Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD4A6/6A5969A87E9511EC82EE520AC4F9AE02/94EA74BC7E9711ECA9132A0BC4F9AE02.roa
File: 94EA74BC7E9711ECA9132A0BC4F9AE02.roa (raw, json)
Hash identifier: KKCF5xdKxWhLU/FXyanXKc4Zb6Qys77wZul6kAXeDnE=
Subject key identifier: 47:FE:5C:55:89:35:D1:C0:1D:02:8A:2E:35:69:15:42:E2:38:AD:43
Certificate issuer: /CN=A91DD4A6/serialNumber=17004AA33105B0A0E6D3EB4E47C513063D92CEC2
Certificate serial: 026C
Authority key identifier: 17:00:4A:A3:31:05:B0:A0:E6:D3:EB:4E:47:C5:13:06:3D:92:CE:C2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FwBKozEFsKDm0-tOR8UTBj2SzsI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DD4A6/6A5969A87E9511EC82EE520AC4F9AE02/94EA74BC7E9711ECA9132A0BC4F9AE02.roa
Signing time: Sat 29 Apr 2023 05:24:28 +0000
ROA not before: Sat 29 Apr 2023 05:24:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56209
IP address blocks: 103.17.80.0/22 maxlen: 22
103.17.80.0/24 maxlen: 24
103.17.81.0/24 maxlen: 24
103.17.82.0/24 maxlen: 24
103.17.83.0/24 maxlen: 24
150.129.172.0/22 maxlen: 22
150.129.172.0/24 maxlen: 24
150.129.173.0/24 maxlen: 24
150.129.174.0/24 maxlen: 24
150.129.175.0/24 maxlen: 24
202.47.112.0/21 maxlen: 21
202.47.112.0/24 maxlen: 24
202.47.113.0/24 maxlen: 24
202.47.114.0/24 maxlen: 24
202.47.115.0/24 maxlen: 24
202.47.116.0/24 maxlen: 24
202.47.117.0/24 maxlen: 24
202.47.118.0/24 maxlen: 24
202.47.119.0/24 maxlen: 24
202.71.0.0/19 maxlen: 19
202.71.0.0/24 maxlen: 24
202.71.1.0/24 maxlen: 24
202.71.2.0/24 maxlen: 24
202.71.3.0/24 maxlen: 24
202.71.4.0/24 maxlen: 24
202.71.5.0/24 maxlen: 24
202.71.6.0/24 maxlen: 24
202.71.7.0/24 maxlen: 24
202.71.8.0/24 maxlen: 24
202.71.9.0/24 maxlen: 24
202.71.10.0/24 maxlen: 24
202.71.11.0/24 maxlen: 24
202.71.12.0/24 maxlen: 24
202.71.13.0/24 maxlen: 24
202.71.14.0/24 maxlen: 24
202.71.15.0/24 maxlen: 24
202.71.16.0/24 maxlen: 24
202.71.17.0/24 maxlen: 24
202.71.18.0/24 maxlen: 24
202.71.19.0/24 maxlen: 24
202.71.20.0/24 maxlen: 24
202.71.21.0/24 maxlen: 24
202.71.22.0/24 maxlen: 24
202.71.23.0/24 maxlen: 24
202.71.24.0/24 maxlen: 24
202.71.25.0/24 maxlen: 24
202.71.26.0/24 maxlen: 24
202.71.27.0/24 maxlen: 24
202.71.28.0/24 maxlen: 24
202.71.29.0/24 maxlen: 24
202.71.30.0/23 maxlen: 24
2406:2100::/48 maxlen: 48
2406:2100:1::/48 maxlen: 48
2406:2100:2::/48 maxlen: 48
2406:2100:3::/48 maxlen: 48
2406:2100:4::/48 maxlen: 48
2406:2100:5::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 26 Mar 2024 09:52:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 620 (0x26c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DD4A6/serialNumber=17004AA33105B0A0E6D3EB4E47C513063D92CEC2
