Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914BF04/DA538A56EA2811EB9AE60B74C4F9AE02/771D9E742C7211EFA8FB2D84C4F9AE02.roa
File: 771D9E742C7211EFA8FB2D84C4F9AE02.roa (raw, json)
Hash identifier: Rd4nr29ooCz19yEGcwxPHUb8Dj4YYaB8az4Mgk/VcNA=
Subject key identifier: EC:CA:AC:A1:0E:58:CA:85:53:04:19:A9:0A:51:75:0A:5E:95:D3:89
Certificate issuer: /CN=A914BF04/serialNumber=B01E7C1EDE102251EE60741E2E19F060303D71C9
Certificate serial: 052A
Authority key identifier: B0:1E:7C:1E:DE:10:22:51:EE:60:74:1E:2E:19:F0:60:30:3D:71:C9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sB58Ht4QIlHuYHQeLhnwYDA9cck.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914BF04/DA538A56EA2811EB9AE60B74C4F9AE02/771D9E742C7211EFA8FB2D84C4F9AE02.roa
Signing time: Mon 09 Sep 2024 06:37:27 +0000
ROA not before: Mon 09 Sep 2024 06:37:27 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 141681
IP address blocks: 103.161.242.0/24 maxlen: 24
103.170.17.0/24 maxlen: 24
2400:bde0::/32 maxlen: 32
2400:bde0::/48 maxlen: 48
2400:bde0:0:1::/64 maxlen: 64
2400:bde0:1::/48 maxlen: 48
2400:bde0:1:150::/64 maxlen: 64
2400:bde0:2::/48 maxlen: 48
2400:bde0:100::/46 maxlen: 46
2400:bde0:100::/48 maxlen: 48
2400:bde0:3000::/46 maxlen: 46
2400:bde0:3000::/48 maxlen: 48
2400:bde0:4000::/44 maxlen: 44
2400:bde0:4000::/45 maxlen: 46
2400:bde0:6000::/46 maxlen: 46
2400:bde0:6004::/46 maxlen: 46
2400:bde0:8000::/44 maxlen: 45
2400:bde0:8000::/45 maxlen: 47
2400:bde0:8008::/46 maxlen: 46
2400:bde0:8008::/47 maxlen: 47
2400:bde0:8010::/44 maxlen: 45
2400:bde0:8010::/45 maxlen: 47
2400:bde0:8018::/46 maxlen: 46
2400:bde0:8018::/47 maxlen: 47
2400:bde0:8020::/44 maxlen: 45
2400:bde0:8020::/45 maxlen: 47
2400:bde0:8028::/46 maxlen: 46
2400:bde0:8028::/47 maxlen: 47
2400:bde0:8030::/44 maxlen: 45
2400:bde0:8030::/45 maxlen: 47
2400:bde0:8038::/46 maxlen: 46
2400:bde0:8038::/47 maxlen: 47
Validation: Failed, certificate revoked on Mon 09 Sep 2024 07:28:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1322 (0x52a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914BF04/serialNumber=B01E7C1EDE102251EE60741E2E19F060303D71C9
Validity
Not Before: Sep 9 06:37:27 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=66de97a7-7480
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:82:d8:8d:1d:c3:d9:ee:f9:36:c4:0a:63:30:
21:3e:b3:04:89:63:96:5b:2e:95:be:51:0f:ee:7d:
00:71:f4:8d:89:9a:dd:e4:74:9e:b0:d8:7f:1b:26:
2f:e5:86:c2:c8:76:a1:7d:f3:22:56:0f:01:6c:14:
fe:57:c6:32:6c:7e:56:a1:70:50:93:e7:04:ea:86:
9f:81:dc:5d:ad:c7:d7:2a:08:d6:cf:90:2d:91:d3:
9b:e8:19:76:27:5c:4e:1a:fa:4c:c6:ed:8f:93:42:
7b:60:ed:b7:7e:df:46:81:d5:4a:c7:8d:5a:c4:3d:
22:76:80:06:65:06:0a:0b:3c:17:24:97:38:ee:9e:
0c:6e:45:31:67:9a:97:3b:e3:9a:bf:5d:97:8f:0a:
01:16:fd:0e:86:c5:1e:ce:b3:6d:74:b2:9b:35:ae:
b5:7c:65:a9:d3:4d:59:25:5f:28:6b:e9:8a:24:1e:
85:18:4b:ad:37:15:0f:04:45:8c:e8:87:bd:98:34:
da:77:a9:77:56:9c:bf:39:e2:ba:69:49:62:87:20:
14:26:5d:2a:86:ad:65:6f:d7:64:63:2f:1e:e4:d1:
dd:3c:98:13:4d:d2:3c:92:91:69:f6:8f:47:89:72:
ef:72:b0:ed:1b:84:db:bb:48:bc:54:df:4f:73:d9:
1f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:CA:AC:A1:0E:58:CA:85:53:04:19:A9:0A:51:75:0A:5E:95:D3:89
X509v3 Authority Key Identifier:
keyid:B0:1E:7C:1E:DE:10:22:51:EE:60:74:1E:2E:19:F0:60:30:3D:71:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914BF04/DA538A56EA2811EB9AE60B74C4F9AE02/sB58Ht4QIlHuYHQeLhnwYDA9cck.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sB58Ht4QIlHuYHQeLhnwYDA9cck.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BF04/DA538A56EA2811EB9AE60B74C4F9AE02/771D9E742C7211EFA8FB2D84C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.161.242.0/24
103.170.17.0/24
IPv6:
2400:bde0::/32
Signature Algorithm: sha256WithRSAEncryption
f0:2d:44:70:ee:77:b9:8a:15:c3:f3:f3:83:39:00:78:6a:f6:
2e:83:56:26:91:59:1f:a9:ac:ae:6e:3e:11:28:cb:1f:a0:9b:
e7:88:17:09:e8:6f:e4:b9:a6:15:bc:a8:7c:f4:9c:3b:5f:c8:
1f:51:cc:b2:58:dd:b2:9b:0b:ad:8e:0b:99:7a:be:e7:a3:91:
24:02:9c:40:94:40:12:cf:8e:9b:1b:7a:df:08:8a:38:35:1c:
d4:a5:50:36:21:ee:18:7f:2a:20:49:17:5f:b9:95:a0:13:c1:
01:83:93:5d:05:a4:05:cd:a7:85:aa:db:58:2b:52:73:35:6f:
a3:d2:9d:78:43:ea:cd:0d:f1:6d:95:87:8c:e7:da:6b:bc:b7:
11:da:23:c1:e6:c0:b6:60:c7:fa:cb:a8:22:3d:0f:b3:e5:e5:
f4:6a:25:78:9a:04:3c:c1:d1:3a:bb:60:a7:0a:75:ce:40:c8:
26:09:be:94:2f:f2:4d:72:6e:7e:f7:cd:8e:44:89:a9:d1:6f:
06:fa:5a:8c:81:07:6c:50:67:45:4c:fa:ed:00:d4:16:ed:ca:
02:df:50:37:ce:dc:42:15:af:b2:17:35:93:73:3e:c1:29:0b:
97:d7:4e:b9:5a:e7:36:46:2b:a3:0d:ba:f0:d6:ce:fc:89:8f:
16:44:66:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 09:22:35 2024 by rpki-client on console-fra.rpki-client.org