Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/36036734FD5B11EEAC213C56C4F9AE02.roa
File: 36036734FD5B11EEAC213C56C4F9AE02.roa (raw, json)
Hash identifier: 6UptQzq95VwkKH66maii0Y63NfPMfrES4xlyndd7QZY=
Subject key identifier: 93:54:BA:F0:13:40:23:34:82:31:69:FD:2E:B7:26:EC:5B:03:E7:42
Certificate issuer: /CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918
Certificate serial: 0AC3
Authority key identifier: 7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/36036734FD5B11EEAC213C56C4F9AE02.roa
Signing time: Mon 05 Aug 2024 04:48:07 +0000
ROA not before: Mon 05 Aug 2024 04:48:07 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 15830
IP address blocks: 27.111.128.0/22 maxlen: 22
103.8.176.0/22 maxlen: 22
103.8.180.0/22 maxlen: 22
119.27.0.0/19 maxlen: 19
119.27.32.0/20 maxlen: 20
119.27.52.0/22 maxlen: 22
119.27.56.0/22 maxlen: 22
119.27.60.0/23 maxlen: 23
122.50.64.0/19 maxlen: 19
122.50.104.0/21 maxlen: 21
122.50.112.0/22 maxlen: 22
180.189.56.0/21 maxlen: 21
202.167.232.0/24 maxlen: 24
202.167.234.0/23 maxlen: 23
202.167.248.0/23 maxlen: 23
202.167.255.0/24 maxlen: 24
202.177.192.0/24 maxlen: 24
202.177.199.0/24 maxlen: 24
202.177.200.0/23 maxlen: 23
202.177.201.0/24 maxlen: 24
202.177.204.0/23 maxlen: 23
2407:b000::/32 maxlen: 32
2407:b001::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 06 Aug 2024 01:49:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2755 (0xac3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918
Validity
Not Before: Aug 5 04:48:07 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=66b05987-ddcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c1:da:c0:91:e3:c9:ea:b5:08:c8:d9:32:d6:
9e:9b:c0:7d:47:80:79:02:00:a1:f6:43:ae:26:4f:
81:23:e3:f9:c1:38:47:c5:59:a7:04:67:39:8a:01:
e0:ac:53:d3:ec:dd:4c:e7:94:d0:0c:b9:de:c0:58:
41:7a:0c:60:0a:6d:c4:6b:96:26:9b:c2:5e:32:35:
05:1b:06:db:23:94:1f:2e:93:38:6a:84:2d:ae:48:
0b:cd:ef:aa:12:89:14:be:09:8e:f0:06:4d:46:26:
ca:33:40:41:66:52:f3:c5:b4:97:4d:0e:33:11:38:
6f:4f:8f:13:25:7e:51:da:1f:32:3e:c1:fb:d6:15:
4f:c7:d7:21:69:b4:be:49:e2:38:d3:ea:68:10:97:
50:11:de:94:9a:23:5b:4a:9d:30:d0:0a:1b:de:33:
97:bd:bc:99:f9:ac:87:de:fb:8c:81:48:74:42:46:
09:8b:ca:53:4a:e2:f7:9f:d4:33:f2:b8:5a:b9:e5:
9d:57:94:45:1e:79:02:aa:4f:13:99:a1:9d:f3:07:
7f:97:77:51:d6:d8:c8:c2:1e:b1:67:ea:48:f3:4a:
f3:66:7b:4f:48:5c:55:a6:54:35:f7:65:4c:6c:38:
82:d3:b2:c0:de:05:0d:d7:30:87:c7:40:7c:e0:a3:
dd:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:54:BA:F0:13:40:23:34:82:31:69:FD:2E:B7:26:EC:5B:03:E7:42
X509v3 Authority Key Identifier:
keyid:7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/36036734FD5B11EEAC213C56C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.111.128.0/22
103.8.176.0/21
119.27.0.0-119.27.47.255
119.27.52.0-119.27.61.255
122.50.64.0/19
122.50.104.0-122.50.115.255
180.189.56.0/21
202.167.232.0/24
