Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F731E/F5967E6C5EF111E6A7D1AF26C4F9AE02/5CBAB2B6157511EE877A081BC4F9AE02.roa
File: 5CBAB2B6157511EE877A081BC4F9AE02.roa (raw, json)
Hash identifier: JKHRmAmzeLUf5zfA1ZFwUbveS0Zh6351/Q9jm0FE9Mg=
Subject key identifier: 2F:7B:F6:A4:77:69:3E:16:76:22:B2:FC:74:DD:22:08:5E:52:41:24
Certificate issuer: /CN=A91F731E/serialNumber=2585243D6805F2EA8BC3F63B82364BA991F330B9
Certificate serial: 1DD9
Authority key identifier: 25:85:24:3D:68:05:F2:EA:8B:C3:F6:3B:82:36:4B:A9:91:F3:30:B9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYUkPWgF8uqLw_Y7gjZLqZHzMLk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F731E/F5967E6C5EF111E6A7D1AF26C4F9AE02/5CBAB2B6157511EE877A081BC4F9AE02.roa
Signing time: Wed 28 Jun 2023 05:33:51 +0000
ROA not before: Wed 28 Jun 2023 05:33:51 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 17501
IP address blocks: 27.34.0.0/17 maxlen: 24
103.211.148.0/23 maxlen: 24
103.254.184.0/22 maxlen: 22
103.254.184.0/24 maxlen: 24
103.254.185.0/24 maxlen: 24
103.254.186.0/24 maxlen: 24
103.254.187.0/24 maxlen: 24
124.41.192.0/18 maxlen: 20
124.41.192.0/19 maxlen: 24
124.41.224.0/20 maxlen: 24
124.41.240.0/22 maxlen: 24
124.41.248.0/21 maxlen: 21
124.41.248.0/22 maxlen: 22
124.41.248.0/23 maxlen: 24
124.41.250.0/24 maxlen: 24
124.41.251.0/24 maxlen: 24
124.41.252.0/24 maxlen: 24
124.41.253.0/24 maxlen: 24
124.41.254.0/24 maxlen: 24
124.41.255.0/24 maxlen: 24
139.5.68.0/22 maxlen: 24
139.5.72.0/22 maxlen: 22
139.5.72.0/24 maxlen: 24
139.5.73.0/24 maxlen: 24
139.5.74.0/24 maxlen: 24
139.5.75.0/24 maxlen: 24
202.79.32.0/19 maxlen: 24
202.166.192.0/19 maxlen: 24
2400:1a00::/32 maxlen: 32
2400:1a00::/48 maxlen: 48
2400:1a00:4::/48 maxlen: 48
2400:1a00:8000::/48 maxlen: 48
2400:1a00:8002::/48 maxlen: 48
2400:1a00:8004::/48 maxlen: 48
2400:1a00:8010::/48 maxlen: 48
2400:1a00:b010::/48 maxlen: 48
2400:1a00:b011::/48 maxlen: 48
2400:1a00:b012::/48 maxlen: 48
2400:1a00:b013::/48 maxlen: 48
2400:1a00:b020::/48 maxlen: 48
2400:1a00:b021::/48 maxlen: 48
2400:1a00:b022::/48 maxlen: 48
2400:1a00:b030::/48 maxlen: 48
2400:1a00:b031::/48 maxlen: 48
2400:1a00:b032::/48 maxlen: 48
2400:1a00:b040::/48 maxlen: 48
2400:1a00:b041::/48 maxlen: 48
2400:1a00:b050::/48 maxlen: 48
2400:1a00:b051::/48 maxlen: 48
2400:1a00:b060::/48 maxlen: 48
2400:1a00:b061::/48 maxlen: 48
2400:1a00:b111::/48 maxlen: 48
2400:1a00:b112::/48 maxlen: 48
2400:1a00:b1a6::/48 maxlen: 48
2400:1a00:b1af::/48 maxlen: 48
2400:1a00:b1ba::/48 maxlen: 48
2400:1a00:b1c0::/48 maxlen: 48
2400:1a00:b1c1::/48 maxlen: 48
2400:1a00:b1e0::/48 maxlen: 48
2400:1a00:b1e1::/48 maxlen: 48
2400:1a00:ba10::/48 maxlen: 48
2400:1a00:baa0::/48 maxlen: 48
2400:1a00:baa1::/48 maxlen: 48
2400:1a00:bb10::/48 maxlen: 48
2400:1a00:bb20::/48 maxlen: 48
2400:1a00:bb21::/48 maxlen: 48
2400:1a00:bc10::/48 maxlen: 48
2400:1a00:bc11::/48 maxlen: 48
2400:1a00:bd11::/48 maxlen: 48
2400:1a00:bd12::/48 maxlen: 48
