Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1DAD8A100F7911ED97A48279C4F9AE02.roa
File: 1DAD8A100F7911ED97A48279C4F9AE02.roa (raw, json)
Hash identifier: u0dL8ngW/wAmtNEPvqY+GYd7FFP7gOdvVqzhdZQlT7g=
Subject key identifier: AC:57:B7:60:D7:C0:E9:B8:01:95:C2:50:FB:96:2F:D9:65:0B:1F:75
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 3AAC
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1DAD8A100F7911ED97A48279C4F9AE02.roa
Signing time: Wed 28 Sep 2022 06:50:38 +0000
ROA not before: Wed 28 Sep 2022 06:50:38 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 140825
IP address blocks: 59.153.216.0/22 maxlen: 24
103.6.234.0/23 maxlen: 24
103.11.198.0/23 maxlen: 24
103.12.76.0/23 maxlen: 24
103.81.84.0/22 maxlen: 24
103.137.184.0/23 maxlen: 24
103.173.154.0/23 maxlen: 24
103.173.254.0/23 maxlen: 24
103.183.112.0/23 maxlen: 24
103.184.112.0/23 maxlen: 24
2001:df0:5bc0::/48 maxlen: 48
2001:df0:90c0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15020 (0x3aac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Sep 28 06:50:38 2022 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=6333eebd-0dbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:91:61:ff:4a:78:c3:9f:bc:90:d6:36:89:36:
71:bb:d7:1a:47:08:d0:94:a7:ca:50:a6:d7:ac:64:
58:31:4f:2c:99:39:33:57:de:90:e1:61:1b:d2:25:
6e:7f:b6:8f:c7:58:3d:44:56:ee:d9:da:df:e5:c9:
f4:10:28:b7:cd:a1:49:f3:58:21:af:3f:7c:89:fa:
8c:85:80:d9:50:ed:13:81:2b:7c:69:8d:c8:ef:9c:
c5:53:89:eb:fb:0a:fd:11:e5:5c:46:50:6c:b7:93:
04:e4:56:d7:ae:1d:78:59:d6:f9:76:e1:4e:21:a7:
62:5a:fe:d3:75:96:cb:0c:f6:4f:34:4b:7f:cc:19:
de:28:2f:0c:9a:bb:86:58:1b:44:c8:3b:45:26:04:
a6:2a:8f:a4:fa:3f:95:99:b3:af:de:b0:34:f8:c1:
9c:2e:22:97:33:58:81:39:6b:70:a3:26:6b:87:77:
39:7c:da:29:e9:0f:81:3d:e9:fd:9a:87:53:b5:98:
45:4e:12:6c:90:de:87:3b:5b:f5:92:d9:83:79:b2:
e2:14:3f:42:72:f2:4d:ce:3a:5b:3d:41:59:93:5a:
3e:75:21:97:9b:9a:7a:1e:02:1b:89:38:ba:85:1f:
e4:44:0e:c8:f2:a3:33:d0:6e:40:f4:a1:99:ce:03:
d5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:57:B7:60:D7:C0:E9:B8:01:95:C2:50:FB:96:2F:D9:65:0B:1F:75
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1DAD8A100F7911ED97A48279C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.153.216.0/22
103.6.234.0/23
103.11.198.0/23
103.12.76.0/23
103.81.84.0/22
103.137.184.0/23
103.173.154.0/23
103.173.254.0/23
103.183.112.0/23
103.184.112.0/23
IPv6:
2001:df0:5bc0::/48
