Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9160455/A55E4F9611F511EABAB82028C4F9AE02/817F91D43D0211EEBD24F074C4F9AE02.roa
File: 817F91D43D0211EEBD24F074C4F9AE02.roa (raw, json)
Hash identifier: Mnl1APw5pyAiGhPm9WSAqCQPexu8VOUGhrGaXfPiDas=
Subject key identifier: 38:84:7E:9D:8A:12:7C:53:2B:D0:F3:6F:C9:4C:BC:31:D9:E5:97:E7
Certificate issuer: /CN=A9160455/serialNumber=0FA9E533E85A183C14530008A8B9623F856D5DEB
Certificate serial: 0B26
Authority key identifier: 0F:A9:E5:33:E8:5A:18:3C:14:53:00:08:A8:B9:62:3F:85:6D:5D:EB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D6nlM-haGDwUUwAIqLliP4VtXes.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9160455/A55E4F9611F511EABAB82028C4F9AE02/817F91D43D0211EEBD24F074C4F9AE02.roa
Signing time: Tue 30 Jan 2024 19:47:42 +0000
ROA not before: Tue 30 Jan 2024 19:47:42 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 131216
IP address blocks: 103.127.84.0/22 maxlen: 22
103.127.84.0/23 maxlen: 23
103.127.84.0/24 maxlen: 24
103.127.85.0/24 maxlen: 24
103.127.87.0/24 maxlen: 24
2404:1d40::/32 maxlen: 32
2404:1d40::/36 maxlen: 36
2404:1d40::/48 maxlen: 48
2404:1d40:1::/48 maxlen: 48
2404:1d40:2::/48 maxlen: 48
2404:1d40:3::/48 maxlen: 48
2404:1d40:4::/48 maxlen: 48
2404:1d40:5::/48 maxlen: 48
2404:1d40:6::/48 maxlen: 48
2404:1d40:7::/48 maxlen: 48
2404:1d40:8::/48 maxlen: 48
2404:1d40:9::/48 maxlen: 48
2404:1d40:a::/48 maxlen: 48
2404:1d40:b::/48 maxlen: 48
2404:1d40:c::/48 maxlen: 48
2404:1d40:d::/48 maxlen: 48
2404:1d40:e::/48 maxlen: 48
2404:1d40:f::/48 maxlen: 48
2404:1d40:10::/48 maxlen: 48
2404:1d40:11::/48 maxlen: 48
2404:1d40:12::/48 maxlen: 48
2404:1d40:13::/48 maxlen: 48
2404:1d40:14::/48 maxlen: 48
2404:1d40:15::/48 maxlen: 48
2404:1d40:16::/48 maxlen: 48
2404:1d40:17::/48 maxlen: 48
2404:1d40:18::/48 maxlen: 48
2404:1d40:19::/48 maxlen: 48
2404:1d40:1a::/48 maxlen: 48
2404:1d40:1b::/48 maxlen: 48
2404:1d40:1c::/48 maxlen: 48
2404:1d40:1d::/48 maxlen: 48
2404:1d40:1e::/48 maxlen: 48
2404:1d40:1f::/48 maxlen: 48
2404:1d40:20::/48 maxlen: 48
2404:1d40:21::/48 maxlen: 48
2404:1d40:22::/48 maxlen: 48
2404:1d40:23::/48 maxlen: 48
2404:1d40:24::/48 maxlen: 48
2404:1d40:25::/48 maxlen: 48
2404:1d40:26::/48 maxlen: 48
2404:1d40:27::/48 maxlen: 48
2404:1d40:28::/48 maxlen: 48
2404:1d40:29::/48 maxlen: 48
2404:1d40:2a::/48 maxlen: 48
2404:1d40:2b::/48 maxlen: 48
2404:1d40:2c::/48 maxlen: 48
2404:1d40:2d::/48 maxlen: 48
2404:1d40:2e::/48 maxlen: 48
2404:1d40:2f::/48 maxlen: 48
2404:1d40:30::/48 maxlen: 48
2404:1d40:1000::/36 maxlen: 36
2404:1d40:2000::/36 maxlen: 36
2404:1d40:3000::/36 maxlen: 36
2404:1d40:4000::/36 maxlen: 36
2404:1d40:5000::/36 maxlen: 36
2404:1d40:6000::/36 maxlen: 36
2404:1d40:7000::/36 maxlen: 36
2404:1d40:8000::/36 maxlen: 36
2404:1d40:9000::/36 maxlen: 36
2404:1d40:b000::/36 maxlen: 36
2404:1d40:c000::/36 maxlen: 36
