Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C62B6/B9987AA4FE4011EE8FE74569C4F9AE02/4843DE40FE6111EEA86AF015C4F9AE02.roa
File: 4843DE40FE6111EEA86AF015C4F9AE02.roa (raw, json)
Hash identifier: FKerecPXFapIdRX1e7UOnt8RpdHkISYUhKqmACaccB4=
Subject key identifier: 21:7F:E1:9C:44:E8:40:C6:1D:BE:E3:DC:E5:50:4E:1E:40:92:BA:DB
Certificate issuer: /CN=A91C62B6/serialNumber=C14A0E6082F0E922CAFE22969523E864C7A8F1DC
Certificate serial: 12
Authority key identifier: C1:4A:0E:60:82:F0:E9:22:CA:FE:22:96:95:23:E8:64:C7:A8:F1:DC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUoOYILw6SLK_iKWlSPoZMeo8dw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C62B6/B9987AA4FE4011EE8FE74569C4F9AE02/4843DE40FE6111EEA86AF015C4F9AE02.roa
Signing time: Fri 19 Apr 2024 15:44:21 +0000
ROA not before: Fri 19 Apr 2024 15:44:21 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138658
IP address blocks: 103.14.150.0/23 maxlen: 23
103.14.150.0/24 maxlen: 24
103.14.151.0/24 maxlen: 24
2401:9460::/32 maxlen: 32
2401:9460::/36 maxlen: 36
2401:9460:1000::/36 maxlen: 36
2401:9460:2000::/36 maxlen: 36
2401:9460:3000::/36 maxlen: 36
2401:9460:4000::/36 maxlen: 36
2401:9460:5000::/36 maxlen: 36
2401:9460:6000::/36 maxlen: 36
2401:9460:7000::/36 maxlen: 36
2401:9460:8000::/36 maxlen: 36
2401:9460:9000::/36 maxlen: 36
2401:9460:a000::/36 maxlen: 36
2401:9460:b000::/36 maxlen: 36
2401:9460:c000::/36 maxlen: 36
2401:9460:d000::/36 maxlen: 36
2401:9460:e000::/36 maxlen: 36
2401:9460:f000::/36 maxlen: 36
Validation: Failed, certificate revoked on Tue 23 Apr 2024 06:32:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18 (0x12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C62B6/serialNumber=C14A0E6082F0E922CAFE22969523E864C7A8F1DC
Validity
Not Before: Apr 19 15:44:21 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66229154-6029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:75:d4:20:7c:89:37:ee:a7:bb:72:80:0a:8b:
83:ee:8f:f9:1e:a8:39:4f:65:a9:b0:7e:4c:25:a9:
d2:76:0d:76:2e:55:44:4b:4a:28:7d:4e:67:c8:3c:
71:f7:f1:2b:b6:9a:72:74:b5:90:b8:f4:76:6d:bb:
a2:83:c9:b4:cf:a2:c6:d1:da:fd:7a:3c:3f:43:57:
6e:44:c9:98:0c:4d:27:98:15:26:cc:14:d5:ec:d8:
4c:3a:0d:1a:d5:d9:d8:8a:2c:3e:00:82:bd:90:4e:
75:2a:91:ff:ca:a5:35:fc:75:97:4f:c6:00:15:38:
4a:30:0a:fe:28:1f:83:b6:7f:e0:aa:15:35:ca:bc:
e4:dd:b3:70:5c:95:f6:e1:e4:84:ba:43:32:2e:85:
f2:ac:c1:c7:f1:d7:ac:06:61:79:55:77:fa:83:31:
c3:58:d6:69:b9:44:b1:b8:6f:b5:f9:d4:cb:7f:87:
78:63:d0:a2:4e:8e:5c:fe:fc:d6:78:a0:fc:99:4e:
67:0e:ce:3c:9e:70:03:67:50:59:85:a5:f2:fd:8f:
7b:06:b2:c8:85:d8:df:af:dc:f9:20:af:2f:68:18:
65:8b:60:84:99:39:69:27:7b:e8:94:95:3c:7e:24:
2d:ad:54:61:4f:5d:c1:dc:06:63:56:47:1c:41:3c:
a1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:7F:E1:9C:44:E8:40:C6:1D:BE:E3:DC:E5:50:4E:1E:40:92:BA:DB
X509v3 Authority Key Identifier:
keyid:C1:4A:0E:60:82:F0:E9:22:CA:FE:22:96:95:23:E8:64:C7:A8:F1:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C62B6/B9987AA4FE4011EE8FE74569C4F9AE02/wUoOYILw6SLK_iKWlSPoZMeo8dw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUoOYILw6SLK_iKWlSPoZMeo8dw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C62B6/B9987AA4FE4011EE8FE74569C4F9AE02/4843DE40FE6111EEA86AF015C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.14.150.0/23
IPv6:
2401:9460::/32
Signature Algorithm: sha256WithRSAEncryption
63:87:e4:67:e4:0d:ed:4a:46:dd:e9:36:bc:2b:4a:83:d5:f4:
d3:88:29:eb:f4:e3:aa:4a:f3:73:aa:99:f0:0f:62:02:bd:b7:
9e:d0:15:3b:5a:e9:06:c1:21:08:85:df:8a:a5:73:88:96:a7:
5a:18:a9:00:9c:f1:1d:75:43:19:0e:31:a4:6a:03:85:04:dc:
01:ce:82:f9:8a:59:0d:77:89:08:1b:e2:6a:cf:8f:19:2d:a8:
36:6b:db:5b:eb:4a:90:9f:6d:74:81:20:a7:02:43:f6:85:ea:
b1:43:a8:c7:da:ab:78:06:03:c7:4a:da:fa:79:fe:9c:45:a5:
8c:88:ba:92:b6:d8:70:f4:48:2a:96:9c:ed:7d:9f:53:c6:25:
94:6e:90:ad:1f:a4:bf:a5:67:b8:db:62:10:be:61:1c:39:7d:
28:d3:65:fc:ab:0a:0c:c9:a2:4b:68:d3:1e:d6:2d:57:31:15:
96:1b:d6:f8:03:00:39:67:48:62:cf:53:7a:85:43:6a:86:7e:
74:8d:15:c1:20:f6:74:66:81:2a:a0:81:f3:59:62:0d:14:4e:
e9:e6:fb:31:06:e3:d9:da:25:c7:0e:fa:61:98:68:99:88:d8:
24:92:23:c9:f1:ae:d6:cb:c1:40:1c:2b:cc:27:cc:47:fe:23:
bb:0c:9b:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:40 2024 by rpki-client on console-fra.rpki-client.org