Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D774CC003ACD11EC8987F871C4F9AE02.roa
File: D774CC003ACD11EC8987F871C4F9AE02.roa (raw, json)
Hash identifier: Zmp9inTmF7nW593zpgZwg+N+2VUAYG/dsR4eUZDVfQY=
Subject key identifier: 10:AB:12:EB:FE:88:95:5E:26:AA:16:C1:E1:0A:DE:24:BE:F9:64:4F
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 3988
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D774CC003ACD11EC8987F871C4F9AE02.roa
Signing time: Fri 26 Aug 2022 14:53:09 +0000
ROA not before: Fri 26 Aug 2022 14:53:09 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 55313
IP address blocks: 27.118.16.0/24 maxlen: 24
27.118.17.0/24 maxlen: 24
27.118.18.0/24 maxlen: 24
27.118.19.0/24 maxlen: 24
27.118.20.0/24 maxlen: 24
27.118.21.0/24 maxlen: 24
27.118.22.0/24 maxlen: 24
27.118.23.0/24 maxlen: 24
27.118.24.0/24 maxlen: 24
27.118.25.0/24 maxlen: 24
27.118.26.0/24 maxlen: 24
27.118.27.0/24 maxlen: 24
27.118.28.0/24 maxlen: 24
27.118.29.0/24 maxlen: 24
27.118.30.0/24 maxlen: 24
27.118.31.0/24 maxlen: 24
45.126.92.0/24 maxlen: 24
45.126.93.0/24 maxlen: 24
45.126.94.0/24 maxlen: 24
45.126.95.0/24 maxlen: 24
103.245.148.0/24 maxlen: 24
103.245.149.0/24 maxlen: 24
103.245.150.0/24 maxlen: 24
103.245.151.0/24 maxlen: 24
2400:9bc0::/32 maxlen: 32
2400:9bc0::/48 maxlen: 48
2400:9bc0:1::/48 maxlen: 48
2400:9bc0:2::/48 maxlen: 48
2400:9bc0:3::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14728 (0x3988)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Aug 26 14:53:09 2022 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=6308de55-2f10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:04:97:61:b0:b8:e3:07:9c:fd:bc:ef:4b:87:
e0:bb:81:0b:ae:de:1d:42:6a:8a:25:a7:dc:04:32:
fe:df:77:34:29:bd:85:b6:8d:9a:d8:30:2e:4e:75:
9c:d5:96:91:d8:ea:5c:73:b3:90:3d:e4:0e:98:30:
55:0c:b9:aa:8d:e8:ab:ac:21:0c:ba:36:1d:4c:3b:
51:3a:74:77:8d:d4:71:de:76:38:ec:bc:85:85:e9:
b3:ae:dd:bc:68:5d:9a:50:92:01:f4:de:83:09:c4:
d6:04:4b:82:4f:c6:11:d9:b6:f3:4b:63:1a:d2:86:
20:73:4e:42:33:ae:30:1c:97:09:b3:44:e8:c0:68:
07:e7:dc:2a:1c:b9:df:db:dd:59:11:65:5b:4b:68:
bc:0d:3b:85:6f:75:5b:e7:50:ab:01:e9:4b:12:73:
04:0c:fa:bc:b3:8a:7c:e8:87:19:3c:8c:a7:cf:ee:
60:b8:81:d4:9c:b0:63:51:90:52:e7:7e:28:72:2a:
e7:30:ac:82:42:c3:df:8e:7f:d8:99:6d:1b:a9:43:
7b:fe:44:54:c5:fa:fe:2d:72:29:59:b3:39:09:c9:
5b:a4:d3:1d:6d:df:86:09:82:83:04:3a:c1:77:f0:
61:fc:ba:cf:52:9a:df:d0:ac:56:3f:b2:f9:21:d3:
b2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:AB:12:EB:FE:88:95:5E:26:AA:16:C1:E1:0A:DE:24:BE:F9:64:4F
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D774CC003ACD11EC8987F871C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.118.16.0/20
45.126.92.0/22
103.245.148.0/22
IPv6:
2400:9bc0::/32
Signature Algorithm: sha256WithRSAEncryption
80:c1:23:ca:b7:24:da:72:fa:32:fc:a6:34:26:99:8b:47:91:
77:55:17:84:16:69:f8:98:99:15:fc:39:4d:ac:9d:a6:63:e8:
b1:e2:80:62:fa:b1:62:91:d5:fa:22:95:89:8a:23:5c:d4:be:
f9:6d:13:9b:45:1b:b7:a3:f3:0e:22:c9:5c:47:71:50:86:21:
e2:9c:a6:c4:6a:2a:1f:98:e3:bf:c1:f2:ed:b1:ed:6b:5b:fc:
d4:44:73:08:4d:d1:59:36:df:9a:f9:1f:d2:b1:85:19:52:38:
ef:d4:45:4e:8e:c5:6a:6d:67:01:53:d5:fc:af:a5:a4:b6:60:
2f:41:3b:9c:99:7d:cc:40:dd:1f:16:b1:40:23:0c:57:1f:09:
dd:19:e9:2f:4f:d2:76:c7:43:01:72:68:5e:3d:fe:bb:38:3e:
5f:cb:02:25:5f:ce:ef:35:c6:2c:09:4d:54:5e:99:48:ea:0a:
69:d0:51:4a:38:1e:8d:30:5c:5c:37:a7:35:ae:f5:e1:d1:d4:
c1:2a:76:a0:00:5a:48:fe:d0:43:ca:ea:ce:a3:08:9c:b9:6f:
58:e4:45:14:56:14:68:3d:13:dd:5c:23:ff:8f:a0:bf:d4:cc:
85:3b:e6:88:76:5f:36:ec:82:4e:4a:94:55:77:ce:71:21:b7:
d0:5c:ac:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:00 2023 by rpki-client on console-ams.rpki-client.org