Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/A9B82454DC2511EAB0D69817C4F9AE02.roa
File: A9B82454DC2511EAB0D69817C4F9AE02.roa (raw, json)
Hash identifier: 7zcaxasS3HdJomPdkXxs2Fkh3KRyvIYNnaN6qKz4vKg=
Subject key identifier: 33:3B:E3:76:B4:E2:53:53:E8:10:00:66:FC:73:53:D2:C8:1A:FE:8B
Certificate issuer: /CN=A91758DF/serialNumber=426B620C040C83946A4B7586436ECBD0FC4546CF
Certificate serial: 0568
Authority key identifier: 42:6B:62:0C:04:0C:83:94:6A:4B:75:86:43:6E:CB:D0:FC:45:46:CF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmtiDAQMg5RqS3WGQ27L0PxFRs8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/A9B82454DC2511EAB0D69817C4F9AE02.roa
Signing time: Fri 01 Jul 2022 23:09:27 +0000
ROA not before: Fri 01 Jul 2022 23:09:27 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 36492
IP address blocks: 103.152.126.0/23 maxlen: 24
103.235.92.0/22 maxlen: 24
2406:2d40::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1384 (0x568)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91758DF/serialNumber=426B620C040C83946A4B7586436ECBD0FC4546CF
Validity
Not Before: Jul 1 23:09:27 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=62bf7ea6-daa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:16:78:45:21:01:b2:58:4b:a3:2d:61:a8:46:
d5:da:99:e6:c9:e2:65:de:ad:16:35:76:42:ba:7e:
29:b8:87:08:d0:17:62:6f:ee:ef:1b:dc:b3:41:ba:
41:28:a7:5d:81:24:7d:8d:f6:eb:d0:0d:51:97:46:
43:75:4c:ec:66:b3:f2:6e:04:b7:45:30:6c:b0:f4:
d7:8b:1c:3d:4d:c9:0d:73:4b:a6:9d:a3:9e:05:35:
ac:5f:31:d9:93:c8:a6:ba:99:54:80:1f:ca:53:9c:
e3:9c:63:dd:9d:3d:0d:9a:25:b5:de:3c:1d:a5:87:
ce:39:3b:09:3b:e8:61:27:4b:23:89:2e:23:f2:43:
93:d8:b0:16:12:db:2a:4b:70:bf:ef:57:30:4e:af:
53:ce:c0:89:ca:4d:18:7f:1e:84:2b:38:77:4f:be:
6f:01:61:12:2f:68:29:76:4a:bd:41:99:e8:63:bd:
02:e4:90:4a:87:87:63:e9:8a:a3:f9:d3:00:00:12:
97:23:72:c9:65:b6:f9:bd:82:c2:ec:e4:af:8e:50:
dd:cb:12:86:17:1b:6c:02:94:3c:71:19:c9:b0:83:
f3:13:77:93:70:d2:e6:a4:d1:96:37:30:50:ea:5e:
7f:1b:3d:bd:1d:0a:a5:7a:af:f3:bf:46:fa:09:92:
11:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:3B:E3:76:B4:E2:53:53:E8:10:00:66:FC:73:53:D2:C8:1A:FE:8B
X509v3 Authority Key Identifier:
keyid:42:6B:62:0C:04:0C:83:94:6A:4B:75:86:43:6E:CB:D0:FC:45:46:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/QmtiDAQMg5RqS3WGQ27L0PxFRs8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmtiDAQMg5RqS3WGQ27L0PxFRs8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/A9B82454DC2511EAB0D69817C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.126.0/23
103.235.92.0/22
IPv6:
2406:2d40::/32
Signature Algorithm: sha256WithRSAEncryption
49:f6:81:d3:3b:49:ab:86:16:97:a8:5a:7f:d4:2c:f5:f5:e6:
26:b6:f4:b8:26:51:af:ff:94:13:4c:10:c7:ab:42:27:b6:58:
93:c8:e1:d3:b0:5b:e9:54:d7:93:32:df:07:10:1c:0b:97:74:
fd:ea:97:83:3e:57:a4:4e:c6:96:d8:8d:3e:c8:c4:b6:16:52:
cb:8b:be:8f:68:6f:ab:72:b4:5a:ee:85:5e:db:33:88:76:1f:
df:cb:08:24:da:b7:e7:5d:d8:16:80:8f:43:c8:30:6c:6b:60:
49:a7:2a:7d:75:4f:ac:bb:71:c8:44:c7:fa:24:3e:f2:39:d4:
7c:cd:54:b3:c0:c0:f0:ea:ca:3a:47:13:96:77:13:af:8e:00:
2d:0d:43:9a:75:31:4a:00:35:14:bf:69:91:06:e6:4c:f2:25:
48:b9:0e:65:f2:27:8e:76:f3:8b:11:93:74:5f:59:2b:8f:da:
39:8e:48:ef:87:dc:43:87:5a:17:3b:7b:ec:2a:8d:20:f2:f3:
6f:d0:3c:d9:d4:ee:6a:b5:a3:da:6c:98:95:1f:f8:e7:c8:14:
e7:42:82:39:97:a0:f8:fa:d5:d3:5b:d9:c9:0b:d8:1b:cf:43:
b9:51:c8:f4:05:af:2f:16:fd:c4:e3:07:81:bb:f4:4e:0a:30:
5c:97:87:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:44 2023 by rpki-client on console-ams.rpki-client.org