Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/D6AAE422886711EF9E25E771C4F9AE02.roa
File: D6AAE422886711EF9E25E771C4F9AE02.roa (raw, json)
Hash identifier: iIjbhmYy8oumysztrhLjHgB0O9QqGayYyhIZpSRB3tE=
Subject key identifier: A9:6A:F5:75:EA:2A:88:9B:EC:AB:8B:CE:14:D5:A6:E1:AC:21:2A:4C
Certificate issuer: /CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC
Certificate serial: 1B73
Authority key identifier: 41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/D6AAE422886711EF9E25E771C4F9AE02.roa
Signing time: Mon 14 Oct 2024 08:13:26 +0000
ROA not before: Mon 14 Oct 2024 08:13:26 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 38713
IP address blocks: 103.25.136.0/24 maxlen: 24
103.25.137.0/24 maxlen: 24
103.25.138.0/24 maxlen: 24
103.25.139.0/24 maxlen: 24
103.205.176.0/24 maxlen: 24
103.205.177.0/24 maxlen: 24
103.205.178.0/24 maxlen: 24
103.205.179.0/24 maxlen: 24
116.206.140.0/24 maxlen: 24
116.206.141.0/24 maxlen: 24
116.206.142.0/24 maxlen: 24
116.206.143.0/24 maxlen: 24
202.143.112.0/24 maxlen: 24
202.143.113.0/24 maxlen: 24
202.143.114.0/24 maxlen: 24
202.143.115.0/24 maxlen: 24
202.143.116.0/24 maxlen: 24
202.143.117.0/24 maxlen: 24
202.143.118.0/24 maxlen: 24
202.143.119.0/24 maxlen: 24
202.143.120.0/24 maxlen: 24
202.143.121.0/24 maxlen: 24
202.143.122.0/24 maxlen: 24
202.143.123.0/24 maxlen: 24
202.143.124.0/24 maxlen: 24
202.143.125.0/24 maxlen: 24
202.143.126.0/24 maxlen: 24
202.143.127.0/24 maxlen: 24
2406:1300::/32 maxlen: 32
2406:1300::/40 maxlen: 40
2406:1300:100::/40 maxlen: 40
2406:1300:200::/40 maxlen: 40
2406:1300:300::/40 maxlen: 40
2406:1300:400::/40 maxlen: 40
2406:1300:500::/40 maxlen: 40
2406:1300:600::/40 maxlen: 40
2406:1300:700::/40 maxlen: 40
2406:1300:800::/40 maxlen: 40
2406:1300:900::/40 maxlen: 40
2406:1300:a00::/40 maxlen: 40
2406:1300:b00::/40 maxlen: 40
2406:1300:c00::/40 maxlen: 40
2406:1300:d00::/40 maxlen: 40
2406:1300:e00::/40 maxlen: 40
2406:1300:f00::/40 maxlen: 40
2406:1300:1000::/40 maxlen: 40
2406:1300:1100::/40 maxlen: 40
Validation: Failed, certificate revoked on Fri 18 Oct 2024 07:14:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7027 (0x1b73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC
Validity
Not Before: Oct 14 08:13:26 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=670cd2a5-fb03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3f:e2:53:f1:ec:70:6d:8b:81:91:f9:0d:aa:
5f:52:cb:91:64:7d:a6:41:d3:33:1d:70:c3:a9:aa:
62:b5:5c:f7:3d:ee:a7:d5:c0:07:9c:3b:3f:32:01:
b5:7f:6c:2b:1d:a0:05:dd:f0:a8:cb:d9:0b:8c:00:
6c:a2:7b:7f:01:a0:47:38:be:2a:61:45:39:7d:88:
54:13:7f:b5:99:81:67:43:44:8f:ae:c5:3f:5c:89:
99:fc:87:20:61:f0:4a:8b:00:c9:50:91:24:88:69:
f8:fe:a3:b6:db:96:15:9d:68:0b:7b:72:77:e4:58:
62:44:cb:fb:7f:2f:1e:37:b4:ca:db:76:a4:10:c9:
17:1f:f2:87:3e:0d:f4:15:1c:30:81:fd:9c:b3:80:
72:55:a1:99:05:6d:c0:6e:a1:8d:b9:e3:d0:65:ef:
44:eb:b5:74:9b:8b:4f:8d:e3:b9:2e:6b:31:e3:f9:
0a:19:b1:98:34:7c:b9:64:5e:74:a3:07:64:ee:a6:
18:e3:3a:6b:6b:6c:4b:41:2a:7d:ac:56:60:07:92:
6b:94:26:ce:e0:f6:0b:21:cb:c0:4c:5c:b4:72:f2:
