Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C93EE/6858F6880E0211EAA9B1DB65C4F9AE02/4235AE44DE6A11EB868CD437C4F9AE02.roa
File: 4235AE44DE6A11EB868CD437C4F9AE02.roa (raw, json)
Hash identifier: WAyqO8f5x6cBBlIKPT1y07XPNunZt3fZI7nFoLjVWuY=
Subject key identifier: 79:79:7F:F4:32:E9:C2:A2:A8:98:54:BD:49:4D:E5:F7:6A:87:AD:B6
Certificate issuer: /CN=A91C93EE/serialNumber=FC56E7E076F7FD0A84BECC9C3E229142A0901FEC
Certificate serial: 0C0B
Authority key identifier: FC:56:E7:E0:76:F7:FD:0A:84:BE:CC:9C:3E:22:91:42:A0:90:1F:EC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Fbn4Hb3_QqEvsycPiKRQqCQH-w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C93EE/6858F6880E0211EAA9B1DB65C4F9AE02/4235AE44DE6A11EB868CD437C4F9AE02.roa
Signing time: Sun 17 Nov 2024 14:59:06 +0000
ROA not before: Sun 17 Nov 2024 14:59:06 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 138636
IP address blocks: 103.135.76.0/22 maxlen: 22
103.135.76.0/23 maxlen: 23
103.135.76.0/24 maxlen: 24
103.135.77.0/24 maxlen: 24
103.135.78.0/23 maxlen: 23
103.135.78.0/24 maxlen: 24
103.135.79.0/24 maxlen: 24
2404:76c0::/32 maxlen: 32
2404:76c0::/33 maxlen: 33
2404:76c0::/34 maxlen: 34
2404:76c0::/35 maxlen: 35
2404:76c0::/36 maxlen: 36
2404:76c0::/48 maxlen: 48
2404:76c0:1::/48 maxlen: 48
2404:76c0:2::/48 maxlen: 48
2404:76c0:3::/48 maxlen: 48
2404:76c0:10::/48 maxlen: 48
2404:76c0:1000::/36 maxlen: 36
2404:76c0:2000::/35 maxlen: 35
2404:76c0:2000::/36 maxlen: 36
2404:76c0:3000::/36 maxlen: 36
2404:76c0:4000::/34 maxlen: 34
2404:76c0:4000::/35 maxlen: 35
2404:76c0:4000::/36 maxlen: 36
2404:76c0:5000::/36 maxlen: 36
2404:76c0:6000::/35 maxlen: 35
2404:76c0:6000::/36 maxlen: 36
2404:76c0:7000::/36 maxlen: 36
2404:76c0:8000::/33 maxlen: 33
2404:76c0:8000::/34 maxlen: 34
2404:76c0:8000::/35 maxlen: 35
2404:76c0:8000::/36 maxlen: 36
2404:76c0:9000::/36 maxlen: 36
2404:76c0:a000::/35 maxlen: 35
2404:76c0:a000::/36 maxlen: 36
2404:76c0:b000::/36 maxlen: 36
2404:76c0:c000::/34 maxlen: 34
2404:76c0:c000::/35 maxlen: 35
2404:76c0:c000::/36 maxlen: 36
2404:76c0:d000::/36 maxlen: 36
2404:76c0:e000::/35 maxlen: 35
2404:76c0:e000::/36 maxlen: 36
2404:76c0:f000::/36 maxlen: 36
Validation: Failed, certificate revoked on Sun 17 Nov 2024 15:16:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3083 (0xc0b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C93EE
Validity