Validity
Not Before: Apr 29 05:24:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=644caa0c-9018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6e:53:e7:fe:d7:c5:2e:e4:8e:c6:48:14:87:
b0:97:5b:d5:c4:9c:d8:df:96:75:e1:f0:40:10:b0:
c5:31:ec:03:44:03:2d:72:b1:35:92:1b:f8:32:22:
fc:0f:3d:06:45:12:3d:5c:4b:ff:73:99:9c:ba:cf:
a0:42:ba:f0:61:68:5a:86:54:09:e0:51:5b:16:05:
2d:00:fb:e8:5b:9f:d9:be:8c:0f:fa:40:a8:bc:35:
d1:3c:49:3d:72:5c:4e:f9:22:ce:4f:29:1f:4e:23:
99:ab:b9:3a:78:a3:ba:60:84:e6:e1:92:b9:24:23:
11:34:3c:23:06:d8:74:b2:f9:0e:4f:3f:0a:33:d7:
aa:ca:53:83:6f:44:62:5c:38:a4:e8:b2:58:f6:a0:
4a:fd:74:a1:b3:ab:0b:da:f6:7c:aa:7b:b7:26:f5:
76:62:82:8b:eb:0f:4e:3f:94:59:34:79:52:85:21:
6f:01:90:3b:a2:8b:36:60:14:90:cb:4a:27:98:f6:
6b:1b:a4:dd:b0:1b:fb:7b:d7:03:a2:67:48:b0:d3:
ee:6c:51:4e:d3:07:3a:a7:17:f9:f4:65:37:a5:47:
39:4c:78:4c:6b:b8:01:88:d4:80:c5:62:ab:c3:3a:
fb:23:22:ff:1e:e3:9a:00:ed:e8:df:a1:05:0e:86:
04:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:FE:5C:55:89:35:D1:C0:1D:02:8A:2E:35:69:15:42:E2:38:AD:43
X509v3 Authority Key Identifier:
keyid:17:00:4A:A3:31:05:B0:A0:E6:D3:EB:4E:47:C5:13:06:3D:92:CE:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DD4A6/6A5969A87E9511EC82EE520AC4F9AE02/FwBKozEFsKDm0-tOR8UTBj2SzsI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FwBKozEFsKDm0-tOR8UTBj2SzsI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD4A6/6A5969A87E9511EC82EE520AC4F9AE02/94EA74BC7E9711ECA9132A0BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.17.80.0/22
150.129.172.0/22
202.47.112.0/21
202.71.0.0/19
IPv6:
2406:2100::-2406:2100:5:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
b0:d6:ce:07:46:f9:20:0a:41:73:af:a2:3b:96:f7:4b:34:59:
6c:a6:16:fa:97:46:20:70:96:9c:b8:84:34:11:d4:c8:b7:dc:
33:04:7f:9a:5a:65:3b:11:8a:18:03:04:9f:5d:b9:9e:93:05:
ed:ff:a3:f0:00:93:93:ec:84:0a:11:3c:fa:03:82:7f:6c:16:
1e:db:f4:a2:a5:25:b2:2b:65:dd:e9:5a:04:6f:ba:0a:7b:f9:
5b:80:7c:7b:41:9e:15:90:cb:6b:99:f4:24:f4:d7:28:30:e1:
6c:6c:bd:e3:00:c8:85:4b:1c:d4:d7:23:05:03:43:32:e5:77:
88:c7:a7:de:0c:52:b7:9e:73:ff:03:d4:1f:97:b2:47:23:e2:
26:94:19:fb:91:4b:38:59:ff:96:03:50:60:83:1f:5d:28:3f:
1a:27:a4:a4:ef:0e:10:86:0a:27:97:ff:8a:79:21:a5:00:e8:
cf:ab:20:55:c2:26:96:3a:38:de:c2:ff:35:a6:fe:38:c5:8f:
f0:fa:57:80:fc:6a:10:e2:d1:36:06:3e:d2:80:51:ba:63:c7:
09:38:67:15:a9:a0:f0:a9:0f:f6:a1:ea:56:1a:12:5c:c5:bd:
c0:ae:5a:5a:81:63:c6:b5:20:fd:78:a4:be:d1:8b:c6:f8:2e:
4c:43:90:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 26 14:51:03 2024 by rpki-client on console-fra.rpki-client.org