Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/AAF07FC457B111ED9EA1E323C4F9AE02.roa
File: AAF07FC457B111ED9EA1E323C4F9AE02.roa (raw, json)
Hash identifier: QjBDVO3wugKqw5tLYy1npkXyLSIg3EZz2Zwa2m4AfnE=
Subject key identifier: 95:0C:0C:DD:45:71:36:56:A8:EE:BF:92:FF:F6:40:7C:93:09:AA:09
Certificate issuer: /CN=A91F7E85/serialNumber=596852D52994FBB67A6379AB1E0AF514553EE886
Certificate serial: 0A8C
Authority key identifier: 59:68:52:D5:29:94:FB:B6:7A:63:79:AB:1E:0A:F5:14:55:3E:E8:86
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/AAF07FC457B111ED9EA1E323C4F9AE02.roa
Signing time: Tue 30 May 2023 21:01:49 +0000
ROA not before: Tue 30 May 2023 21:01:49 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 139026
IP address blocks: 103.138.164.0/23 maxlen: 23
103.138.164.0/24 maxlen: 24
103.138.165.0/24 maxlen: 24
2001:df0:4480::/48 maxlen: 48
2400:a7e0::/32 maxlen: 32
2400:a7e0::/34 maxlen: 34
2400:a7e0::/38 maxlen: 38
2400:a7e0:400::/38 maxlen: 38
2400:a7e0:800::/38 maxlen: 38
2400:a7e0:c00::/38 maxlen: 38
2400:a7e0:1000::/38 maxlen: 38
2400:a7e0:1400::/38 maxlen: 38
2400:a7e0:1800::/38 maxlen: 38
2400:a7e0:1c00::/38 maxlen: 38
2400:a7e0:2000::/38 maxlen: 38
2400:a7e0:2400::/38 maxlen: 38
2400:a7e0:2800::/38 maxlen: 38
2400:a7e0:2c00::/38 maxlen: 38
2400:a7e0:3000::/38 maxlen: 38
2400:a7e0:3400::/38 maxlen: 38
2400:a7e0:4000::/34 maxlen: 34
2400:a7e0:4000::/38 maxlen: 38
2400:a7e0:4400::/38 maxlen: 38
2400:a7e0:4800::/38 maxlen: 38
2400:a7e0:4c00::/38 maxlen: 38
2400:a7e0:5000::/38 maxlen: 38
2400:a7e0:5400::/38 maxlen: 38
2400:a7e0:5800::/38 maxlen: 38
2400:a7e0:5c00::/38 maxlen: 38
2400:a7e0:6000::/38 maxlen: 38
2400:a7e0:6400::/38 maxlen: 38
2400:a7e0:6800::/38 maxlen: 38
2400:a7e0:6c00::/38 maxlen: 38
2400:a7e0:8000::/34 maxlen: 34
2400:a7e0:c000::/34 maxlen: 34
Validation: Failed, certificate revoked on Tue 26 Mar 2024 16:08:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2700 (0xa8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F7E85/serialNumber=596852D52994FBB67A6379AB1E0AF514553EE886
Validity
Not Before: May 30 21:01:49 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6476643c-82c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:2b:cc:fe:4c:61:f0:b9:83:4e:8d:28:d5:ca:
96:6d:78:df:67:7b:23:f2:56:74:d9:b9:18:f4:6b:
63:b1:c4:4d:3e:40:cd:b8:d4:ee:60:ac:d2:00:f9:
a3:88:89:d2:93:ce:f5:ec:ef:69:69:11:f6:1a:20:
9d:ab:f3:4b:f1:1a:0c:09:f5:01:df:ad:6a:b2:84:
9b:a2:dc:c0:42:89:65:83:ce:26:9f:f3:7b:1f:d7:
79:a6:c0:d1:93:74:1b:b6:db:4d:33:9d:4d:bb:5f:
7e:77:ef:38:7a:11:2b:e0:a6:0f:2e:ed:fe:6e:c3:
bd:bd:6b:4e:26:f1:07:c1:5a:39:5c:bc:89:a0:5d:
23:82:cb:8f:7b:b3:1c:a7:bf:6f:62:9a:36:e3:78:
1d:66:ac:c2:46:91:3f:e6:4f:aa:ac:2e:07:18:bb:
37:91:0e:0c:39:9b:4f:52:bb:f3:8f:ba:6b:e1:78:
4b:73:b0:64:60:c5:e0:36:4f:37:e2:27:3c:55:68:
3e:5f:4d:00:74:5e:1f:82:e7:d6:00:58:7f:8e:09:
a2:4e:37:02:a4:ee:b6:88:20:db:28:67:43:73:29:
5a:e7:d2:ed:a5:ad:a5:05:c7:6a:8b:52:d1:bd:77:
59:7e:67:71:0b:76:ea:e4:fc:7e:c2:b2:e1:32:cb:
83:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:0C:0C:DD:45:71:36:56:A8:EE:BF:92:FF:F6:40:7C:93:09:AA:09
X509v3 Authority Key Identifier:
keyid:59:68:52:D5:29:94:FB:B6:7A:63:79:AB:1E:0A:F5:14:55:3E:E8:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WWhS1SmU-7Z6Y3mrHgr1FFU-6IY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7E85/B2E0E5AE1C3411EAA8E25A5CC4F9AE02/AAF07FC457B111ED9EA1E323C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.164.0/23
IPv6:
2001:df0:4480::/48
2400:a7e0::/32
Signature Algorithm: sha256WithRSAEncryption
73:ce:e2:36:63:97:6e:8e:98:11:56:a5:34:ad:6a:ec:0b:91:
51:f9:b1:b4:19:18:65:b0:7f:23:e2:2c:40:d2:64:a9:6d:1b:
e8:a2:8b:cf:d2:8c:79:14:47:d3:be:4e:85:4f:ec:24:4e:7b:
56:14:d2:9c:c3:fc:a2:2c:64:07:47:6f:e6:57:11:5e:e8:e3:
36:95:0a:18:b1:9f:7b:1b:e8:80:32:e2:cd:ec:c7:96:9d:ad:
f7:ac:b4:43:74:48:23:a6:b7:4c:b8:30:0b:04:9c:42:55:54:
d4:f3:4d:01:19:7d:29:be:f1:3d:d2:12:74:25:e9:24:01:92:
91:af:25:7f:0a:6d:93:cf:dd:b5:a1:65:49:c1:c5:0a:db:22:
d8:26:08:84:d6:66:b5:7f:1d:db:33:5f:69:b1:78:10:6d:35:
35:02:b0:70:6c:17:c5:32:94:fe:06:e1:e9:43:8a:67:b9:c0:
13:ca:9f:bf:8d:3c:08:68:85:73:79:02:c3:d7:d9:51:43:05:
56:81:4f:3d:1b:2c:d2:4e:a5:e1:45:b8:ea:89:60:af:77:5f:
40:d9:d0:d7:7a:75:b2:f0:98:29:01:85:91:69:0a:4a:3b:a7:
96:b7:67:2a:5b:2f:42:04:de:4e:5a:8f:c8:ca:05:67:4c:11:
57:3f:e9:01
-----BEGIN CERTIFICATE-----
MIIFiTCCBHGgAwIBAgICCowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjdFODUxMTAvBgNVBAUTKDU5Njg1MkQ1Mjk5NEZCQjY3QTYzNzlBQjFFMEFGNTE0
NTUzRUU4ODYwHhcNMjMwNTMwMjEwMTQ5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDc2NjQzYy04MmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA7CvM/kxh8LmDTo0o1cqWbXjfZ3sj8lZ02bkY9GtjscRNPkDNuNTuYKzSAPmj
iInSk8717O9paRH2GiCdq/NL8RoMCfUB361qsoSbotzAQollg84mn/N7H9d5psDR
k3QbtttNM51Nu19+d+84ehEr4KYPLu3+bsO9vWtOJvEHwVo5XLyJoF0jgsuPe7Mc
p79vYpo243gdZqzCRpE/5k+qrC4HGLs3kQ4MOZtPUrvzj7pr4XhLc7BkYMXgNk83
4ic8VWg+X00AdF4fgufWAFh/jgmiTjcCpO62iCDbKGdDcyla59Ltpa2lBcdqi1LR
vXdZfmdxC3bq5Px+wrLhMsuDWQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFJUMDN1F
cTZWqO6/kv/2QHyTCaoJMB8GA1UdIwQYMBaAFFloUtUplPu2emN5qx4K9RRVPuiG
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0U4NS9CMkUwRTVBRTFD
MzQxMUVBQThFMjVBNUNDNEY5QUUwMi9XV2hTMVNtVS03WjZZM21ySGdyMUZGVS02
SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1dXaFMxU21VLTdaNlkzbXJIZ3IxRkZVLTZJWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RjdFODUvQjJFMEU1QUUxQzM0MTFFQUE4RTI1QTVDQzRGOUFFMDIvQUFGMDdGQzQ1
N0IxMTFFRDlFQTFFMzIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E
KDAmMAwEAgABMAYDBAFniqQwFgQCAAIwEAMHACABDfBEgAMFACQAp+AwDQYJKoZI
hvcNAQELBQADggEBAHPO4jZjl26OmBFWpTStauwLkVH5sbQZGGWwfyPiLEDSZKlt
G+iii8/SjHkUR9O+ToVP7CROe1YU0pzD/KIsZAdHb+ZXEV7o4zaVChixn3sb6IAy
4s3sx5adrfestEN0SCOmt0y4MAsEnEJVVNTzTQEZfSm+8T3SEnQl6SQBkpGvJX8K
bZPP3bWhZUnBxQrbItgmCITWZrV/HdszX2mxeBBtNTUCsHBsF8UylP4G4elDime5
wBPKn7+NPAhohXN5AsPX2VFDBVaBTz0bLNJOpeFFuOqJYK93X0DZ0Nd6dbLwmCkB
hZFpCko7p5a3ZypbL0IE3k5aj8jKBWdMEVc/6QE=
-----END CERTIFICATE-----
Generated at Tue Mar 26 20:24:51 2024 by rpki-client on console-fra.rpki-client.org