Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/E6B7014C152511ECAD055780C4F9AE02.roa
File: E6B7014C152511ECAD055780C4F9AE02.roa (raw, json)
Hash identifier: wY2tWMCpA53Xn4fhz59FHFfOwIeqYMS5pp24NwZTVhc=
Subject key identifier: 10:D2:32:8E:19:C8:0C:4E:F3:85:C8:6E:D0:2B:76:BC:1D:93:DB:82
Certificate issuer: /CN=A91385F2/serialNumber=8C0A1FFF1AA31CEA6CC0C88B67AC22D594639C75
Certificate serial: 03F2
Authority key identifier: 8C:0A:1F:FF:1A:A3:1C:EA:6C:C0:C8:8B:67:AC:22:D5:94:63:9C:75
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/E6B7014C152511ECAD055780C4F9AE02.roa
Signing time: Fri 05 Jan 2024 01:43:37 +0000
ROA not before: Fri 05 Jan 2024 01:43:37 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 137239
IP address blocks: 103.105.212.0/22 maxlen: 22
103.105.212.0/24 maxlen: 24
103.105.213.0/24 maxlen: 24
103.105.214.0/24 maxlen: 24
103.105.215.0/24 maxlen: 24
2403:240::/32 maxlen: 32
2403:240::/36 maxlen: 36
2403:240:1000::/36 maxlen: 36
2403:240:2000::/36 maxlen: 36
2403:240:3000::/36 maxlen: 36
2403:240:4000::/36 maxlen: 36
2403:240:5000::/36 maxlen: 36
2403:240:6000::/36 maxlen: 36
2403:240:7000::/36 maxlen: 36
2403:240:8000::/36 maxlen: 36
2403:240:9000::/36 maxlen: 36
2403:240:a000::/36 maxlen: 36
2403:240:b000::/36 maxlen: 36
2403:240:c000::/36 maxlen: 36
2403:240:d000::/36 maxlen: 36
2403:240:e000::/36 maxlen: 36
2403:240:f000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 19 Aug 2024 02:23:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1010 (0x3f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91385F2/serialNumber=8C0A1FFF1AA31CEA6CC0C88B67AC22D594639C75
Validity
Not Before: Jan 5 01:43:37 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=65975ec9-33e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:71:4f:39:8d:79:82:d8:6b:45:73:0d:65:97:
01:c7:85:5a:1c:9b:62:8d:5d:8a:0e:a1:3b:e2:4f:
75:1e:ca:0b:69:01:2a:9e:f2:cf:05:99:6c:91:c5:
b0:f1:fe:72:50:dd:c7:e9:5b:14:c0:12:b3:34:6c:
99:e1:bb:73:e0:0b:2b:7e:a8:50:ce:95:fd:b8:ed:
be:02:34:a9:df:56:be:7f:09:e8:ce:6a:ec:23:0f:
2f:f8:b9:55:b2:ee:42:20:5e:ba:fc:e8:7f:30:fc:
9a:18:dd:a7:0b:78:4f:3d:5c:d0:3d:51:45:86:56:
25:2d:09:ba:53:f9:e3:78:a6:1b:5b:b4:87:58:f1:
15:04:a0:09:fb:9c:c7:d7:6b:32:a1:3e:df:c1:1e:
9e:7e:18:f7:85:17:c1:3f:ef:10:ee:2a:1c:b5:92:
2e:18:98:45:cf:ba:4a:30:c7:9e:2c:40:88:de:df:
b6:f6:4a:46:11:e7:82:f4:02:93:7b:42:99:2d:ad:
27:cb:9a:2a:82:91:eb:4f:fb:c4:f7:71:7c:83:99:
ff:8c:08:85:0c:fe:b2:77:4f:4b:87:f9:09:f1:40:
17:f0:4f:d0:7f:d0:ec:82:c4:d1:27:d7:ed:00:37:
74:a4:73:4a:40:56:a3:7a:80:ce:a6:7f:cd:ec:10:
83:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:D2:32:8E:19:C8:0C:4E:F3:85:C8:6E:D0:2B:76:BC:1D:93:DB:82
X509v3 Authority Key Identifier:
keyid:8C:0A:1F:FF:1A:A3:1C:EA:6C:C0:C8:8B:67:AC:22:D5:94:63:9C:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/E6B7014C152511ECAD055780C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.105.212.0/22
IPv6:
2403:240::/32
Signature Algorithm: sha256WithRSAEncryption
dc:24:bd:65:52:b2:e2:60:b5:b2:7d:95:16:a7:81:6c:cc:c7:
94:78:d9:25:92:1a:8f:07:0d:a4:b5:87:d1:b8:03:90:21:79:
8d:8b:3c:10:7a:ff:ba:f7:98:37:6c:2a:9b:9b:07:1a:1c:a4:
cf:d7:1a:4b:02:cf:b3:ac:ff:1f:f6:23:af:61:eb:ab:23:6d:
eb:c1:33:aa:f8:f4:13:a1:b4:3c:95:11:4f:8e:b5:ab:dc:d2:
98:1f:20:03:58:84:3e:f0:2f:e1:0e:28:46:d5:af:4f:df:d0:
e1:3f:a4:01:9a:51:32:64:fc:c4:dd:71:22:5c:07:e9:91:3c:
cc:51:5f:02:bc:96:a4:0a:cc:6a:7a:d7:fe:14:4f:66:94:34:
d7:3c:59:c4:21:79:ae:21:f8:20:34:24:4c:5c:26:4e:48:97:
4e:cb:ec:1b:31:84:a5:dd:a2:e4:e4:2d:68:b8:e8:14:67:6e:
06:39:a0:63:bc:3c:e4:78:f7:41:0f:7a:11:04:cc:66:21:22:
c2:e7:67:10:62:3e:19:fd:f3:cb:49:af:62:1e:02:bc:6e:d3:
f1:17:87:86:bc:3b:1a:c2:5f:c9:db:ac:ac:be:4d:07:ba:c0:
60:0c:2c:c0:76:87:1a:38:35:7c:60:56:01:65:58:df:f8:46:
08:88:0e:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 19 05:25:49 2024 by rpki-client on console-fra.rpki-client.org