f3:01:fe:0b:7a:cf:59:93:e1:c0:78:eb:eb:18:a2:
db:bf:40:a7:1f:6a:8c:85:50:3e:a0:26:04:24:18:
72:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:6A:F5:75:EA:2A:88:9B:EC:AB:8B:CE:14:D5:A6:E1:AC:21:2A:4C
X509v3 Authority Key Identifier:
keyid:41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/D6AAE422886711EF9E25E771C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.25.136.0/22
103.205.176.0/22
116.206.140.0/22
202.143.112.0/20
IPv6:
2406:1300::/32
Signature Algorithm: sha256WithRSAEncryption
a6:9a:cc:d7:8f:61:c8:2c:a5:8b:d0:0f:22:be:87:60:04:b7:
ff:19:68:ba:f2:a7:d5:7e:9c:8e:2c:02:bc:08:a4:90:11:b6:
d2:d0:4f:c7:ac:82:22:df:c1:5a:8b:e5:4b:5c:26:f9:8c:bc:
4e:6e:3d:94:30:52:f9:53:6b:0a:2e:30:47:c0:bf:c1:05:f5:
94:7a:ac:e5:39:ed:0b:b9:8e:7c:17:f1:59:1f:a2:8c:10:d9:
0e:d0:b2:22:ec:29:eb:c9:97:ce:0f:17:86:e5:7d:bf:f2:94:
8d:79:29:78:a4:fb:a7:08:ca:bf:a4:7a:01:31:da:f8:cd:f4:
53:b3:85:b5:df:ad:9a:a1:81:34:03:eb:a6:da:64:3b:43:02:
05:e5:c6:22:6d:7a:48:e6:8d:2d:4b:2a:b7:37:9d:99:7e:1c:
ce:06:65:70:aa:ef:84:f7:86:40:e4:10:73:df:6d:e8:71:23:
b3:82:1e:9f:79:54:98:b6:23:5b:a8:f4:ea:06:96:f8:ac:5e:
8a:67:be:ec:85:6e:a2:41:34:8e:a3:51:33:aa:b7:0e:77:5c:
91:11:cc:52:89:e4:c4:92:1c:52:4c:d4:fb:c0:c2:15:0f:6b:
b6:10:a9:48:e8:be:ef:48:66:d0:6f:95:38:62:d4:83:7f:83:
7a:fd:25:15
-----BEGIN CERTIFICATE-----
MIIFkjCCBHqgAwIBAgICG3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUI1RDcxMTAvBgNVBAUTKDQxRkUxRDQxMzVBQjJENjc2MjNFNzYwODMzOTg0NjhB
RDRGQUExREMwHhcNMjQxMDE0MDgxMzI2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzBjZDJhNS1mYjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArD/iU/HscG2LgZH5DapfUsuRZH2mQdMzHXDDqapitVz3Pe6n1cAHnDs/MgG1
f2wrHaAF3fCoy9kLjABsont/AaBHOL4qYUU5fYhUE3+1mYFnQ0SPrsU/XImZ/Icg
YfBKiwDJUJEkiGn4/qO225YVnWgLe3J35FhiRMv7fy8eN7TK23akEMkXH/KHPg30
FRwwgf2cs4ByVaGZBW3AbqGNuePQZe9E67V0m4tPjeO5Lmsx4/kKGbGYNHy5ZF50
owdk7qYY4zpra2xLQSp9rFZgB5JrlCbO4PYLIcvATFy0cvLzAf4Les9Zk+HAeOvr
GKLbv0CnH2qMhVA+oCYEJBhyZwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFKlq9XXq
Koib7KuLzhTVpuGsISpMMB8GA1UdIwQYMBaAFEH+HUE1qy1nYj52CDOYRorU+qHc
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVENy8yNTg3MkJCRTAz
QjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxXZGlQbllJTTVoR2l0VDZv
ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1FmNGRRVFdyTFdkaVBuWUlNNWhHaXRUNm9kdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MUI1RDcvMjU4NzJCQkUwM0I0MTFFN0I4MTFBQTE0QzRGOUFFMDIvRDZBQUU0MjI4
ODY3MTFFRjlFMjVFNzcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E
MTAvMB4EAgABMBgDBAJnGYgDBAJnzbADBAJ0zowDBATKj3AwDQQCAAIwBwMFACQG
EwAwDQYJKoZIhvcNAQELBQADggEBAKaazNePYcgspYvQDyK+h2AEt/8ZaLryp9V+
nI4sArwIpJARttLQT8esgiLfwVqL5UtcJvmMvE5uPZQwUvlTawouMEfAv8EF9ZR6
rOU57Qu5jnwX8VkfoowQ2Q7QsiLsKevJl84PF4blfb/ylI15KXik+6cIyr+kegEx
2vjN9FOzhbXfrZqhgTQD66baZDtDAgXlxiJtekjmjS1LKrc3nZl+HM4GZXCq74T3
hkDkEHPfbehxI7OCHp95VJi2I1uo9OoGlvisXopnvuyFbqJBNI6jUTOqtw53XJER
zFKJ5MSSHFJM1PvAwhUPa7YQqUjovu9IZtBvlThi1IN/g3r9JRU=
-----END CERTIFICATE-----
Generated at Fri Oct 18 08:47:51 2024 by rpki-client on console-ams.rpki-client.org