Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC2A9/D8DDC1A634C611EEB4EBB070C4F9AE02/3696524A34C711EEADFD9071C4F9AE02.roa
File: 3696524A34C711EEADFD9071C4F9AE02.roa (raw, json)
Hash identifier: sVkSjq/o+TsiNJnU3TE8t7EEtenNjp/VbL0ZT7JijJ0=
Subject key identifier: DE:73:68:1B:4E:1F:15:B4:B5:81:57:AC:BA:F5:78:A3:10:AD:D0:25
Certificate issuer: /CN=A91DC2A9/serialNumber=3F996261AB3D1EF041661B3AEF7D8932B5702637
Certificate serial: 76
Authority key identifier: 3F:99:62:61:AB:3D:1E:F0:41:66:1B:3A:EF:7D:89:32:B5:70:26:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P5liYas9HvBBZhs6732JMrVwJjc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DC2A9/D8DDC1A634C611EEB4EBB070C4F9AE02/3696524A34C711EEADFD9071C4F9AE02.roa
Signing time: Thu 07 Mar 2024 06:49:35 +0000
ROA not before: Thu 07 Mar 2024 06:49:35 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 7477
IP address blocks: 103.206.236.0/22 maxlen: 24
114.129.128.0/19 maxlen: 24
114.129.160.0/20 maxlen: 24
114.129.176.0/21 maxlen: 24
180.181.128.0/19 maxlen: 24
180.181.160.0/19 maxlen: 24
210.16.68.0/22 maxlen: 24
2401:a400::/32 maxlen: 32
2401:a400:100::/40 maxlen: 40
2401:a400:200::/40 maxlen: 40
2401:a400:300::/40 maxlen: 40
2401:a400:400::/40 maxlen: 40
2401:a400:500::/40 maxlen: 40
2401:a400:2000::/36 maxlen: 36
2401:a400:3000::/36 maxlen: 36
2401:a400:4000::/36 maxlen: 36
2401:a400:5000::/36 maxlen: 36
2401:a400:6000::/36 maxlen: 36
2401:a400:7000::/36 maxlen: 36
2401:a400:c200::/40 maxlen: 40
2401:a400:c300::/40 maxlen: 40
2401:a400:c400::/40 maxlen: 40
2401:a400:c500::/40 maxlen: 40
2401:a400:c600::/40 maxlen: 40
Validation: Failed, certificate revoked on Wed 13 Mar 2024 00:15:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118 (0x76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DC2A9/serialNumber=3F996261AB3D1EF041661B3AEF7D8932B5702637
Validity
Not Before: Mar 7 06:49:35 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=65e9637f-811e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fd:af:2d:7e:fa:23:25:78:5f:7a:6b:83:13:
77:25:39:13:82:bb:1c:1b:04:4b:dd:17:40:fa:22:
ae:00:09:0c:13:cd:50:c7:b4:66:5a:c6:d2:50:8f:
05:21:38:e4:2d:19:a5:3b:89:05:f9:4e:8b:47:b0:
0f:66:27:84:0e:78:cf:5d:48:b2:1b:85:74:b0:b7:
f7:91:3d:49:ef:a6:83:61:b7:eb:8c:bc:95:20:89:
4f:11:5d:2f:cf:fb:99:27:05:70:1c:55:fb:3b:16:
19:00:b5:eb:c3:ed:bf:bb:d6:25:08:17:81:2a:a1:
1d:98:30:09:17:b8:65:78:67:ed:27:12:0d:b9:6d:
f1:a3:44:87:48:25:f1:e6:ed:82:ed:44:cc:e8:33:
38:9d:46:aa:23:84:9b:bf:b0:9c:a5:24:f5:97:7a:
a1:15:55:dd:81:79:bc:6d:9e:a8:eb:97:1e:0b:da:
b0:3d:dc:a2:01:6b:ca:c3:02:d3:8c:c4:da:ae:40:
50:49:6d:ca:1a:99:5e:43:a5:23:d0:27:b9:b4:fe:
9a:df:2d:19:e8:76:ec:f4:f5:e3:33:48:19:39:c6:
e5:0d:32:4c:9b:4d:8c:52:c9:6e:99:2a:c3:c8:2e:
8a:36:48:f9:81:f6:ca:68:39:bf:44:2b:9a:a1:55:
9c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:73:68:1B:4E:1F:15:B4:B5:81:57:AC:BA:F5:78:A3:10:AD:D0:25
X509v3 Authority Key Identifier:
keyid:3F:99:62:61:AB:3D:1E:F0:41:66:1B:3A:EF:7D:89:32:B5:70:26:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DC2A9/D8DDC1A634C611EEB4EBB070C4F9AE02/P5liYas9HvBBZhs6732JMrVwJjc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P5liYas9HvBBZhs6732JMrVwJjc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC2A9/D8DDC1A634C611EEB4EBB070C4F9AE02/3696524A34C711EEADFD9071C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.206.236.0/22
114.129.128.0-114.129.183.255
180.181.128.0/18
210.16.68.0/22
IPv6:
2401:a400::/32
Signature Algorithm: sha256WithRSAEncryption
39:64:8d:64:75:97:fd:f8:26:19:8d:f0:af:a2:b8:f5:eb:00:
25:ff:ee:34:47:f3:a8:6d:1c:5f:9e:21:c9:d1:df:b3:8d:e7:
46:9e:44:a6:3d:c5:d4:02:05:b5:85:a2:0e:9c:2f:0a:1e:9e:
e5:82:2d:b5:00:05:de:e8:ea:b8:f7:2e:fb:65:2c:fe:2a:8a:
bd:8d:53:b1:a8:b6:b5:c5:80:c8:01:7d:87:58:c3:f5:2e:0b:
f0:b5:30:94:73:e2:73:0b:dd:a8:d2:71:12:e0:80:ff:51:17:
1e:7b:b4:d9:de:02:e0:7a:e3:06:b0:f0:29:a1:9f:37:96:a0:
83:7f:1b:ce:01:dd:cc:e3:ca:78:32:0f:98:ae:6a:e9:ae:78:
fc:35:8a:ba:77:a8:a8:9a:cb:9b:e5:82:11:77:cb:a2:0d:3d:
4b:64:c2:ff:3d:ac:98:98:8c:e6:2d:ea:62:42:04:98:58:e2:
31:d7:32:d8:f7:70:4e:8d:70:96:ed:60:6a:f3:c6:0c:19:3f:
4f:f5:db:73:aa:26:65:06:2a:79:eb:58:05:80:dc:1f:b8:5b:
04:ce:2f:f2:91:15:ab:58:7c:00:82:a7:f4:33:b4:36:d2:0a:
1e:1d:6d:97:f3:2b:0b:ec:44:cf:7b:b9:d5:11:f0:f4:e9:d4:
56:aa:57:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 13 01:25:45 2024 by rpki-client on console-fra.rpki-client.org