Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/EA0C9FD2607211EF9B3A3E1CC4F9AE02.roa
File: EA0C9FD2607211EF9B3A3E1CC4F9AE02.roa (raw, json)
Hash identifier: XFJ7017TjaSbLV09c2Ifnk2fenUAch8vA1eO6ztMi8M=
Subject key identifier: 27:95:48:47:12:E4:93:94:19:FD:9A:5F:5E:7D:80:8F:BF:4F:0A:55
Certificate issuer: /CN=A914E93F/serialNumber=B2F8AB00D57464DD5D05A45A47C420F5F896B8FC
Certificate serial: 1338
Authority key identifier: B2:F8:AB:00:D5:74:64:DD:5D:05:A4:5A:47:C4:20:F5:F8:96:B8:FC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/EA0C9FD2607211EF9B3A3E1CC4F9AE02.roa
Signing time: Thu 22 Aug 2024 10:40:14 +0000
ROA not before: Thu 22 Aug 2024 10:40:14 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 135542
IP address blocks: 14.192.48.0/24 maxlen: 24
14.192.49.0/24 maxlen: 24
14.192.50.0/24 maxlen: 24
14.192.51.0/24 maxlen: 24
103.64.12.0/24 maxlen: 24
103.64.13.0/24 maxlen: 24
103.78.242.0/24 maxlen: 24
2001:df2:8e00::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 27 Aug 2024 12:53:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4920 (0x1338)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914E93F/serialNumber=B2F8AB00D57464DD5D05A45A47C420F5F896B8FC
Validity
Not Before: Aug 22 10:40:14 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66c7158e-6bd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:26:26:b3:9b:98:e0:eb:d1:72:f7:f0:c6:cd:
95:5e:fc:ea:bf:25:42:3c:29:7f:b6:f8:d5:23:c6:
36:d4:fa:3a:71:ee:7a:e9:db:37:77:6b:e0:f8:12:
98:06:91:b4:f2:37:60:63:72:b3:d9:c5:46:a2:d9:
2c:e7:ab:56:8f:1b:84:d3:c5:48:4d:82:7e:83:7b:
62:e4:a1:2d:9c:cc:9e:e0:c9:c1:1c:3c:a4:4a:12:
3b:50:8d:85:25:63:03:57:f7:4e:04:65:39:56:72:
3d:c7:6a:69:5b:c1:69:b9:35:a1:11:6a:2a:94:80:
04:6e:16:57:3f:16:4f:ef:fd:1e:8f:cb:1a:e5:45:
6f:27:10:95:bf:5f:63:7e:c1:f6:45:1c:2f:cf:f9:
0e:76:76:cd:02:5c:bf:38:1b:6d:4b:f6:6e:c0:5f:
b3:63:63:e0:c2:13:76:5f:bd:41:2a:79:c1:9e:28:
0e:91:d2:b4:bb:92:4a:1a:52:81:e3:6c:2a:c1:05:
1f:ad:6d:e8:88:fd:11:34:95:b8:0f:61:3a:22:b6:
ee:f9:75:0f:1e:ac:1e:82:bb:95:fd:9f:7d:c7:50:
35:30:69:b2:c2:90:86:b5:ea:9d:11:48:ad:a5:0a:
42:6a:9a:bd:87:34:1c:b7:ea:4e:ec:92:60:01:2f:
76:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:95:48:47:12:E4:93:94:19:FD:9A:5F:5E:7D:80:8F:BF:4F:0A:55
X509v3 Authority Key Identifier:
keyid:B2:F8:AB:00:D5:74:64:DD:5D:05:A4:5A:47:C4:20:F5:F8:96:B8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/svirANV0ZN1dBaRaR8Qg9fiWuPw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/EA0C9FD2607211EF9B3A3E1CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.192.48.0/22
103.64.12.0/23
103.78.242.0/24
IPv6:
2001:df2:8e00::/48
Signature Algorithm: sha256WithRSAEncryption
2f:07:64:0b:51:eb:80:9f:29:b8:dc:91:b6:f0:30:f1:29:9f:
85:b9:1b:51:f9:94:f3:53:a4:1a:81:8a:3c:bd:f1:47:19:65:
0f:21:b4:c6:31:ae:b4:55:56:8d:9b:79:2c:fe:8e:80:a9:21:
27:1d:a0:ed:1f:68:d9:b1:03:3a:84:9e:f8:1a:fb:50:69:95:
2c:76:10:5d:61:c4:45:2f:a9:d2:0e:f3:70:10:21:ce:4d:c1:
96:f5:dd:83:9e:3d:04:f7:ba:db:c9:18:46:a3:43:1a:b8:59:
84:60:18:ff:54:4a:5f:28:ed:50:b7:48:97:35:13:04:19:65:
1e:43:b0:20:bf:0d:53:7b:79:dd:82:40:ca:ca:b7:2e:cc:5d:
e4:25:0d:ee:31:ad:54:a1:eb:5d:16:93:57:98:b8:5c:7c:95:
c4:8b:dc:37:e8:aa:4b:98:f2:78:3c:1d:aa:a3:eb:03:13:17:
a5:9f:0c:d5:dc:ea:27:b9:df:05:62:ca:5c:8d:95:5b:15:7f:
1b:da:d0:a4:ac:ec:1a:4e:2d:13:44:fd:2f:4a:83:c5:3e:e7:
7a:88:e2:5e:35:2f:e6:e9:82:69:af:ef:26:0a:96:37:19:be:
e0:02:55:f4:1f:cf:1a:42:20:9b:85:37:a3:81:be:dd:3b:07:
7e:78:7c:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 27 16:00:27 2024 by rpki-client on console-fra.rpki-client.org