Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/073CA1A8011211EAA8221E4AC4F9AE02.roa
File: 073CA1A8011211EAA8221E4AC4F9AE02.roa (raw, json)
Hash identifier: BAWlg2W0MV0IkWJudZ77y4VN0pgWd8OYf/n6zIwt04s=
Subject key identifier: 41:F3:1A:5F:C2:9D:3F:BA:72:F7:9A:9A:6F:AF:05:F1:58:ED:EB:A5
Certificate issuer: /CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72
Certificate serial: 0B01
Authority key identifier: E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/073CA1A8011211EAA8221E4AC4F9AE02.roa
Signing time: Thu 08 Jun 2023 20:00:16 +0000
ROA not before: Thu 08 Jun 2023 20:00:16 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 132829
IP address blocks: 43.239.100.0/24 maxlen: 24
43.239.101.0/24 maxlen: 24
103.248.132.0/24 maxlen: 24
103.248.133.0/24 maxlen: 24
103.248.134.0/23 maxlen: 24
2406:f900::/32 maxlen: 32
2406:f900::/48 maxlen: 48
2406:f900:1::/48 maxlen: 48
2406:f900:2::/48 maxlen: 48
2406:f900:3::/48 maxlen: 48
2406:f900:4::/48 maxlen: 48
2406:f900:5::/48 maxlen: 48
2406:f900:6::/48 maxlen: 48
2406:f900:7::/48 maxlen: 48
2406:f900:8::/48 maxlen: 48
2406:f900:9::/48 maxlen: 48
2406:f900:a::/48 maxlen: 48
2406:f900:b::/48 maxlen: 48
2406:f900:c::/48 maxlen: 48
2406:f900:d::/48 maxlen: 48
2406:f900:e::/48 maxlen: 48
2406:f900:f::/48 maxlen: 48
2406:f900:10::/48 maxlen: 48
2406:f900:11::/48 maxlen: 48
2406:f900:12::/48 maxlen: 48
2406:f900:13::/48 maxlen: 48
2406:f900:14::/48 maxlen: 48
2406:f900:15::/48 maxlen: 48
2406:f900:16::/48 maxlen: 48
2406:f900:17::/48 maxlen: 48
2406:f900:18::/48 maxlen: 48
2406:f900:19::/48 maxlen: 48
2406:f900:1a::/48 maxlen: 48
2406:f900:1b::/48 maxlen: 48
2406:f900:1c::/48 maxlen: 48
2406:f900:1d::/48 maxlen: 48
2406:f900:28::/48 maxlen: 48
2406:f900:29::/48 maxlen: 48
2406:f900:2a::/48 maxlen: 48
2406:f900:2b::/48 maxlen: 48
2406:f900:2c::/48 maxlen: 48
2406:f900:2d::/48 maxlen: 48
2406:f900:2e::/48 maxlen: 48
2406:f900:2f::/48 maxlen: 48
2406:f900:30::/48 maxlen: 48
2406:f900:31::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 13 Oct 2023 17:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2817 (0xb01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72
Validity
Not Before: Jun 8 20:00:16 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=6482334f-6fe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:f6:81:6f:3b:ba:d1:11:26:3b:a9:ae:c3:6c:
9b:ac:1f:22:e1:c1:cc:16:3e:aa:09:4e:c5:25:61:
03:4f:e5:a3:b5:f0:7b:7c:9c:29:dd:34:01:dc:81:
b8:c2:3a:6e:f2:21:32:4c:2c:bf:96:64:40:5c:e8:
25:8a:32:24:f3:58:46:e5:5c:f5:a4:9f:27:d6:d7:
8d:8e:46:9b:18:ae:b3:1a:73:7b:e2:0c:94:e5:85:
ef:27:fe:f8:5a:ee:8d:d3:d9:13:33:b6:4b:9a:8f:
a1:83:a1:2e:7b:ed:d9:64:7e:51:0f:f6:8d:fa:b5:
f3:b3:8a:7d:d0:d5:ab:e2:f3:84:e7:f4:6e:47:9c:
d7:0f:a2:af:90:43:93:b8:51:4a:43:fa:c8:cf:84:
f6:98:78:4d:e0:1d:54:39:ff:9d:95:35:6f:1d:e7:
e6:ee:6c:1c:33:09:3e:45:69:68:b0:34:b0:b0:ae:
7d:c2:10:2c:e5:97:85:63:fd:06:2c:27:8f:c2:e6:
b2:3d:24:d7:70:38:6e:e4:a5:b2:0f:62:49:06:a2:
22:e7:6b:78:80:76:fa:c2:56:23:bc:df:89:56:73:
04:92:ee:23:38:87:60:a0:bc:e1:16:41:52:1f:a9:
c3:e2:d5:e8:b5:a9:82:eb:b2:af:bc:ea:51:17:43:
6b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:F3:1A:5F:C2:9D:3F:BA:72:F7:9A:9A:6F:AF:05:F1:58:ED:EB:A5
X509v3 Authority Key Identifier:
keyid:E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/073CA1A8011211EAA8221E4AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.239.100.0/23
103.248.132.0/22
IPv6:
2406:f900::/32
Signature Algorithm: sha256WithRSAEncryption
42:58:64:7d:83:6b:3d:0c:54:95:38:3d:dc:a0:81:f2:6a:4a:
4f:88:dd:b7:c2:99:bf:98:a9:05:a5:f2:f7:ec:71:c3:ad:2f:
20:c6:ad:5d:86:2e:e7:8a:2c:35:da:06:e6:c5:97:af:3e:04:
ef:27:7f:c5:c8:31:65:e0:17:54:cd:e7:63:cc:db:12:6d:b6:
48:12:3e:7b:3c:78:ae:ff:d9:57:3f:8a:f4:b8:02:46:13:4c:
6f:f8:ec:96:a5:8d:d8:d6:aa:94:80:5f:1a:b1:03:1a:62:69:
98:85:d4:59:df:1a:30:c1:e7:1b:6e:7e:89:fc:bb:c1:35:05:
af:74:e8:2d:bc:61:20:97:5a:7f:7c:8a:b1:97:b9:5e:09:7e:
d3:bd:23:9f:a6:c6:f6:e0:e4:cc:b8:5d:b5:38:ea:46:f9:cc:
c9:bd:01:fb:8a:13:98:1f:1e:43:77:29:82:a7:b2:11:6a:2b:
05:3d:b9:ed:27:4e:e9:93:35:c6:3c:bf:50:0a:2d:c0:1f:d6:
c0:d7:15:3f:aa:0e:63:c3:d6:8a:3e:4f:c6:04:2e:79:71:66:
76:91:f7:8b:aa:de:79:a6:28:0e:c5:b8:ad:78:35:7b:a9:de:
16:e0:63:10:64:8e:2c:57:c6:fc:08:26:01:28:37:a4:ba:d3:
2c:ec:c0:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:39 2024 by rpki-client on console-fra.rpki-client.org