2001:df0:90c0::/48
Signature Algorithm: sha256WithRSAEncryption
31:d0:47:3f:e1:6e:89:65:86:23:98:7e:55:8b:15:32:f0:15:
0d:1d:ff:90:5a:41:77:da:cf:e3:1e:88:e8:7d:f6:9a:38:56:
d0:3c:f0:36:b4:93:ae:08:49:12:6d:30:36:9f:a4:78:0d:b6:
78:10:62:5d:79:9d:15:f0:f1:68:30:75:14:59:f4:81:b8:61:
6f:83:62:e7:83:c7:e8:e2:80:13:f3:d2:90:e6:f7:43:5a:46:
94:cf:da:92:f3:f0:ba:fa:90:b3:63:63:f5:ad:7f:c8:00:f1:
9c:d4:74:82:8f:5f:6f:6b:b6:23:45:0c:a5:06:26:05:ae:c3:
ea:74:1b:2c:2b:bd:51:54:55:13:2b:e1:2a:5b:6f:f5:b1:ff:
73:8a:fb:e2:2c:4f:96:71:0f:10:12:47:14:98:fb:30:4f:77:
d9:b9:97:72:a2:4d:8c:85:6d:d2:ea:62:de:15:d0:86:0b:c9:
2b:27:fe:7f:01:fd:4c:bf:a3:a7:68:57:4b:8a:97:a5:d0:1c:
3f:d3:91:f1:c6:7b:9a:fc:bd:4d:b9:d8:88:42:43:4b:44:5b:
cf:1e:b3:af:da:b5:90:6a:54:c6:9a:3d:ab:21:41:d4:a7:e3:
45:ef:de:72:d5:dc:f6:a0:c3:6c:93:91:39:8d:09:ee:77:46:
36:05:96:e5
-----BEGIN CERTIFICATE-----
MIIFwTCCBKmgAwIBAgICOqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3
NTZBQzZGMEEwHhcNMjIwOTI4MDY1MDM4WhcNMjMxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzMzZWViZC0wZGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqpFh/0p4w5+8kNY2iTZxu9caRwjQlKfKUKbXrGRYMU8smTkzV96Q4WEb0iVu
f7aPx1g9RFbu2drf5cn0ECi3zaFJ81ghrz98ifqMhYDZUO0TgSt8aY3I75zFU4nr
+wr9EeVcRlBst5ME5FbXrh14Wdb5duFOIadiWv7TdZbLDPZPNEt/zBneKC8MmruG
WBtEyDtFJgSmKo+k+j+VmbOv3rA0+MGcLiKXM1iBOWtwoyZrh3c5fNop6Q+BPen9
modTtZhFThJskN6HO1v1ktmDebLiFD9CcvJNzjpbPUFZk1o+dSGXm5p6HgIbiTi6
hR/kRA7I8qMz0G5A9KGZzgPVMwIDAQABo4IC5TCCAuEwHQYDVR0OBBYEFKxXt2DX
wOm4AZXCUPuWL9llCx91MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE
OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi
d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMURBRDhBMTAw
Rjc5MTFFRDk3QTQ4Mjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbwYIKwYBBQUHAQcBAf8E
YDBeMEIEAgABMDwDBAI7mdgDBAFnBuoDBAFnC8YDBAFnDEwDBAJnUVQDBAFnibgD
BAFnrZoDBAFnrf4DBAFnt3ADBAFnuHAwGAQCAAIwEgMHACABDfBbwAMHACABDfCQ
wDANBgkqhkiG9w0BAQsFAAOCAQEAMdBHP+FuiWWGI5h+VYsVMvAVDR3/kFpBd9rP
4x6I6H32mjhW0DzwNrSTrghJEm0wNp+keA22eBBiXXmdFfDxaDB1FFn0gbhhb4Ni
54PH6OKAE/PSkOb3Q1pGlM/akvPwuvqQs2Nj9a1/yADxnNR0go9fb2u2I0UMpQYm
Ba7D6nQbLCu9UVRVEyvhKltv9bH/c4r74ixPlnEPEBJHFJj7ME932bmXcqJNjIVt
0upi3hXQhgvJKyf+fwH9TL+jp2hXS4qXpdAcP9OR8cZ7mvy9TbnYiEJDS0Rbzx6z
r9q1kGpUxpo9qyFB1KfjRe/ectXc9qDDbJOROY0J7ndGNgWW5Q==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:02 2023 by rpki-client on console-fra.rpki-client.org