2400:1a00:bd20::/48 maxlen: 48
2400:1a00:bd21::/48 maxlen: 48
2400:1a00:bda0::/48 maxlen: 48
2400:1a00:bde0::/48 maxlen: 48
2400:1a00:bde1::/48 maxlen: 48
2400:1a00:efff::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7641 (0x1dd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F731E/serialNumber=2585243D6805F2EA8BC3F63B82364BA991F330B9
Validity
Not Before: Jun 28 05:33:51 2023 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=649bc63e-4e70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bd:7b:fa:1e:31:26:92:83:e7:53:d1:8d:d5:
c3:60:e7:60:cf:71:c3:e6:f9:41:af:fa:61:32:b0:
17:6b:2b:b4:4c:fa:2b:33:10:31:72:87:14:84:90:
b3:17:6b:7d:06:76:e8:95:fb:82:64:be:84:fb:2c:
8a:f2:df:f5:d4:ba:af:a1:7e:86:b9:f7:da:40:9a:
01:44:ef:ee:32:44:36:47:80:17:a2:b1:69:89:32:
e1:b5:33:08:f6:b8:c2:0c:2d:ae:5a:8d:6f:c9:a3:
95:ce:77:25:62:a0:fe:2f:dd:80:05:81:be:99:69:
b4:f1:e5:22:35:e7:6f:a1:e5:5e:18:38:31:49:cc:
26:f8:55:6b:13:72:e3:d9:0b:9c:dc:9e:40:16:83:
32:79:ce:dc:2b:cb:c5:a9:01:19:ae:5a:77:38:38:
99:70:f2:01:38:51:17:4c:14:27:8c:d9:48:6e:b9:
60:ee:39:cf:a3:08:a8:af:8d:d0:b6:a9:15:fc:dd:
1d:8f:02:83:6d:77:d5:01:c1:ce:9d:79:c1:dd:57:
65:9e:e3:ca:d9:d6:08:e6:f5:ff:6c:0e:04:af:d1:
e3:ad:40:56:db:45:be:70:b8:44:60:88:7b:cd:7f:
22:2c:a4:b2:2e:49:08:ba:30:4e:74:8a:46:dd:4a:
54:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:7B:F6:A4:77:69:3E:16:76:22:B2:FC:74:DD:22:08:5E:52:41:24
X509v3 Authority Key Identifier:
keyid:25:85:24:3D:68:05:F2:EA:8B:C3:F6:3B:82:36:4B:A9:91:F3:30:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F731E/F5967E6C5EF111E6A7D1AF26C4F9AE02/JYUkPWgF8uqLw_Y7gjZLqZHzMLk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYUkPWgF8uqLw_Y7gjZLqZHzMLk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F731E/F5967E6C5EF111E6A7D1AF26C4F9AE02/5CBAB2B6157511EE877A081BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.34.0.0/17
103.211.148.0/23
103.254.184.0/22
124.41.192.0/18
139.5.68.0-139.5.75.255
202.79.32.0/19
202.166.192.0/19
IPv6:
2400:1a00::/32
Signature Algorithm: sha256WithRSAEncryption
aa:a3:36:55:25:c6:f3:a1:3f:e4:ca:85:db:a3:ea:de:9e:d1:
0c:38:05:61:15:90:9b:98:2d:b8:74:38:5c:3c:09:f5:11:37:
92:25:5c:fd:12:4b:0f:56:fc:c1:1b:16:e5:e8:78:69:96:4d:
70:fc:b0:ce:7c:94:d1:8c:7d:6f:ec:fb:b2:75:bf:32:f0:c6:
a6:37:d5:9f:88:9b:9c:67:25:81:78:be:a7:15:c6:c7:39:f3:
92:66:8f:85:83:b7:6c:95:2f:2a:5a:17:64:11:24:83:b5:96:
71:24:99:fe:0a:15:0b:c4:be:28:97:0a:02:26:29:f3:81:a7:
c7:43:07:a5:74:eb:03:0e:b4:5a:d7:04:07:84:51:ac:e8:fe:
36:d8:89:a5:39:1a:5b:6c:73:b9:06:65:6e:25:06:2d:6e:00:
22:c2:0c:b7:41:d7:f8:bc:a6:56:ab:70:9f:46:89:df:84:09:
22:f0:39:cc:df:86:9b:45:ae:ce:fd:99:e7:64:12:a2:69:6d:
70:af:95:a0:14:fc:8e:c0:e5:d7:8d:e8:24:45:51:6a:4a:b4:
c6:f4:0d:81:f7:9b:eb:10:19:69:79:42:68:94:3d:41:93:c4:
31:ed:8e:91:8c:6f:01:7b:7f:10:5a:90:30:ee:34:58:fa:54:
bc:9b:bb:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:13 2023 by rpki-client on console-ams.rpki-client.org