Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1C0EE65808D511EE82522448C4F9AE02.roa
File: 1C0EE65808D511EE82522448C4F9AE02.roa (raw, json)
Hash identifier: 9EseH9upC7BCzA9SvXHrWyS6uYoVgiXBydJ/1bSpwDw=
Subject key identifier: 4B:0C:21:BA:F1:4B:98:33:6F:7B:74:86:4F:B1:6D:C9:6D:9A:A6:89
Certificate issuer: /CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F
Certificate serial: 15D2
Authority key identifier: 7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1C0EE65808D511EE82522448C4F9AE02.roa
Signing time: Fri 30 Aug 2024 09:30:45 +0000
ROA not before: Fri 30 Aug 2024 09:30:45 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 15830
IP address blocks: 27.111.208.0/20 maxlen: 20
27.111.224.0/22 maxlen: 22
27.111.232.0/21 maxlen: 21
27.111.232.0/22 maxlen: 22
27.111.236.0/23 maxlen: 23
27.111.238.0/23 maxlen: 23
101.97.64.0/22 maxlen: 22
101.97.72.0/21 maxlen: 21
101.97.80.0/21 maxlen: 21
118.103.180.0/22 maxlen: 22
202.79.192.0/22 maxlen: 22
202.79.196.0/23 maxlen: 23
202.79.196.0/24 maxlen: 24
202.79.197.0/24 maxlen: 24
202.79.200.0/21 maxlen: 21
202.79.208.0/20 maxlen: 20
2403:b100::/32 maxlen: 32
2403:b101::/40 maxlen: 40
Validation: Failed, certificate revoked on Wed 02 Oct 2024 04:36:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5586 (0x15d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F
Validity
Not Before: Aug 30 09:30:45 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66d19145-8392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c4:5e:db:9d:e4:63:ad:fa:7f:21:9c:71:14:
00:eb:d1:11:b5:c2:55:c2:3c:01:4e:0c:57:8e:30:
aa:0c:89:39:3a:a2:79:5f:75:cc:04:de:3f:c3:46:
a8:c9:ea:44:e2:fd:4c:36:96:a9:e6:07:e7:69:36:
e2:33:ee:9b:ee:22:2e:eb:04:a5:13:fc:0d:fd:d0:
eb:99:ee:64:87:13:25:cd:e8:20:60:ba:65:62:e5:
40:41:34:e9:6d:f3:5b:37:89:c5:4f:db:d7:68:ff:
de:6d:0b:14:a7:8c:9c:07:06:cc:1a:5d:f0:9e:4b:
d7:b3:99:86:30:34:05:90:9c:68:f2:be:c3:e3:7e:
77:10:0a:fc:95:01:cc:3c:03:b5:98:35:3e:26:2a:
ed:c2:46:be:b1:f3:42:30:00:d9:77:ae:b9:3d:c3:
99:cc:2c:7f:93:a5:3e:75:72:1f:f0:90:f2:10:db:
45:82:10:3d:9b:24:fb:60:d7:0a:d8:1d:8a:23:f1:
8e:4c:84:50:78:fa:a8:a4:8d:f4:d6:65:38:0d:71:
23:0e:8c:3a:90:81:63:06:12:43:9b:da:18:93:ee:
00:63:33:aa:19:c3:48:16:47:95:6f:a4:b8:07:a8:
c0:c5:f6:24:3c:14:09:b8:eb:5e:38:d3:4b:62:9f:
39:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:0C:21:BA:F1:4B:98:33:6F:7B:74:86:4F:B1:6D:C9:6D:9A:A6:89
X509v3 Authority Key Identifier:
keyid:7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1C0EE65808D511EE82522448C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.111.208.0-27.111.227.255
27.111.232.0/21
101.97.64.0/22
101.97.72.0-101.97.87.255
118.103.180.0/22
202.79.192.0-202.79.197.255
202.79.200.0-202.79.223.255
IPv6:
2403:b100::-2403:b101:ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
96:bc:71:cd:d1:32:70:e4:ef:b3:58:9b:94:28:3e:34:27:4a:
ae:be:fb:77:e5:06:cf:df:fb:40:ca:7d:2d:58:01:2b:76:35:
c8:d5:a0:da:4e:e5:f6:45:8e:7c:72:7f:9c:a1:04:7b:76:fe:
de:3c:77:f0:01:00:e2:55:d0:a1:9e:3a:84:56:20:30:7c:4e:
26:ab:57:61:fd:e4:97:fc:eb:ab:1f:5a:2d:f8:f9:b5:9c:c2:
86:86:bf:98:c7:ce:a1:ab:80:f5:44:22:dd:88:95:35:f6:a1:
d7:59:4d:fc:21:6a:96:a5:5c:96:f7:ef:ed:34:69:64:18:2d:
56:13:c4:7c:5b:f6:e5:b3:48:f9:32:12:83:3a:47:9b:7d:b1:
a9:4e:57:be:17:99:ff:8b:be:54:0f:1c:72:98:88:73:ab:fb:
fe:61:0c:2d:35:6d:fe:bc:00:55:fa:3e:21:b3:f3:b1:d5:0b:
f6:72:40:cd:04:d4:94:95:f5:6e:f4:7c:97:e4:e0:30:37:64:
e1:ea:90:1b:23:5b:9d:7e:33:81:7f:7e:cf:b3:2a:82:95:36:
48:50:f9:43:f8:4d:39:3d:3e:46:6b:ed:2f:b6:97:a5:9f:33:
6a:cd:0b:58:79:7c:16:13:90:dd:85:6c:dd:54:53:3a:b3:77:
85:a3:8f:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 2 06:16:28 2024 by rpki-client on console-ams.rpki-client.org