Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/26216B522D3811EEA99CA310C4F9AE02.roa
File: 26216B522D3811EEA99CA310C4F9AE02.roa (raw, json)
Hash identifier: 5R1uLpmHRo7/6mHvjxA3MlDH1IRT2d0Jvyw/D/36LSo=
Subject key identifier: C4:2F:27:C2:C2:E7:D8:E6:89:FB:E8:79:4E:4B:22:F9:F8:9D:3D:51
Certificate issuer: /CN=A91BB4C2/serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04
Certificate serial: 2A
Authority key identifier: DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/26216B522D3811EEA99CA310C4F9AE02.roa
Signing time: Fri 28 Jul 2023 11:16:08 +0000
ROA not before: Fri 28 Jul 2023 11:16:08 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 151391
IP address blocks: 103.213.37.0/24 maxlen: 24
2401:5e0::/32 maxlen: 32
2401:5e0::/36 maxlen: 36
2401:5e0:1000::/36 maxlen: 36
2401:5e0:1000::/48 maxlen: 48
2401:5e0:1001::/48 maxlen: 48
2401:5e0:1002::/48 maxlen: 48
2401:5e0:1003::/48 maxlen: 48
2401:5e0:1004::/48 maxlen: 48
2401:5e0:2000::/36 maxlen: 36
2401:5e0:3000::/36 maxlen: 36
2401:5e0:4000::/36 maxlen: 36
2401:5e0:5000::/36 maxlen: 36
2401:5e0:6000::/36 maxlen: 36
2401:5e0:7000::/36 maxlen: 36
2401:5e0:8000::/36 maxlen: 36
2401:5e0:9000::/36 maxlen: 36
2401:5e0:a000::/36 maxlen: 36
2401:5e0:b000::/36 maxlen: 36
2401:5e0:c000::/36 maxlen: 36
2401:5e0:d000::/36 maxlen: 36
2401:5e0:e000::/36 maxlen: 36
2401:5e0:f000::/36 maxlen: 36
Validation: Failed, certificate revoked on Fri 28 Jul 2023 11:27:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42 (0x2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BB4C2/serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04
Validity
Not Before: Jul 28 11:16:08 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=64c3a377-6e9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:58:d0:e7:b0:37:cb:39:c8:e0:db:c7:19:bf:
0f:89:c7:69:c9:b9:45:03:cc:cd:73:78:99:60:5d:
38:74:c2:99:d2:f7:f3:92:24:99:99:1b:51:a3:31:
b3:11:7a:aa:2a:80:65:bd:7f:dd:20:7e:f9:95:6b:
ba:03:07:93:79:16:bd:54:33:70:0f:0c:15:37:26:
3b:24:58:35:60:ce:df:f6:76:75:f1:72:0c:b0:4f:
3e:a9:5c:28:86:96:2f:c4:89:78:66:76:fa:74:4b:
b1:92:c3:6f:c4:cc:11:72:2d:e1:0c:25:c4:6a:09:
9a:67:ea:00:3b:1e:a8:8e:e6:15:16:15:85:8d:31:
89:4e:45:a4:56:61:52:b8:88:94:78:9c:4d:a5:9f:
f7:7e:df:9c:74:8b:29:ce:c8:68:f9:68:bb:57:2b:
41:15:60:f5:03:c1:c2:dd:a6:64:ce:2b:bb:79:74:
b0:65:50:9a:41:9d:0e:be:a6:82:c9:3e:86:8d:b3:
2a:7f:ec:20:92:0a:6f:60:a0:be:cd:23:c4:6b:f2:
e5:15:a3:5c:52:d1:66:45:46:22:d5:90:36:54:bc:
2a:7e:a2:f8:03:e9:c0:39:b1:e0:1b:b8:d6:3c:5f:
05:ca:42:ec:e5:66:3e:c6:49:0b:0e:81:24:5f:ea:
a2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:2F:27:C2:C2:E7:D8:E6:89:FB:E8:79:4E:4B:22:F9:F8:9D:3D:51
X509v3 Authority Key Identifier:
keyid:DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/26216B522D3811EEA99CA310C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.213.37.0/24
IPv6:
2401:5e0::/32
Signature Algorithm: sha256WithRSAEncryption
91:9a:d3:dc:06:ee:47:79:d4:92:aa:2e:a7:f8:fe:f6:c9:39:
f6:b3:d6:b9:16:ac:77:4b:35:aa:46:c9:fe:81:01:88:10:01:
6c:d6:6b:0c:69:81:49:9d:f9:c6:7f:eb:5f:a2:8e:59:ea:e1:
d9:c7:a6:51:bb:1d:f6:19:8d:06:c3:d9:ca:69:c4:cb:c9:19:
d1:07:90:7b:d9:61:f2:9b:5a:d1:b2:35:a7:e4:f6:31:63:89:
2b:67:2c:96:60:bc:54:81:03:45:09:72:36:c7:ee:9f:9e:be:
c7:a4:40:b1:d8:88:38:65:2f:ab:a7:0a:43:c5:cd:7f:c6:bb:
bf:b7:1c:1e:95:7d:2b:a2:3c:73:ec:f2:9e:d4:5e:d4:1d:6b:
c7:e7:4b:ef:12:ae:b5:a6:0b:7d:16:3d:01:b9:af:9d:53:b6:
50:eb:83:04:38:9d:75:ad:14:5d:b4:f2:6e:d6:00:dc:11:0b:
bf:b8:14:00:9f:d7:92:91:2d:e6:87:02:46:0a:ef:49:e2:8d:
10:24:07:e7:fc:30:28:83:b2:03:31:f5:ad:a2:1f:1e:3e:8c:
3f:79:19:22:ab:0c:22:d8:52:07:e2:4f:27:46:23:15:fb:55:
cb:83:d0:31:43:aa:69:d9:43:ca:1e:6c:ec:28:98:f4:98:f0:
02:a6:2d:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:23 2024 by rpki-client on console-ams.rpki-client.org