2404:1d40:d000::/36 maxlen: 36
2404:1d40:e000::/36 maxlen: 36
2404:1d40:f000::/36 maxlen: 36
Validation: Failed, certificate revoked on Thu 01 Feb 2024 11:08:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2854 (0xb26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9160455/serialNumber=0FA9E533E85A183C14530008A8B9623F856D5DEB
Validity
Not Before: Jan 30 19:47:42 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=65b9525e-ef53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:bd:69:4a:71:04:5e:19:3a:b2:98:91:10:ef:
ac:bb:51:fa:e3:c4:fa:f8:44:1d:8e:79:cd:4c:62:
92:9b:fb:47:e6:e1:5f:1d:33:7c:27:a7:9c:a1:8c:
00:a3:fe:ef:0d:25:a3:4a:1b:6e:bf:0a:ca:c3:1d:
ac:eb:91:1b:7a:d2:f9:bb:92:75:60:75:ae:d5:19:
6d:bf:e5:73:ee:41:cc:f7:69:a2:d6:66:95:38:f8:
38:8b:c7:30:03:da:74:67:4f:45:fb:ea:8b:bc:cb:
2d:22:ab:98:46:6d:e6:d9:73:69:29:08:fd:34:13:
dd:14:dc:22:c6:55:25:2a:92:18:44:d6:2a:99:44:
e5:a2:54:c4:42:f7:8e:7c:e4:3d:e4:05:78:02:80:
1e:88:6a:1e:e2:ce:73:4c:b5:b8:48:f0:34:f1:a4:
fc:a5:5a:9b:12:f9:dd:b9:33:99:69:ee:44:7d:54:
93:67:6b:2d:a8:20:9f:41:86:8b:5d:20:1b:e7:49:
7a:95:59:7e:c0:e3:39:65:2a:77:aa:70:94:b5:ae:
c8:61:4e:4d:3d:91:68:52:78:6a:86:ed:2f:21:47:
23:bf:0d:bd:29:39:ae:d8:65:64:58:3d:ea:f5:da:
aa:d4:e7:af:43:56:f3:6d:d8:62:81:28:66:a8:8b:
53:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:84:7E:9D:8A:12:7C:53:2B:D0:F3:6F:C9:4C:BC:31:D9:E5:97:E7
X509v3 Authority Key Identifier:
keyid:0F:A9:E5:33:E8:5A:18:3C:14:53:00:08:A8:B9:62:3F:85:6D:5D:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9160455/A55E4F9611F511EABAB82028C4F9AE02/D6nlM-haGDwUUwAIqLliP4VtXes.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D6nlM-haGDwUUwAIqLliP4VtXes.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160455/A55E4F9611F511EABAB82028C4F9AE02/817F91D43D0211EEBD24F074C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.84.0/22
IPv6:
2404:1d40::/32
Signature Algorithm: sha256WithRSAEncryption
09:df:16:32:06:96:08:78:24:d8:87:4d:bb:e6:7e:ed:50:38:
33:c3:50:8b:48:06:21:54:fb:5c:d9:ea:cf:63:3b:1e:22:cf:
a9:2c:99:3c:3c:5a:3b:cd:7e:ac:a8:42:92:50:bb:ef:95:0f:
f7:a4:97:de:23:74:08:70:45:de:a3:8c:00:44:69:15:a6:6d:
72:60:3b:63:2e:17:8e:41:ae:44:05:6c:85:62:dc:ca:ce:55:
43:d5:3f:da:ca:65:9c:a3:3e:85:fa:dc:05:09:e0:d0:5a:18:
39:be:ec:25:8a:d9:ba:74:fc:48:d2:d0:3d:8f:67:be:b3:cd:
02:4b:37:32:77:0f:0f:82:f3:ff:88:54:85:c3:cd:b3:97:03:
84:09:19:60:4f:31:4f:87:fb:79:b2:e7:1b:ee:1a:c5:9a:ba:
d2:68:2c:12:6a:2e:70:09:d6:fc:60:c0:63:68:c1:06:e6:57:
fe:0e:7c:09:a5:ac:49:6e:b3:d5:00:d4:0e:21:b3:95:1d:cd:
9c:b7:37:c6:22:7f:46:c1:a7:f2:cc:82:c2:b8:5f:2b:9e:b9:
9e:4e:74:a7:9a:90:8f:9b:fd:d4:43:8f:ce:c8:67:c6:ed:ae:
c5:8c:7b:5e:e6:b2:58:31:7b:5f:24:69:bd:99:40:62:17:91:
52:d7:42:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 1 16:10:59 2024 by rpki-client on console-fra.rpki-client.org