Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916BCDF/F858344EE36D11E8956F3516C4F9AE02/0E5D2BE6985411EE90876239C4F9AE02.roa
File: 0E5D2BE6985411EE90876239C4F9AE02.roa (raw, json)
Hash identifier: 9STN/GZqP8qZVt/gOUmxkDLVFUgPwwdtJvy7Lg9n+tY=
Subject key identifier: B7:DB:EF:2B:80:0D:3F:AA:17:73:DA:D3:D7:93:32:55:C9:F0:E8:F2
Certificate issuer: /CN=A916BCDF/serialNumber=51AAAC7F6F58F747072C87EC2F4878EF1CB8F4CE
Certificate serial: 110A
Authority key identifier: 51:AA:AC:7F:6F:58:F7:47:07:2C:87:EC:2F:48:78:EF:1C:B8:F4:CE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uaqsf29Y90cHLIfsL0h47xy49M4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916BCDF/F858344EE36D11E8956F3516C4F9AE02/0E5D2BE6985411EE90876239C4F9AE02.roa
Signing time: Mon 11 Dec 2023 18:35:28 +0000
ROA not before: Mon 11 Dec 2023 18:35:28 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 20473
IP address blocks: 43.224.32.0/22 maxlen: 24
103.43.72.0/22 maxlen: 24
202.182.96.0/20 maxlen: 24
202.182.112.0/20 maxlen: 24
2401:c080:1000::/38 maxlen: 38
2401:c080:1400::/38 maxlen: 38
2401:c080:1800::/38 maxlen: 38
2401:c080:18fb::/48 maxlen: 48
2401:c080:1c00::/38 maxlen: 38
2401:c080:2000::/38 maxlen: 38
2401:c080:2400::/38 maxlen: 38
2401:c080:3000::/38 maxlen: 38
2401:c080:3400::/38 maxlen: 38
2401:c080:3800::/38 maxlen: 38
Validation: Failed, certificate revoked on Mon 11 Dec 2023 18:40:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4362 (0x110a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916BCDF/serialNumber=51AAAC7F6F58F747072C87EC2F4878EF1CB8F4CE
Validity
Not Before: Dec 11 18:35:28 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=65775670-49ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4a:4d:a1:91:65:d4:f5:ec:9e:22:9a:3e:c6:
cd:c6:bf:d7:cb:1e:cf:08:1f:7b:13:86:ec:1c:a4:
fe:44:ed:ba:11:e5:bc:7f:2a:39:ad:b9:01:b0:f1:
a1:77:bb:98:1b:54:da:ad:4a:1d:08:c2:fb:06:53:
8c:d5:71:e2:6d:ec:0d:8b:97:f0:90:6e:c0:b2:ce:
fe:67:e4:db:87:6d:da:bb:d4:9d:c8:39:54:c7:21:
44:7b:f4:6b:f1:ec:bb:e6:94:58:ee:9a:fd:6f:f2:
97:c5:2c:57:19:c5:41:b7:dd:eb:9d:b2:7c:4e:db:
f6:e5:da:e0:9f:39:67:e7:63:c3:1d:33:9e:90:27:
9b:56:63:26:98:2f:68:f2:e7:0b:69:ba:bc:bb:55:
a6:1b:6b:14:78:a5:98:30:8c:b5:d5:03:e4:3b:fa:
8d:49:cf:75:54:38:18:95:b5:ff:08:3f:83:d1:7e:
e2:53:dd:5c:c0:13:ba:cf:89:74:af:7b:75:65:89:
ff:e1:a9:45:d3:c2:10:bc:89:c6:9b:fb:bc:30:c1:
ea:0e:89:28:ee:78:80:b2:ae:bf:57:6d:67:d0:b3:
85:77:7d:e4:cb:00:0f:2b:16:31:19:93:56:1a:20:
04:75:7d:c5:07:2f:f1:32:20:e5:ca:7f:72:6f:18:
dd:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:DB:EF:2B:80:0D:3F:AA:17:73:DA:D3:D7:93:32:55:C9:F0:E8:F2
X509v3 Authority Key Identifier:
keyid:51:AA:AC:7F:6F:58:F7:47:07:2C:87:EC:2F:48:78:EF:1C:B8:F4:CE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916BCDF/F858344EE36D11E8956F3516C4F9AE02/Uaqsf29Y90cHLIfsL0h47xy49M4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uaqsf29Y90cHLIfsL0h47xy49M4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BCDF/F858344EE36D11E8956F3516C4F9AE02/0E5D2BE6985411EE90876239C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.224.32.0/22
103.43.72.0/22
202.182.96.0/19
IPv6:
2401:c080:1000::-2401:c080:27ff:ffff:ffff:ffff:ffff:ffff
2401:c080:3000::-2401:c080:3bff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
35:92:d7:76:fa:f6:c5:da:c5:48:ea:7f:06:39:2d:44:43:5f:
15:2b:c9:f9:ef:1d:bb:d3:21:aa:e0:51:e3:4e:d3:eb:2e:63:
1b:aa:38:94:08:77:f8:1e:f5:bc:b7:36:63:3a:10:e5:f4:b7:
b9:37:db:a0:bf:54:f3:c8:f1:5a:7f:a2:4f:d1:d2:4c:38:bc:
f2:bb:f7:39:07:a2:96:03:cb:c2:fa:91:41:03:ad:88:d6:e2:
93:cd:45:64:31:52:32:a5:83:38:37:9c:20:db:78:e3:f3:a7:
43:f6:ea:02:a7:26:05:57:00:19:e9:bb:6b:89:ea:46:95:5c:
69:be:04:d5:4d:47:c2:44:12:8d:5f:42:0c:7b:ed:04:44:d8:
d9:76:c0:16:fc:d0:a7:50:e9:a8:1e:5a:13:d9:63:2d:42:6d:
c6:1c:3b:65:07:08:92:bb:6c:a9:ea:49:57:a4:8c:fe:4e:d9:
30:19:0b:80:b7:79:be:26:b4:8a:66:f0:ea:27:10:50:3e:4a:
0e:94:b8:3b:c8:e6:d4:61:d5:18:d7:b6:58:83:38:d1:ff:5e:
e8:2a:89:06:d2:9a:d0:73:82:4d:a0:e3:93:1c:ed:de:d5:4a:
1f:dc:4d:e0:16:d7:dc:31:c9:ba:11:b8:43:69:97:96:df:10:
78:0f:e9:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:20 2024 by rpki-client on console-ams.rpki-client.org