Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/78BE822078F911EEBCAFB814C4F9AE02.roa
File: 78BE822078F911EEBCAFB814C4F9AE02.roa (raw, json)
Hash identifier: fGSA2UAQ7+FiA6Gg6w5l9i03FIKhkrRrhTiMdvI/8w4=
Subject key identifier: 4C:BB:14:7B:CC:EA:87:E8:F1:A9:69:25:A0:D1:AF:AE:A1:68:F9:95
Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537
Certificate serial: 047E
Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/78BE822078F911EEBCAFB814C4F9AE02.roa
Signing time: Tue 03 Sep 2024 01:16:06 +0000
ROA not before: Tue 03 Sep 2024 01:16:06 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 38001
IP address blocks: 103.6.168.0/24 maxlen: 24
103.6.169.0/24 maxlen: 24
103.102.46.0/24 maxlen: 24
103.125.217.0/24 maxlen: 24
2401:df40:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 04 Nov 2024 15:08:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1150 (0x47e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918E4B7
Validity
Not Before: Sep 3 01:16:06 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66d66356-b1dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3f:ac:ee:d0:38:d1:5c:29:ec:a8:ad:7e:e5:
c5:b2:15:ad:41:ab:0a:d4:e2:fd:e1:09:94:3d:91:
ad:c4:8a:ad:c2:12:a1:93:46:ae:49:17:b8:bb:56:
0d:28:53:cd:51:e6:65:f5:12:4e:6a:7d:b5:c1:73:
f9:cf:06:cc:b1:41:03:99:75:fc:13:10:57:02:84:
c5:af:6d:e5:32:25:77:1f:f3:14:d2:62:9b:5c:5d:
20:18:c5:49:a6:a4:2a:9a:b6:2d:5e:5f:d7:99:3d:
43:a8:45:e4:2a:93:04:17:c6:cf:a7:74:ab:c4:f6:
24:87:1e:00:13:a6:41:98:5f:6a:64:b8:c2:43:b0:
28:49:8c:b1:82:a5:84:8b:79:98:f1:d7:06:7f:49:
5d:dc:79:a2:e3:37:bc:5c:b4:92:2c:12:54:4f:ce:
ae:50:26:e8:d8:63:4a:10:8a:b7:0f:cd:bb:4f:af:
44:e9:0f:d5:6e:48:08:86:7c:84:d0:9a:f3:a8:60:
bd:d6:d1:8b:f4:03:46:93:82:39:7e:d1:99:b2:6c:
24:59:bf:c8:d2:f1:fe:59:37:d7:20:3f:ce:9c:0c:
74:3f:43:44:bb:45:48:7d:a6:34:4c:db:19:a0:79:
98:72:6a:e5:5f:4e:34:f5:e3:3a:d3:6c:da:4e:a1:
48:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:BB:14:7B:CC:EA:87:E8:F1:A9:69:25:A0:D1:AF:AE:A1:68:F9:95
X509v3 Authority Key Identifier:
keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/78BE822078F911EEBCAFB814C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.6.168.0/23
103.102.46.0/24
103.125.217.0/24
IPv6:
2401:df40:2::/48
Signature Algorithm: sha256WithRSAEncryption
8c:94:6b:d1:fa:59:c9:d8:8a:81:1e:b1:56:d5:75:42:49:5b:
0a:be:a4:72:19:f7:62:85:71:70:a1:6c:f6:ab:1c:1c:21:e2:
22:03:d3:50:5e:af:44:22:a4:dc:d2:49:06:7a:a6:cb:30:24:
34:c2:c8:af:b8:34:fc:1a:bb:b1:5f:81:64:eb:19:67:9e:90:
a9:ee:5f:f1:80:21:db:fc:0d:e4:52:17:dc:4c:54:59:d1:0d:
14:dd:41:e2:58:df:67:6e:09:ce:fc:79:62:6a:10:07:65:47:
96:8b:e2:d7:0f:7e:dd:8f:aa:8c:30:af:2b:d3:bc:ee:8c:9a:
c3:72:7c:35:4c:8e:a2:78:3d:d9:53:5a:81:67:1d:a2:ca:16:
2f:60:bc:ee:b1:87:74:ca:fe:c4:6f:a2:4c:64:45:e3:11:b8:
e6:1c:13:a4:37:55:c6:0c:fc:ad:3c:34:fb:83:35:c0:c9:24:
08:ba:61:94:db:39:75:3f:95:d0:c1:6e:d4:0a:cb:84:b1:fb:
c4:87:6e:83:7d:d0:39:6c:de:bb:cd:36:d3:b8:32:9f:35:97:
00:4a:19:15:ff:ff:ed:6d:75:26:c1:69:49:b7:bf:0a:9c:a4:
39:ae:49:98:3f:d5:16:37:0e:36:bc:08:c3:fc:a4:00:63:10:
8f:d7:d5:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:16:43 2025 by rpki-client