Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/5D5426B6A0D511EF88FD775CC4F9AE02.roa
File: 5D5426B6A0D511EF88FD775CC4F9AE02.roa (raw, json)
Hash identifier: 1ngpdsOv7znLndP6H0KqcxiOgW3C/wZJCh738ECT8rA=
Subject key identifier: 6B:D0:09:D8:AE:6A:79:AA:4A:2C:CA:16:B6:32:24:22:C9:3C:D0:0B
Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004
Certificate serial: 0160
Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/5D5426B6A0D511EF88FD775CC4F9AE02.roa
Signing time: Fri 15 Nov 2024 06:46:27 +0000
ROA not before: Fri 15 Nov 2024 06:46:27 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 150436
IP address blocks: 101.47.0.0/18 maxlen: 24
101.47.64.0/20 maxlen: 24
101.47.80.0/20 maxlen: 23
101.47.80.0/21 maxlen: 24
101.47.88.0/22 maxlen: 24
101.47.92.0/23 maxlen: 24
101.47.95.0/24 maxlen: 24
101.47.96.0/21 maxlen: 24
101.47.128.0/18 maxlen: 24
101.47.253.0/24 maxlen: 24
150.5.128.0/17 maxlen: 24
2401:4c20::/40 maxlen: 44
2401:4c20:100::/40 maxlen: 40
2401:4c20:200::/40 maxlen: 44
Validation: Failed, certificate revoked on Tue 19 Nov 2024 04:03:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 352 (0x160)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004
Validity
Not Before: Nov 15 06:46:27 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6736ee42-1d8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f9:9e:bb:90:a7:41:65:7c:10:dc:a2:51:33:
37:f9:03:74:28:e7:8c:1a:ca:08:e0:00:7f:1c:25:
a2:0c:69:59:e6:8c:52:e4:6c:68:c9:c0:f1:39:bf:
13:09:a2:16:04:65:81:12:e2:53:2a:1b:b3:b8:80:
2f:6c:b9:6d:1f:3e:8c:c4:62:02:35:1d:43:19:66:
d6:60:95:3c:88:d2:a5:9e:7b:b9:96:83:2e:d7:ee:
32:9f:34:56:13:19:37:0a:36:8c:9d:f5:c4:3a:1b:
fa:0b:ce:fc:8a:d9:d0:a7:3e:89:13:cc:85:e4:53:
43:46:cb:f3:73:fd:13:19:f8:59:d7:2f:28:12:6d:
1e:16:50:1e:68:21:b0:ba:0a:45:f3:28:03:fd:77:
8e:12:db:6e:53:bb:4c:0d:0a:24:b6:d4:d7:88:55:
b8:46:d8:b9:0b:e2:ee:d1:78:9c:60:68:22:1f:f8:
31:16:e1:6d:b5:e3:47:1d:dc:96:a1:ff:a8:f2:89:
89:af:67:56:df:bd:34:a5:28:77:ab:3a:66:57:ff:
41:51:1c:f3:dc:21:5f:3e:a2:5a:53:d9:7e:62:6a:
14:9d:5c:d3:12:38:ac:27:02:e5:c5:a1:c8:3f:4e:
36:24:f5:b2:58:bc:de:74:b1:ac:a0:07:57:98:e9:
62:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D0:09:D8:AE:6A:79:AA:4A:2C:CA:16:B6:32:24:22:C9:3C:D0:0B
X509v3 Authority Key Identifier:
keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/5D5426B6A0D511EF88FD775CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
101.47.0.0-101.47.103.255
101.47.128.0/18
101.47.253.0/24
150.5.128.0/17
IPv6:
2401:4c20::-2401:4c20:2ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
9f:fb:18:a6:ad:a9:59:04:67:11:60:5f:a4:e7:75:69:60:ea:
00:02:62:41:de:f7:a2:de:ad:a7:8b:d6:2f:e3:b6:91:8d:cb:
f8:bd:90:81:08:8f:e8:7c:8c:69:8e:8f:cb:5f:7f:60:63:00:
b2:d8:f7:a3:0a:d4:a3:8d:53:19:ee:6e:8b:7a:a9:30:cf:eb:
9a:83:54:9c:02:93:54:ae:50:36:3e:92:54:26:bb:56:49:6c:
f5:b1:f9:ad:81:34:b2:3b:b6:1c:39:94:e3:e6:99:1c:63:5c:
4d:d7:a9:3b:fd:29:d7:88:52:fe:b5:98:5f:3c:0a:4a:60:84:
07:d4:02:35:e3:8f:4e:2d:a8:bd:19:a8:f4:22:6e:b8:dd:44:
3f:9b:9b:5d:7f:d9:eb:6d:2d:e4:de:f6:7e:9d:6a:56:a4:4f:
f7:e5:db:f1:a1:e2:d1:b9:64:ee:68:2a:83:13:1b:30:4b:2f:
ff:e9:03:bb:4e:89:2c:2f:e9:4f:87:10:42:81:12:8e:ff:68:
70:3d:81:b0:59:d9:14:da:16:04:48:2c:bc:fa:9d:d3:0e:6d:
fb:20:0b:4b:1f:11:18:ee:02:50:e3:a3:6e:94:7f:27:b3:27:
8e:5c:98:48:e8:1e:1d:8b:8e:76:9f:48:54:7e:85:f4:cd:20:
a5:2b:c8:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 19 06:55:14 2024 by rpki-client on console-fra.rpki-client.org