Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDA0E/BF94AB6C0AD711E7AD6FE621C4F9AE02/500D3810C09C11EC81156D28C4F9AE02.roa
File: 500D3810C09C11EC81156D28C4F9AE02.roa (raw, json)
Hash identifier: 5cZ2Hz7Q1j+0sKbU+XxsXhmc7OPDAejO1iC3L4d6wzM=
Subject key identifier: E0:44:82:0C:E2:8A:3E:A9:CD:E4:7A:35:3E:2C:AA:C3:16:9A:A6:11
Certificate issuer: /CN=A91BDA0E/serialNumber=18B879EB8186F34920686ACE8BDB8F3C143C8501
Certificate serial: 19D2
Authority key identifier: 18:B8:79:EB:81:86:F3:49:20:68:6A:CE:8B:DB:8F:3C:14:3C:85:01
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLh564GG80kgaGrOi9uPPBQ8hQE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BDA0E/BF94AB6C0AD711E7AD6FE621C4F9AE02/500D3810C09C11EC81156D28C4F9AE02.roa
Signing time: Fri 02 Dec 2022 17:23:25 +0000
ROA not before: Fri 02 Dec 2022 17:23:25 +0000
ROA not after: Wed 31 Jan 2024 00:00:00 +0000
asID: 64098
IP address blocks: 59.153.8.0/22 maxlen: 22
59.153.8.0/24 maxlen: 25
59.153.9.0/24 maxlen: 24
59.153.10.0/24 maxlen: 24
59.153.11.0/24 maxlen: 24
103.197.232.0/22 maxlen: 22
103.197.232.0/24 maxlen: 24
103.197.233.0/24 maxlen: 24
103.197.234.0/24 maxlen: 24
103.197.235.0/24 maxlen: 24
103.197.235.128/25 maxlen: 25
2403:780::/32 maxlen: 32
2403:780::/35 maxlen: 35
2403:780:f::/48 maxlen: 48
2403:780:2000::/35 maxlen: 35
2403:780:4000::/35 maxlen: 35
2403:780:6000::/35 maxlen: 35
2403:780:8000::/35 maxlen: 35
2403:780:a000::/35 maxlen: 35
2403:780:c000::/35 maxlen: 35
2403:780:e000::/35 maxlen: 35
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6610 (0x19d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDA0E/serialNumber=18B879EB8186F34920686ACE8BDB8F3C143C8501
Validity
Not Before: Dec 2 17:23:25 2022 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=638a348d-f7ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5e:19:bf:34:0f:00:d6:aa:9f:25:12:5b:58:
32:99:00:ec:42:8c:7a:59:91:8f:db:31:89:24:7d:
02:82:80:d5:0a:63:3f:a2:57:9a:9e:60:3c:de:82:
8b:37:95:49:9e:39:f8:17:3a:56:7c:6b:b4:07:39:
97:40:b2:07:b5:fa:42:3e:10:36:2d:9d:6a:31:44:
bd:89:b5:08:a3:62:9b:8d:d7:08:6d:00:7b:59:8e:
1c:ec:7d:93:5a:bc:6a:07:dd:bc:6f:f6:6d:ad:c2:
e0:cc:a6:89:50:22:73:9d:4b:4b:f6:2c:ad:5e:85:
4f:ca:bb:d7:46:42:e5:88:59:4d:ed:4d:21:ff:3e:
4a:a9:64:b0:e2:0f:e5:8b:a1:94:6c:e0:28:94:1a:
7c:e9:33:6c:39:ec:93:26:1e:e0:5c:bc:21:83:f4:
99:88:ad:92:59:c1:48:22:fc:26:79:6b:9c:3d:3a:
ce:cc:8d:db:65:b5:4c:09:a3:1f:39:35:12:ad:55:
3f:2d:49:93:dc:1a:7a:35:5a:08:50:8c:87:97:ff:
fa:32:09:62:a0:83:10:05:e3:a3:85:92:50:ca:d0:
b1:29:9c:ca:7a:30:d8:c8:1e:b6:12:d4:cc:21:2d:
36:f0:fa:1a:c7:39:bc:66:91:9d:09:e3:56:a4:79:
fe:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:44:82:0C:E2:8A:3E:A9:CD:E4:7A:35:3E:2C:AA:C3:16:9A:A6:11
X509v3 Authority Key Identifier:
keyid:18:B8:79:EB:81:86:F3:49:20:68:6A:CE:8B:DB:8F:3C:14:3C:85:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BDA0E/BF94AB6C0AD711E7AD6FE621C4F9AE02/GLh564GG80kgaGrOi9uPPBQ8hQE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLh564GG80kgaGrOi9uPPBQ8hQE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDA0E/BF94AB6C0AD711E7AD6FE621C4F9AE02/500D3810C09C11EC81156D28C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.153.8.0/22
103.197.232.0/22
IPv6:
2403:780::/32
Signature Algorithm: sha256WithRSAEncryption
22:dc:cc:66:ff:9c:3e:2f:1b:35:a6:a0:f0:80:0c:aa:a0:1c:
10:99:ac:da:78:24:b2:48:dd:db:88:94:a9:0b:b1:06:5b:30:
49:8a:06:db:af:16:ab:f9:09:2f:c9:e2:2e:64:1c:63:a5:72:
2d:d6:1e:d1:4a:1a:86:b3:36:cc:bb:0b:36:17:68:88:c9:4c:
1b:be:b5:13:47:0f:fa:d8:ff:d9:06:09:77:63:85:3c:0a:dd:
78:63:b6:5d:79:f6:8f:8e:cc:20:36:45:6c:97:21:e7:0f:60:
a5:04:db:38:01:85:cd:f9:1b:67:ae:ae:ac:08:a4:2a:af:92:
fe:87:b9:eb:12:c1:d6:16:ae:7a:a3:f2:30:98:57:89:97:5c:
58:90:e1:1a:24:68:03:6c:4d:6e:c6:82:d8:92:5e:14:86:a6:
d9:5f:cb:cf:c0:68:aa:b6:24:ac:56:c1:e8:fa:c6:6a:7b:a2:
62:ae:ed:ef:5a:ff:65:59:fe:61:36:fd:5d:74:e3:a6:0f:72:
fc:b8:28:84:18:d8:38:b8:7b:57:e0:08:99:c1:24:34:16:9f:
a2:76:3a:6b:c4:44:fb:d0:46:e5:71:15:29:bc:67:f5:4d:98:
73:35:f6:ea:08:10:06:cf:08:8d:43:99:67:5e:1f:cf:ba:b1:
6b:ca:cc:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:06 2023 by rpki-client on console-fra.rpki-client.org