Not Before: Nov 17 14:59:06 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=673a04ba-cf44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d6:ed:5f:ff:0e:73:a3:78:fa:60:e0:4b:1e:
9e:2d:de:bd:a9:a2:14:ce:18:7c:ef:ca:4d:1a:3f:
34:d5:ab:c9:47:9d:78:94:64:02:d8:5c:2f:ae:27:
c1:2d:f7:76:a4:e5:ef:15:c8:14:5f:36:e2:6a:33:
ee:bc:ed:53:70:37:85:99:f2:6b:b6:2f:cb:b2:de:
46:73:85:72:4e:2a:97:39:ea:e6:ef:22:0b:31:f3:
fd:6d:bd:2b:8c:e8:68:98:5c:f5:5c:67:05:54:af:
ce:bd:a4:c2:0b:36:43:77:60:b3:9e:42:22:42:0d:
24:28:f6:d9:80:cb:66:6b:11:7c:3e:7d:df:97:64:
4e:7f:b3:9f:54:60:a4:0b:ee:70:9b:16:0f:85:13:
6e:31:08:1a:54:e6:f1:04:7a:51:ab:85:79:09:df:
e5:f9:cb:9b:10:22:a6:d5:45:c4:74:20:4d:e9:75:
05:d2:07:72:e4:25:e8:f7:40:5a:23:09:17:fe:67:
bc:86:3e:60:5f:b2:c7:e5:c4:93:5a:6b:08:84:ae:
54:3a:18:ee:ab:7f:7d:d1:0b:b0:b4:89:14:c3:e1:
88:c4:2e:67:5c:21:a8:7b:38:92:6b:85:9d:fe:42:
2d:df:ca:57:d1:a5:f0:84:d6:73:b7:34:4d:88:0a:
87:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:79:7F:F4:32:E9:C2:A2:A8:98:54:BD:49:4D:E5:F7:6A:87:AD:B6
X509v3 Authority Key Identifier:
keyid:FC:56:E7:E0:76:F7:FD:0A:84:BE:CC:9C:3E:22:91:42:A0:90:1F:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C93EE/6858F6880E0211EAA9B1DB65C4F9AE02/_Fbn4Hb3_QqEvsycPiKRQqCQH-w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Fbn4Hb3_QqEvsycPiKRQqCQH-w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C93EE/6858F6880E0211EAA9B1DB65C4F9AE02/4235AE44DE6A11EB868CD437C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.135.76.0/22
IPv6:
2404:76c0::/32
Signature Algorithm: sha256WithRSAEncryption
41:e7:ee:1b:3e:e0:2b:70:f0:4b:28:45:2e:9b:85:40:04:67:
2a:18:7c:2d:3e:40:0b:80:06:33:5e:63:73:10:dc:38:38:db:
96:be:b2:33:7f:d4:13:b8:0d:14:02:4f:88:82:11:8e:73:bf:
ad:ec:a4:d8:f1:ae:8c:eb:b1:04:b0:61:dc:2e:09:fd:44:e1:
a9:5e:25:fe:3c:98:4f:2a:7d:de:35:34:fb:3b:a7:d3:d1:9f:
fa:94:2c:5c:93:34:36:5d:21:b9:91:3a:48:9f:a3:95:32:92:
b2:45:4a:e9:23:54:02:a7:ee:6b:69:91:6d:87:80:be:30:f7:
3a:09:16:15:90:b5:0a:a5:3f:1d:92:c1:5e:67:34:00:fe:c9:
63:b8:04:c7:d6:15:3f:40:3d:51:07:77:c0:46:a1:af:e2:eb:
62:40:d5:e5:81:98:46:93:37:af:de:2e:3a:3d:b1:85:ea:fb:
84:b9:4f:ae:3b:35:e8:73:77:40:c9:98:f3:f8:6c:5a:67:72:
25:85:e9:bd:bd:21:84:5e:31:3f:c1:7a:9a:5a:05:b6:15:54:
9a:90:57:9e:52:79:44:32:3c:c7:96:3d:cc:53:97:d6:cc:e9:
3f:6a:df:44:2d:8e:a8:d8:08:80:5a:58:e3:80:a2:16:55:d5:
9a:5d:8e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 01:28:44 2025 by rpki-client