Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/C73B421C8F9B11EF8C58B361C4F9AE02.roa
File: C73B421C8F9B11EF8C58B361C4F9AE02.roa (raw, json)
Hash identifier: iFS1qkPyUQhgAIGwk6nG6BfJ39DLdVKPgU54SLp2iJM=
Subject key identifier: 9E:B0:D7:67:FC:13:F3:E6:67:3F:F5:7B:F2:1C:FC:2C:EA:8A:1F:6D
Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2
Certificate serial: 0773
Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/C73B421C8F9B11EF8C58B361C4F9AE02.roa
Signing time: Mon 21 Oct 2024 11:07:18 +0000
ROA not before: Mon 21 Oct 2024 11:07:18 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 55705
IP address blocks: 45.124.108.0/23 maxlen: 23
45.124.108.0/24 maxlen: 24
45.124.109.0/24 maxlen: 24
103.10.76.0/24 maxlen: 24
103.10.77.0/24 maxlen: 24
103.18.140.0/24 maxlen: 24
103.18.141.0/24 maxlen: 24
103.18.142.0/24 maxlen: 24
103.18.143.0/24 maxlen: 24
103.36.156.0/24 maxlen: 24
103.36.157.0/24 maxlen: 24
103.36.158.0/24 maxlen: 24
103.36.159.0/24 maxlen: 24
103.225.60.0/24 maxlen: 24
103.225.61.0/24 maxlen: 24
103.225.62.0/24 maxlen: 24
103.225.63.0/24 maxlen: 24
103.238.100.0/24 maxlen: 24
103.238.101.0/24 maxlen: 24
103.238.102.0/24 maxlen: 24
103.238.103.0/24 maxlen: 24
202.41.22.0/24 maxlen: 24
202.41.23.0/24 maxlen: 24
202.41.24.0/24 maxlen: 24
202.41.25.0/24 maxlen: 24
202.41.26.0/24 maxlen: 24
202.41.27.0/24 maxlen: 24
202.41.28.0/24 maxlen: 24
202.41.29.0/24 maxlen: 24
202.41.30.0/24 maxlen: 24
202.41.31.0/24 maxlen: 24
203.55.102.0/24 maxlen: 24
203.55.103.0/24 maxlen: 24
223.165.24.0/24 maxlen: 24
223.165.25.0/24 maxlen: 24
223.165.26.0/24 maxlen: 24
223.165.27.0/24 maxlen: 24
223.165.28.0/24 maxlen: 24
223.165.29.0/24 maxlen: 24
223.165.30.0/24 maxlen: 24
223.165.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 06:47:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1907 (0x773)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2
Validity
Not Before: Oct 21 11:07:18 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=671635e6-94d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a6:37:8c:03:34:00:f4:59:5d:4d:ea:91:52:
55:a7:c4:0c:0f:40:00:52:01:a2:50:87:f4:2b:61:
0f:1c:92:d0:42:1a:c0:dd:c9:43:7a:a3:88:1c:f9:
48:c5:c6:46:f7:1f:0c:68:ef:47:c7:1f:83:20:34:
31:51:b9:bd:37:75:f0:75:9a:2b:f7:63:ba:2e:1f:
ef:3c:eb:03:f5:0c:54:92:07:ad:56:02:ae:4c:ea:
f4:cd:2d:a1:1a:59:66:9d:4f:d3:36:c9:f0:d1:3b:
c7:a6:fe:f3:7a:ab:02:15:03:23:34:4f:08:00:35:
cc:38:6c:2d:a1:b3:81:bb:b9:2f:1c:8f:b3:86:39:
14:43:c2:42:3f:fc:f7:a9:45:77:a7:4e:ce:51:4b:
0c:f0:5c:85:7e:59:0d:98:0f:27:fb:50:b6:fb:67:
17:b6:b1:12:47:2e:0f:b6:6d:9d:b5:f7:ca:66:cf:
1e:71:89:8e:dc:29:a5:ec:bd:e0:95:f9:62:cc:f7:
7a:c9:99:2c:b7:1c:c4:91:fd:44:d8:6b:12:2d:e3:
81:82:2b:d0:d7:9b:1e:91:05:34:b5:9a:c4:cd:a4:
fd:97:8e:25:7e:34:97:32:be:d5:76:50:ab:1f:f9:
a5:28:57:3d:88:a3:34:2b:14:8a:7b:06:7f:34:1b:
55:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:B0:D7:67:FC:13:F3:E6:67:3F:F5:7B:F2:1C:FC:2C:EA:8A:1F:6D
X509v3 Authority Key Identifier:
keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/C73B421C8F9B11EF8C58B361C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.124.108.0/23
103.10.76.0/23
103.18.140.0/22
103.36.156.0/22
103.225.60.0/22
103.238.100.0/22
202.41.22.0-202.41.31.255
203.55.102.0/23
223.165.24.0/21
Signature Algorithm: sha256WithRSAEncryption
10:71:ae:73:52:1c:b6:6e:f6:fa:e7:ae:6e:27:ce:64:cd:26:
2a:b4:99:45:1b:2b:b7:82:91:63:b1:2c:ac:e0:95:e6:5b:54:
c0:33:40:ee:3d:9f:77:15:a3:98:53:df:e2:fe:87:2d:13:77:
2a:8f:17:51:b8:27:51:e6:72:f2:52:55:af:68:1c:b7:ae:d2:
5c:ca:06:ea:d1:6e:c8:a6:7c:51:a2:e9:c5:9a:f2:83:88:69:
3b:b8:73:06:e6:7f:0f:d7:15:7b:cf:6c:c8:6b:e2:7b:9c:60:
fc:8e:17:90:32:22:95:4d:46:00:52:87:4e:54:e8:54:42:96:
34:c5:09:54:c4:ef:a8:b4:1d:a1:a4:ad:4f:f2:b1:3d:20:57:
9b:e8:88:7e:8a:d2:df:51:0f:0b:f4:24:b2:44:c8:49:0b:87:
07:6d:c1:b5:0c:8e:17:13:ba:d4:7e:43:92:cd:33:6b:50:f9:
61:4e:17:7f:eb:dc:a4:f0:b4:19:77:3e:fd:b3:52:6f:11:3e:
f9:42:78:8e:a4:37:43:8e:6d:85:72:2e:40:7a:70:95:e0:8f:
59:74:fe:12:a3:82:7f:0c:f8:c2:58:89:70:55:4b:e8:4d:c5:
00:35:76:59:0f:af:e9:2e:0c:37:a9:94:47:43:2d:ce:e9:fb:
b8:b8:96:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 08:44:36 2024 by rpki-client on console-ams.rpki-client.org