Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/CCDEF336515711EEA61D5643C4F9AE02.roa
File: CCDEF336515711EEA61D5643C4F9AE02.roa (raw, json)
Hash identifier: gAV5yYehaJDo6g8Vnt7EzGLTB4eZ6SMdgj9DDNEWlLA=
Subject key identifier: 89:2F:B5:75:FA:C9:FB:73:79:30:EB:60:8E:84:2E:EE:54:30:0E:68
Certificate issuer: /CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC
Certificate serial: 1B20
Authority key identifier: 41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/CCDEF336515711EEA61D5643C4F9AE02.roa
Signing time: Sat 27 Jul 2024 08:06:23 +0000
ROA not before: Sat 27 Jul 2024 08:06:23 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 38713
IP address blocks: 103.25.136.0/24 maxlen: 24
103.25.137.0/24 maxlen: 24
103.25.138.0/24 maxlen: 24
103.25.139.0/24 maxlen: 24
103.205.176.0/24 maxlen: 24
103.205.177.0/24 maxlen: 24
103.205.178.0/24 maxlen: 24
103.205.179.0/24 maxlen: 24
116.206.140.0/24 maxlen: 24
116.206.141.0/24 maxlen: 24
116.206.142.0/24 maxlen: 24
116.206.143.0/24 maxlen: 24
202.143.112.0/24 maxlen: 24
202.143.113.0/24 maxlen: 24
202.143.114.0/24 maxlen: 24
202.143.115.0/24 maxlen: 24
202.143.116.0/24 maxlen: 24
202.143.117.0/24 maxlen: 24
202.143.118.0/24 maxlen: 24
202.143.119.0/24 maxlen: 24
202.143.120.0/24 maxlen: 24
202.143.121.0/24 maxlen: 24
202.143.122.0/24 maxlen: 24
202.143.123.0/24 maxlen: 24
202.143.124.0/24 maxlen: 24
202.143.125.0/24 maxlen: 24
202.143.126.0/24 maxlen: 24
202.143.127.0/24 maxlen: 24
2406:1300::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 12 Oct 2024 07:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6944 (0x1b20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC
Validity
Not Before: Jul 27 08:06:23 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66a4aa7f-8591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e5:6c:e1:fc:bc:fe:ae:cd:e3:e4:97:d6:51:
00:50:1b:bd:89:35:44:81:37:91:00:fd:1b:1a:fa:
d6:88:fe:45:57:f0:69:35:41:3f:09:54:eb:47:8a:
04:7c:c9:38:3a:db:f4:3a:ce:84:81:13:6c:d2:e9:
78:97:5a:5b:ff:c6:17:da:3b:ff:3c:6c:cf:19:36:
38:da:b8:b0:bc:3d:3d:2e:60:4a:cb:5b:f5:0c:ae:
12:81:8c:18:e0:e0:5a:79:37:79:b7:c5:0d:5f:a6:
94:12:86:eb:65:e6:59:99:8c:3e:cd:26:c6:8f:ac:
e7:d6:37:95:bc:20:13:7c:b9:d3:67:43:73:74:02:
69:5d:60:c9:a6:48:f7:75:a2:83:39:36:92:25:d9:
55:f8:f0:d7:9d:14:8e:ab:b2:0e:72:a6:bc:0b:f8:
f0:0f:e5:09:e1:f6:f5:bb:26:3d:61:1e:b8:b5:83:
3e:b5:71:13:37:c1:c9:78:a7:10:48:6f:7f:c7:fc:
34:37:b6:37:59:0c:dc:8c:c6:2d:c4:4c:76:9b:32:
ae:20:a7:88:bd:76:ba:bf:93:06:c4:3c:1a:28:57:
5b:f0:39:88:2c:f3:9c:48:e8:e4:02:d3:18:10:ac:
7d:11:97:9c:85:8d:30:1a:0f:8c:2c:c3:fe:68:35:
1e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:2F:B5:75:FA:C9:FB:73:79:30:EB:60:8E:84:2E:EE:54:30:0E:68
X509v3 Authority Key Identifier:
keyid:41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/CCDEF336515711EEA61D5643C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.25.136.0/22
103.205.176.0/22
116.206.140.0/22
202.143.112.0/20
IPv6:
2406:1300::/48
Signature Algorithm: sha256WithRSAEncryption
96:be:27:ca:79:81:f3:32:ce:97:bb:d0:50:3c:e1:8d:c7:59:
a0:49:25:26:c4:b2:31:f0:98:77:6a:8c:43:36:dc:53:c4:55:
72:aa:55:cf:9a:c8:33:64:16:b9:7e:cb:65:12:68:5b:e4:b7:
27:7d:76:95:25:38:22:0e:8f:72:64:d9:fc:8e:c7:93:c4:ff:
c0:84:99:77:b9:3c:28:00:de:64:a4:5e:15:a2:94:b1:80:2d:
6f:c2:80:c9:df:e6:70:91:2e:94:20:4f:e5:09:2d:04:6e:8a:
bf:2f:af:b0:42:bb:5b:02:bf:57:09:05:7e:24:fd:b2:9d:dc:
18:b9:02:3d:26:81:26:f1:ed:92:1e:f1:aa:e3:62:00:1e:a3:
a3:f1:c1:17:c5:96:38:ca:e4:29:56:1c:2b:32:3f:4b:8f:b7:
a0:44:9f:23:08:7a:34:da:f0:76:da:68:5f:59:fd:cf:bb:c1:
66:62:f6:ff:a9:bd:d1:3f:5b:3c:fb:4b:10:d8:87:a2:80:4e:
e3:1c:a8:a5:c5:2d:da:51:8a:f3:cc:38:63:db:a4:70:7f:7e:
49:de:2e:be:2c:81:11:c3:ad:bc:48:dc:f6:3e:bf:93:3d:6d:
32:59:bc:78:5c:95:ab:a8:98:01:40:9c:19:72:28:e4:3b:be:
1a:63:1f:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 08:49:13 2024 by rpki-client on console-ams.rpki-client.org