6:a7:2f:
ae:66:42:ea:0f:6f:6d:f6:9d:e3:da:04:ba:55:63:
28:86:37:ba:96:3d:98:1d:e4:49:ed:63:50:f9:0b:
3e:35:3a:74:8a:41:c5:ce:90:d5:33:4f:a2:8a:5a:
16:97:16:e3:64:ff:63:60:e9:ac:4c:65:7e:67:83:
7b:cb:36:ff:07:4b:5e:0b:24:42:99:9e:8d:e5:db:
9c:1a:45:73:a1:da:e0:60:7d:b7:32:38:3e:49:c0:
92:0b:f9:c9:db:0c:10:f1:ca:b4:9b:ce:98:7e:05:
2a:56:b0:b9:89:25:af:c1:38:f2:09:0e:c6:d4:5f:
99:0f:a6:32:ac:a5:0f:75:b2:b1:ec:05:30:66:53:
4e:44:36:2b:19:da:9e:de:8e:1d:bc:73:12:3f:41:
0f:2f:df:49:89:9a:57:fb:8c:19:a5:3d:1c:93:95:
5a:c5:fd:31:e8:e5:c9:a1:5d:87:10:84:49:cc:99:
1e:69:3c:da:38:53:82:a8:dd:e8:5e:b5:28:d5:e6:
c1:be:08:8e:69:3c:69:27:6d:5e:b7:3d:38:a5:0d:
41:a4:ec:98:81:36:77:04:7d:7a:ad:ee:30:93:fc:
a5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:0E:14:7B:CC:B0:50:D2:C2:95:D5:3A:95:7A:C2:FE:6F:E3:00:65
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D2410FDACCA411EEAE4B947BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.50.20.0/23
103.120.62.0/23
103.146.224.0/23
103.171.58.0/23
103.171.194.0/23
103.177.234.0/23
103.189.134.0/23
103.189.179.0/24
103.210.0.0/23
103.217.80.0/22
IPv6:
2001:df0:d0c0::/48
2001:df2:8140::/48
2407:c040::/32
Signature Algorithm: sha256WithRSAEncryption
80:30:16:22:84:0e:29:95:c6:75:4f:f5:45:cf:10:51:bb:16:
ec:a1:53:8a:b6:f3:9f:0f:c4:82:8e:ef:65:d4:03:b1:5d:21:
ad:d7:be:5f:54:d9:6c:15:81:a8:c7:2f:32:55:4f:fb:76:c8:
a4:78:8f:14:d8:b9:f9:1c:b5:0d:24:21:5c:8a:ec:7e:bd:bc:
1b:cb:b5:9f:10:cf:b6:ef:a5:de:bc:ff:57:71:39:99:7b:29:
f0:9f:a1:41:6f:c2:f5:9c:9f:91:0e:73:57:ac:a6:c3:bb:75:
bd:91:50:48:b2:a0:fc:b5:f5:82:8a:78:85:db:2c:54:6b:0d:
ff:b3:a3:47:0d:15:a2:ec:82:f1:b6:cb:7e:f5:57:cc:01:72:
d8:42:03:2c:12:d5:66:82:c5:0f:66:ba:05:11:03:63:b2:cd:
05:c2:fb:bc:01:a6:22:63:6e:20:29:38:e7:c2:56:64:cd:2e:
af:fe:a9:46:a5:d9:d0:a1:68:77:2f:b5:02:b3:7a:c6:fa:72:
b2:69:89:e2:45:61:c7:6e:48:62:ca:d8:2f:88:f9:0e:dd:a8:
37:8b:a8:cb:b3:eb:26:08:b2:f3:27:60:d0:54:f8:d4:22:fb:
fc:16:88:eb:e3:ab:1b:e3:d8:33:88:75:29:b1:a6:c8:6f:fb:
3c:88:52:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 21:58:09 2025 by rpki-client