Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91776E4/47428870E9F011ECA8358A84C4F9AE02/81E511E445B811EEB0B9BB7BC4F9AE02.roa
File: 81E511E445B811EEB0B9BB7BC4F9AE02.roa (raw, json)
Hash identifier: jjH5sZ3Ctj3WmLUjBcO0ypznS7Y9+1azo6ogUph4aac=
Subject key identifier: 78:FD:17:4D:66:FA:0E:34:D5:94:E4:B0:FA:30:13:66:91:09:10:52
Certificate issuer: /CN=A91776E4/serialNumber=5699A6F52F90057382CDE96F76526F7FCA0193A3
Certificate serial: 0205
Authority key identifier: 56:99:A6:F5:2F:90:05:73:82:CD:E9:6F:76:52:6F:7F:CA:01:93:A3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vpmm9S-QBXOCzelvdlJvf8oBk6M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91776E4/47428870E9F011ECA8358A84C4F9AE02/81E511E445B811EEB0B9BB7BC4F9AE02.roa
Signing time: Mon 25 Mar 2024 13:27:00 +0000
ROA not before: Mon 25 Mar 2024 13:27:00 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 132721
IP address blocks: 45.125.216.0/24 maxlen: 24
45.125.217.0/24 maxlen: 24
45.125.218.0/24 maxlen: 24
45.125.219.0/24 maxlen: 24
103.93.46.0/24 maxlen: 24
103.98.112.0/24 maxlen: 24
103.98.114.0/24 maxlen: 24
103.98.115.0/24 maxlen: 24
103.194.104.0/24 maxlen: 24
103.194.105.0/24 maxlen: 24
103.194.106.0/24 maxlen: 24
103.194.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jun 2024 05:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 517 (0x205)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91776E4/serialNumber=5699A6F52F90057382CDE96F76526F7FCA0193A3
Validity
Not Before: Mar 25 13:27:00 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=66017ba4-2491
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a2:8f:fc:e7:94:6e:c8:45:6a:64:0a:fe:19:
c0:88:15:b2:f1:c0:d5:f2:b6:2b:9e:11:1c:8e:62:
1d:39:0d:be:89:75:2b:3a:3d:29:03:d5:eb:88:03:
e7:bb:2a:f9:e0:98:c8:d4:b2:81:53:3f:00:50:d0:
ac:47:3d:04:cd:cc:cf:50:db:7b:67:b4:09:e9:1a:
e5:9e:77:63:a9:58:8a:2d:09:07:a8:c9:62:74:78:
f0:91:f1:82:a5:7f:f1:fa:de:c6:7f:fd:bc:62:31:
25:a7:0b:04:23:b6:8b:86:08:55:56:88:ad:ab:0f:
bd:b3:dd:a7:b8:e9:17:fd:0c:24:cf:6e:54:ec:37:
3a:27:3e:42:54:52:9c:30:0d:76:8d:87:f7:93:64:
7f:93:a9:aa:7e:ce:fb:eb:7f:ad:28:05:f4:29:2c:
8a:1d:39:95:60:7b:dc:7a:b2:77:e2:df:ef:dc:73:
15:fd:89:de:72:72:c7:30:c5:1c:f2:d4:fe:2b:0f:
b6:ee:9d:f2:f4:72:c6:fa:58:56:56:c4:aa:7c:e7:
ab:0e:f3:47:10:10:c0:7a:d4:47:5d:05:29:82:3d:
d0:3e:2f:55:01:7a:5e:31:88:33:38:48:c8:12:90:
89:41:c8:af:9a:4c:22:ed:16:db:02:ac:1f:6d:f2:
6f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:FD:17:4D:66:FA:0E:34:D5:94:E4:B0:FA:30:13:66:91:09:10:52
X509v3 Authority Key Identifier:
keyid:56:99:A6:F5:2F:90:05:73:82:CD:E9:6F:76:52:6F:7F:CA:01:93:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91776E4/47428870E9F011ECA8358A84C4F9AE02/Vpmm9S-QBXOCzelvdlJvf8oBk6M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vpmm9S-QBXOCzelvdlJvf8oBk6M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91776E4/47428870E9F011ECA8358A84C4F9AE02/81E511E445B811EEB0B9BB7BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.125.216.0/22
103.93.46.0/24
103.98.112.0/24
103.98.114.0/23
103.194.104.0/22
Signature Algorithm: sha256WithRSAEncryption
55:ac:33:f8:52:5c:95:52:b7:5c:20:a2:01:9f:58:17:25:d1:
24:d0:60:52:15:8f:91:a4:ef:30:f0:28:ce:dc:e5:4b:45:41:
3d:9b:fb:6d:61:d4:3a:ce:92:37:20:06:00:95:37:fb:9e:59:
a9:4f:29:e7:c4:70:a5:d9:73:db:a2:48:71:b0:7c:e5:99:85:
0c:ca:9a:26:b7:79:c1:4b:b2:67:15:e0:39:ca:04:d4:9b:47:
84:f0:82:96:fd:96:ff:8d:45:87:a5:48:d7:36:4f:87:27:04:
67:5d:53:86:b8:0c:98:41:12:9b:91:dd:91:2c:a4:17:53:00:
3a:7f:0e:91:49:e6:6b:dc:b5:0d:ca:d8:b9:39:d9:9a:3c:a2:
62:b0:b5:ae:d6:60:d3:97:83:c9:48:e4:19:98:a7:bb:c6:ad:
c0:9a:8a:32:91:af:6b:d7:cf:22:0a:bb:f1:a1:27:da:a4:81:
dd:1e:c6:7b:67:f0:62:4b:79:58:cb:03:37:dc:71:02:f5:f7:
bb:2e:a8:28:40:38:56:a7:66:ca:7b:8e:c0:bc:ec:5c:fb:34:
68:1c:b8:d5:8a:00:0d:d7:5f:ff:50:d7:2b:eb:dc:25:cf:de:
f0:2e:38:02:72:b3:f8:4e:83:c0:39:cf:5e:b4:9c:59:99:34:
d7:41:56:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 27 07:00:51 2024 by rpki-client on console-fra.rpki-client.org