Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/ADA3E592B79211EA91C22012C4F9AE02.roa
File: ADA3E592B79211EA91C22012C4F9AE02.roa (raw, json)
Hash identifier: vB6xcUn7Fx+8F0icmvT9wrs8VRcdULPsk1yF9JWsNXs=
Subject key identifier: DB:45:81:D9:42:9B:C1:D7:AE:8D:B7:87:0E:16:FF:02:D8:42:EF:99
Certificate issuer: /CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC
Certificate serial: 1A3D
Authority key identifier: 41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/ADA3E592B79211EA91C22012C4F9AE02.roa
Signing time: Tue 06 Jun 2023 17:25:30 +0000
ROA not before: Tue 06 Jun 2023 17:25:30 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 38713
IP address blocks: 103.25.136.0/24 maxlen: 24
103.25.137.0/24 maxlen: 24
103.25.138.0/24 maxlen: 24
103.25.139.0/24 maxlen: 24
103.205.176.0/24 maxlen: 24
103.205.177.0/24 maxlen: 24
103.205.178.0/24 maxlen: 24
103.205.179.0/24 maxlen: 24
116.206.141.0/24 maxlen: 24
116.206.142.0/24 maxlen: 24
116.206.143.0/24 maxlen: 24
202.143.112.0/24 maxlen: 24
202.143.113.0/24 maxlen: 24
202.143.114.0/24 maxlen: 24
202.143.115.0/24 maxlen: 24
202.143.116.0/24 maxlen: 24
202.143.117.0/24 maxlen: 24
202.143.118.0/24 maxlen: 24
202.143.119.0/24 maxlen: 24
202.143.120.0/24 maxlen: 24
202.143.121.0/24 maxlen: 24
202.143.122.0/24 maxlen: 24
202.143.123.0/24 maxlen: 24
202.143.124.0/24 maxlen: 24
202.143.125.0/24 maxlen: 24
202.143.126.0/24 maxlen: 24
202.143.127.0/24 maxlen: 24
2406:1300::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6717 (0x1a3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC
Validity
Not Before: Jun 6 17:25:30 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=647f6c09-0d4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a7:4a:cd:14:ca:24:f2:f7:5b:e1:06:65:81:
5d:2a:70:22:e5:75:c2:f5:e1:f4:54:4f:0a:0e:50:
e7:e5:da:eb:50:7a:c1:2a:fb:d6:24:9b:2f:f4:55:
b1:8e:8d:ed:f8:2f:42:fd:a6:b3:ab:67:7e:88:aa:
1c:eb:67:a2:cb:21:ee:74:78:69:e7:a3:01:8c:dc:
b8:f6:79:b0:17:39:d3:18:0e:9e:de:20:bb:98:fb:
19:56:47:e8:f8:cf:c8:39:56:bb:07:e5:ee:f5:35:
71:d3:15:9c:4c:fb:cc:1f:6f:ea:52:63:7b:57:47:
72:5e:8d:52:68:99:54:25:6c:08:4a:5b:bf:73:d0:
f3:02:a6:83:1d:9f:3e:6c:6f:ce:9c:35:6e:21:87:
54:0f:d9:c5:64:7a:1d:c5:a5:92:39:3a:15:72:a7:
24:5b:ec:e3:b2:7a:2b:42:3e:f5:e9:2f:ff:7c:d1:
f8:f7:66:66:88:9d:e0:e4:dd:df:8b:38:67:f2:e1:
b2:01:96:6c:85:b7:1d:cd:47:0f:60:8a:88:a4:ef:
7d:d2:9d:61:c0:79:6d:b1:5e:b9:5a:8e:6a:f5:5e:
6a:4e:76:03:1d:95:21:93:d7:60:ff:d1:8f:96:4b:
1d:31:c0:4a:23:cb:be:71:90:8c:f8:41:08:5e:37:
10:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:45:81:D9:42:9B:C1:D7:AE:8D:B7:87:0E:16:FF:02:D8:42:EF:99
X509v3 Authority Key Identifier:
keyid:41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/ADA3E592B79211EA91C22012C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.25.136.0/22
103.205.176.0/22
116.206.141.0-116.206.143.255
202.143.112.0/20
IPv6:
2406:1300::/48
Signature Algorithm: sha256WithRSAEncryption
85:a8:e5:6c:1a:52:7c:5c:c4:c1:0e:ac:19:eb:89:eb:88:ae:
93:c8:ad:e6:91:f6:cb:4b:f7:3d:9f:1f:b0:1a:f9:e0:44:19:
d1:ad:00:4f:1d:ea:f4:84:88:f3:52:e7:8d:08:1c:54:17:87:
0c:bb:0b:ab:46:2e:ba:6c:6a:67:18:8b:27:28:c5:7c:4b:84:
07:7b:c3:e3:7e:fa:14:0b:7a:51:cf:8a:66:0a:5f:b6:2b:97:
70:68:3c:fa:4b:11:1c:0c:e9:b5:c4:10:ef:a9:00:fd:3c:62:
35:5d:bc:cf:21:96:b6:2f:1c:a0:f4:b8:4c:52:10:1a:a7:f8:
ab:0a:42:62:22:2d:56:0d:3c:68:94:0b:9e:72:f9:16:50:b5:
f3:8e:8c:60:f3:8f:23:75:6d:af:8d:3d:4f:ff:25:3e:72:ba:
70:c4:08:94:bb:9e:d1:3e:c4:dc:2f:40:2d:57:ad:cb:1c:a8:
19:91:fe:fa:9f:31:b8:d4:24:a0:14:0f:6e:b3:cf:b6:2a:4a:
01:50:fe:18:ea:59:7d:3b:be:f6:ff:b1:db:d1:a0:74:08:d1:
d3:0c:16:8f:1e:ae:59:22:f3:dd:5f:28:7d:3a:fe:8a:b6:a8:
55:5b:80:72:6c:40:a3:b8:7c:78:de:59:de:82:52:c8:b3:5d:
30:19:f9:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 12 11:11:56 2023 by rpki-client on console-ams.rpki-client.org