202.167.234.0/23
202.167.248.0/23
202.167.255.0/24
202.177.192.0/24
202.177.199.0-202.177.201.255
202.177.204.0/23
IPv6:
2407:b000::/31
Signature Algorithm: sha256WithRSAEncryption
78:45:36:2a:a0:6d:d7:11:b2:93:ab:2d:00:e3:be:89:65:67:
02:89:69:0a:d0:8d:65:ac:c8:be:21:8a:f9:15:3c:ff:05:2e:
c8:89:4a:b2:3e:c2:7c:bb:7f:dd:b1:b1:f2:17:f3:3f:c9:c3:
f1:26:c6:23:47:59:a7:06:9d:56:cd:40:0c:f5:df:30:6c:91:
5f:17:bf:eb:03:17:fd:81:dc:42:b1:49:3d:19:6f:94:90:3b:
c8:b0:89:42:33:10:76:e0:74:4b:c9:b3:7c:c5:e1:69:25:67:
95:af:86:6b:4f:15:8f:56:c3:07:17:97:79:57:26:c5:f4:3c:
0b:77:9c:59:c3:04:83:71:fa:09:61:38:2f:15:64:34:4d:98:
bd:96:71:5a:2c:08:da:af:e0:19:d4:a1:d4:bf:1a:6f:08:53:
76:c5:5f:44:3d:89:5c:7c:2d:ec:0c:ce:59:90:95:41:d1:e3:
39:f6:20:a8:21:cd:15:fd:72:3f:77:86:97:0a:4f:64:87:53:
8d:6e:3a:b3:e0:4b:12:ec:03:a8:78:bf:a3:e7:0d:e8:21:b9:
fb:75:4f:f5:45:5f:9c:37:ec:68:d8:24:64:32:cc:43:38:9a:
bf:e2:9a:14:6e:b7:3b:c6:f4:e3:f6:cc:4d:97:87:d2:3d:35:
c9:c2:2c:b6
-----BEGIN CERTIFICATE-----
MIIF8DCCBNigAwIBAgICCsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NThFM0YxMTAvBgNVBAUTKDdFMzEzQUI3RkYyNkU3ODNFMDNDMDc4NTE2MTI3NTE4
ODFBRTQ5MTgwHhcNMjQwODA1MDQ0ODA3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmIwNTk4Ny1kZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxcHawJHjyeq1CMjZMtaem8B9R4B5AgCh9kOuJk+BI+P5wThHxVmnBGc5igHg
rFPT7N1M55TQDLnewFhBegxgCm3Ea5Ymm8JeMjUFGwbbI5QfLpM4aoQtrkgLze+q
EokUvgmO8AZNRibKM0BBZlLzxbSXTQ4zEThvT48TJX5R2h8yPsH71hVPx9chabS+
SeI40+poEJdQEd6UmiNbSp0w0Aob3jOXvbyZ+ayH3vuMgUh0QkYJi8pTSuL3n9Qz
8rhaueWdV5RFHnkCqk8TmaGd8wd/l3dR1tjIwh6xZ+pI80rzZntPSFxVplQ192VM
bDiC07LA3gUN1zCHx0B84KPdAwIDAQABo4IDFDCCAxAwHQYDVR0OBBYEFJNUuvAT
QCM0gjFp/S63JuxbA+dCMB8GA1UdIwQYMBaAFH4xOrf/JueD4DwHhRYSdRiBrkkY
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEUzRi9DMjQzMjJCQTU0
NDYxMUVBOEMwNTY1MURDNEY5QUUwMi9makU2dF84bTU0UGdQQWVGRmhKMUdJR3VT
UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2ZqRTZ0XzhtNTRQZ1BBZUZGaEoxR0lHdVNSZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NThFM0YvQzI0MzIyQkE1NDQ2MTFFQThDMDU2NTFEQzRGOUFFMDIvMzYwMzY3MzRG
RDVCMTFFRUFDMjEzQzU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgZ0GCCsGAQUFBwEHAQH/
BIGNMIGKMHkEAgABMHMDBAIbb4ADBANnCLAwCwMDAHcbAwQEdxsgMAwDBAJ3GzQD
BAF3GzwDBAV6MkAwDAMEA3oyaAMEAnoycAMEA7S9OAMEAMqn6AMEAcqn6gMEAcqn
+AMEAMqn/wMEAMqxwDAMAwQAyrHHAwQByrHIAwQByrHMMA0EAgACMAcDBQEkB7AA
MA0GCSqGSIb3DQEBCwUAA4IBAQB4RTYqoG3XEbKTqy0A476JZWcCiWkK0I1lrMi+
IYr5FTz/BS7IiUqyPsJ8u3/dsbHyF/M/ycPxJsYjR1mnBp1WzUAM9d8wbJFfF7/r
Axf9gdxCsUk9GW+UkDvIsIlCMxB24HRLybN8xeFpJWeVr4ZrTxWPVsMHF5d5VybF
9DwLd5xZwwSDcfoJYTgvFWQ0TZi9lnFaLAjar+AZ1KHUvxpvCFN2xV9EPYlcfC3s
DM5ZkJVB0eM59iCoIc0V/XI/d4aXCk9kh1ONbjqz4EsS7AOoeL+j5w3oIbn7dU/1
RV+cN+xo2CRkMsxDOJq/4poUbrc7xvTj9sxNl4fSPTXJwiy2
-----END CERTIFICATE-----
Generated at Tue Aug 6 03:48:49 2024 by rpki-client on console-ams.rpki-client.org