Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/4776CA8C290511EDB2A45D4CC4F9AE02.roa
File: 4776CA8C290511EDB2A45D4CC4F9AE02.roa (raw, json)
Hash identifier: s/D6CRvMty0bb7n/1RdkOqTnH+Kf/MzgZU3MQDXa/2s=
Subject key identifier: 3B:19:60:C3:77:59:75:44:1E:8A:5C:06:CE:0A:02:F0:D4:E4:A0:EA
Certificate issuer: /CN=A91F7E85/serialNumber=596852D52994FBB67A6379AB1E0AF514553EE886
Certificate serial: 09D6
Authority key identifier: 59:68:52:D5:29:94:FB:B6:7A:63:79:AB:1E:0A:F5:14:55:3E:E8:86
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/4776CA8C290511EDB2A45D4CC4F9AE02.roa
Signing time: Sun 11 Sep 2022 02:17:05 +0000
ROA not before: Sun 11 Sep 2022 02:17:05 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 139026
IP address blocks: 103.138.164.0/23 maxlen: 23
103.138.164.0/24 maxlen: 24
103.138.165.0/24 maxlen: 24
2001:df0:4480::/48 maxlen: 48
2001:df0:4480::/51 maxlen: 51
2001:df0:4480:2000::/51 maxlen: 51
2001:df0:4480:4000::/51 maxlen: 51
2001:df0:4480:6000::/51 maxlen: 51
2001:df0:4480:8000::/51 maxlen: 51
2001:df0:4480:a000::/51 maxlen: 51
2001:df0:4480:c000::/51 maxlen: 51
2001:df0:4480:e000::/51 maxlen: 51
2400:a7e0::/32 maxlen: 32
2400:a7e0::/37 maxlen: 37
2400:a7e0:800::/37 maxlen: 37
2400:a7e0:1000::/37 maxlen: 37
2400:a7e0:1800::/37 maxlen: 37
2400:a7e0:2000::/37 maxlen: 37
2400:a7e0:2800::/37 maxlen: 37
2400:a7e0:3000::/37 maxlen: 37
2400:a7e0:3800::/37 maxlen: 37
2400:a7e0:4000::/37 maxlen: 37
2400:a7e0:4800::/37 maxlen: 37
2400:a7e0:5000::/37 maxlen: 37
2400:a7e0:5800::/37 maxlen: 37
2400:a7e0:6000::/37 maxlen: 37
2400:a7e0:6800::/37 maxlen: 37
2400:a7e0:7000::/37 maxlen: 37
2400:a7e0:7800::/37 maxlen: 37
2400:a7e0:8000::/37 maxlen: 37
2400:a7e0:8800::/37 maxlen: 37
2400:a7e0:9000::/37 maxlen: 37
2400:a7e0:9800::/37 maxlen: 37
2400:a7e0:a000::/37 maxlen: 37
2400:a7e0:a800::/37 maxlen: 37
2400:a7e0:b000::/37 maxlen: 37
2400:a7e0:b800::/37 maxlen: 37
2400:a7e0:c000::/37 maxlen: 37
2400:a7e0:c800::/37 maxlen: 37
2400:a7e0:d000::/37 maxlen: 37
2400:a7e0:d800::/37 maxlen: 37
2400:a7e0:e000::/37 maxlen: 37
2400:a7e0:e800::/37 maxlen: 37
2400:a7e0:f000::/37 maxlen: 37
2400:a7e0:f800::/37 maxlen: 37
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2518 (0x9d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F7E85/serialNumber=596852D52994FBB67A6379AB1E0AF514553EE886
Validity
Not Before: Sep 11 02:17:05 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=631d4520-d6ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:90:39:59:19:0d:78:3e:d6:aa:55:6d:42:59:
24:4e:cc:c6:e1:40:82:53:be:6d:d8:9e:6c:6f:e0:
c6:12:65:d4:98:80:10:a0:0a:d6:4e:f2:42:82:9b:
d5:d0:48:d7:71:8b:4d:8e:95:c4:bc:e3:20:09:6e:
c1:d8:a3:08:33:74:e2:43:8c:91:d5:da:06:91:bf:
69:11:d6:0b:78:11:e2:e6:c4:d9:fb:14:4b:c5:66:
d5:01:0e:00:db:ec:07:46:51:7b:c5:40:fb:a0:ad:
36:c8:ed:4d:95:06:4b:77:65:e5:c9:71:1b:2f:32:
63:bc:6a:aa:c8:39:22:a5:14:8e:0c:ad:a0:6d:62:
3f:29:bc:ff:f2:3b:57:d3:c8:26:ff:8b:0f:d6:6a:
41:44:41:2a:87:3c:24:50:a1:ab:2a:fa:2d:db:ac:
eb:df:21:47:38:6d:45:6b:29:66:d9:45:33:d2:41:
18:be:e6:19:17:56:47:93:01:c3:9c:e0:dd:39:f9:
9c:3f:d5:08:ba:ce:31:66:cb:0c:48:5f:0e:fc:4d:
1a:04:56:ee:d1:74:4e:27:a1:59:81:ad:cb:86:ec:
77:85:6b:ec:1c:e6:8e:08:63:e0:a5:2d:e5:e8:04:
2d:09:b7:96:5c:ec:e2:30:de:69:d6:65:94:cc:b0:
3e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:19:60:C3:77:59:75:44:1E:8A:5C:06:CE:0A:02:F0:D4:E4:A0:EA
X509v3 Authority Key Identifier:
keyid:59:68:52:D5:29:94:FB:B6:7A:63:79:AB:1E:0A:F5:14:55:3E:E8:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/4776CA8C290511EDB2A45D4CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.164.0/23
IPv6:
2001:df0:4480::/48
2400:a7e0::/32
Signature Algorithm: sha256WithRSAEncryption
91:62:40:a5:07:87:ff:10:69:62:d5:b8:c5:8f:c2:f3:ab:4e:
9a:f7:10:8d:ea:79:0c:c3:c8:3b:ef:9b:0c:16:3d:f7:1b:a7:
ca:71:17:10:c1:48:b0:72:00:1b:cf:4f:14:40:44:3a:f3:63:
ce:90:6c:83:85:43:72:42:ba:6b:f0:e8:07:a7:3a:8d:23:1d:
fd:65:68:ac:26:b5:01:ad:67:d8:53:62:d5:7c:51:73:97:8c:
23:ce:f6:87:cd:18:94:dd:6c:f5:44:ba:6b:e3:44:44:fc:73:
f0:69:bc:c6:7f:f4:89:13:01:f6:2f:25:5f:9f:4f:51:04:5b:
80:4f:a2:98:0f:19:ac:2a:cd:55:30:3b:61:16:83:54:c6:29:
cc:49:4f:6a:91:60:06:b9:77:87:25:d4:0a:98:13:e5:82:85:
45:83:3e:59:c3:c1:0d:b9:fc:ab:cc:82:e3:50:9b:a4:0a:33:
0f:8a:b8:24:21:9b:7e:56:6c:69:4d:64:c5:dc:2a:bd:30:64:
ba:2a:9a:98:17:ee:e2:0e:f3:79:e8:c3:d4:64:40:4a:20:06:
e6:ed:a3:97:21:81:88:ad:1e:0c:a7:5b:1f:4b:f2:6f:32:1a:
07:88:24:87:ed:80:57:d1:46:c9:3f:5c:99:c5:6b:8b:15:b0:
ec:66:a1:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:15 2023 by rpki-client on console-fra.rpki-client.org