Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1CCBC4E04D5311EE88FA0F5AC4F9AE02.roa
File: 1CCBC4E04D5311EE88FA0F5AC4F9AE02.roa (raw, json)
Hash identifier: 3v3g+sQS4H0iF3Cebr9q0IOX6d7RUSaAqOaGLcxtZaA=
Subject key identifier: 0C:13:3F:72:22:3E:E4:C5:C3:7C:4E:F8:46:25:11:4E:EB:6B:71:0E
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 3EF2
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1CCBC4E04D5311EE88FA0F5AC4F9AE02.roa
Signing time: Tue 12 Sep 2023 02:43:23 +0000
ROA not before: Tue 12 Sep 2023 02:43:23 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 18403
IP address blocks: 1.52.0.0/14 maxlen: 24
42.112.0.0/13 maxlen: 24
43.239.148.0/22 maxlen: 24
58.186.0.0/15 maxlen: 24
103.35.64.0/22 maxlen: 24
103.39.92.0/22 maxlen: 24
103.143.206.0/23 maxlen: 24
103.156.10.0/23 maxlen: 24
103.156.12.0/23 maxlen: 24
103.156.30.0/23 maxlen: 24
103.156.32.0/23 maxlen: 24
103.156.34.0/23 maxlen: 24
113.22.0.0/16 maxlen: 24
113.23.0.0/17 maxlen: 24
118.68.0.0/14 maxlen: 24
144.48.20.0/22 maxlen: 24
183.80.0.0/16 maxlen: 24
183.81.0.0/17 maxlen: 24
203.191.8.0/21 maxlen: 24
210.245.0.0/17 maxlen: 24
2405:4800::/30 maxlen: 31
2405:4800::/32 maxlen: 48
2405:4801::/32 maxlen: 48
2405:4802::/32 maxlen: 48
2405:4803::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 05 Apr 2024 15:47:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16114 (0x3ef2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Sep 12 02:43:23 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=64ffd04a-58da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6f:3a:b4:67:1c:01:76:bd:c4:2c:60:6b:58:
70:a8:e5:6f:5a:88:4f:8f:24:b9:2e:ff:cf:a6:0f:
05:e8:cd:10:70:f4:dc:57:30:a9:ff:3a:4c:f8:a0:
44:fd:b8:60:95:c0:d4:92:e9:27:23:48:3d:ed:52:
fd:de:81:db:fb:dc:f3:4e:8a:3c:e4:45:4e:a1:19:
b9:e4:04:d5:91:bd:25:35:a4:b7:d9:1d:4e:b9:35:
ed:90:59:6c:27:bf:a4:a9:dc:94:55:99:fa:83:bc:
47:d2:e5:3a:a8:26:41:45:dc:bf:19:56:10:6d:fa:
88:39:97:29:70:d6:83:24:ef:c6:c3:4f:17:68:96:
ff:06:6e:a7:2a:59:dc:f0:7b:e2:55:57:b3:c8:5a:
ea:27:1d:d3:d2:e7:a0:ce:4e:07:cf:79:30:70:52:
89:5f:9e:0f:e5:b1:ae:c3:71:e5:8d:3b:b7:e3:ee:
ec:5e:d4:35:a4:f1:17:e3:bb:8b:3e:d0:fb:0d:34:
65:7a:8b:25:26:fb:bc:01:c7:f9:f5:ed:a9:d4:1a:
a1:8c:ad:f9:99:ad:78:90:53:65:69:0c:33:b1:bc:
94:01:fb:d2:08:ef:69:8e:e1:cc:ba:a1:fe:ed:7d:
3e:17:b4:29:d4:45:76:b9:a3:b3:47:11:9c:f6:70:
63:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:13:3F:72:22:3E:E4:C5:C3:7C:4E:F8:46:25:11:4E:EB:6B:71:0E
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1CCBC4E04D5311EE88FA0F5AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.52.0.0/14
42.112.0.0/13
43.239.148.0/22
58.186.0.0/15
103.35.64.0/22
103.39.92.0/22
103.143.206.0/23
103.156.10.0-103.156.13.255
103.156.30.0-103.156.35.255
113.22.0.0-113.23.127.255
118.68.0.0/14
144.48.20.0/22
183.80.0.0-183.81.127.255
203.191.8.0/21
210.245.0.0/17
IPv6:
2405:4800::/30
Signature Algorithm: sha256WithRSAEncryption
b5:a9:36:2d:7a:63:2a:69:d5:61:0c:48:a7:b6:64:17:f7:de:
09:c5:60:e7:b0:4b:27:ee:ba:bd:2a:f7:14:e9:f8:8c:c9:e1:
15:be:92:4f:eb:65:42:24:92:86:c1:35:39:67:79:4c:3f:bf:
79:8b:69:fe:00:2a:42:86:fd:eb:f5:5d:2c:6b:0e:97:6b:11:
32:bf:3f:a8:62:e5:5c:d3:eb:87:40:20:06:34:68:21:e1:a2:
d6:63:7a:f1:d6:70:00:ee:56:75:c2:b9:e3:bc:f7:7c:57:d9:
e0:e8:0e:ca:2b:91:84:a8:da:be:8f:30:87:fa:2e:76:a6:b5:
cd:70:75:45:c2:43:9a:f2:aa:71:88:c0:6e:8a:3a:79:76:a0:
71:0a:3a:31:34:2b:2b:13:cf:da:8b:9a:00:cc:cf:89:3f:a9:
b8:78:9d:f4:cc:81:3c:1e:7a:9b:4e:5e:bf:ed:65:49:70:e5:
9b:6b:a5:cd:30:37:1b:e5:d0:53:c6:20:05:07:36:94:28:6d:
f9:f7:3b:80:76:4b:90:3d:79:17:39:9e:f4:00:b3:bd:41:a6:
1b:c7:73:7f:82:a6:6a:38:1f:cd:99:26:01:e5:da:c7:10:92:
d6:3e:29:22:2e:1e:e7:bc:02:dd:59:82:1d:7e:6b:90:62:d2:
a3:4d:a2:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:53 2024 by rpki-client on console-ams.rpki-client.org