Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0F951DD8788411EE817E7532C4F9AE02.roa
File: 0F951DD8788411EE817E7532C4F9AE02.roa (raw, json)
Hash identifier: oQA7YrswhwjYdgk/GftVqaKLPrikyHP4exKZQtBNPeE=
Subject key identifier: 3E:31:9D:D3:12:2B:61:31:66:BE:96:C4:21:4A:B7:E1:14:7F:E2:CC
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 7CDF
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0F951DD8788411EE817E7532C4F9AE02.roa
Signing time: Wed 01 Nov 2023 06:58:29 +0000
ROA not before: Wed 01 Nov 2023 06:58:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 133311
IP address blocks: 103.98.79.0/24 maxlen: 24
103.100.80.0/22 maxlen: 24
103.127.60.0/23 maxlen: 24
103.158.178.0/24 maxlen: 24
103.158.179.0/24 maxlen: 24
103.160.28.0/23 maxlen: 24
103.163.54.0/23 maxlen: 23
103.174.240.0/23 maxlen: 24
103.181.22.0/23 maxlen: 23
103.181.23.0/24 maxlen: 24
103.199.98.0/24 maxlen: 24
103.199.99.0/24 maxlen: 24
103.199.116.0/24 maxlen: 24
103.201.136.0/24 maxlen: 24
103.201.137.0/24 maxlen: 24
103.201.138.0/24 maxlen: 24
103.225.174.0/24 maxlen: 24
2001:df1:95c0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31967 (0x7cdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Nov 1 06:58:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6541f715-2b55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:60:23:29:03:a0:0d:0b:94:84:33:c3:b7:97:
87:9d:39:ba:75:1b:ae:d5:e2:dd:6a:5c:26:3e:d9:
2d:31:42:0c:06:6d:55:6b:c0:9b:18:0c:6d:80:6b:
f8:93:fe:f1:62:fa:6f:99:24:17:e1:39:60:16:eb:
96:5b:6d:74:8d:3f:1e:b9:b5:af:8d:c0:8b:55:fe:
e0:5b:8a:1b:7a:a5:0a:6b:9d:56:03:9b:f2:01:2b:
68:63:e7:30:98:4c:d2:1e:b2:63:df:dd:a6:89:b0:
21:fa:6c:2b:fc:36:ea:f8:41:83:6f:09:77:f9:e7:
82:46:f1:a9:b9:98:2f:08:e3:0b:e4:73:fa:85:04:
a4:ab:45:de:6c:fa:c0:a6:3e:ed:89:77:73:d9:26:
92:1f:0b:4b:39:81:3c:30:de:2f:4d:90:44:30:ec:
85:05:50:83:22:2f:81:e1:c1:e7:40:78:28:aa:7d:
6f:df:bd:e8:d4:5f:56:20:7b:f5:78:2a:c3:3d:d5:
8b:c6:f6:1d:2d:a0:26:81:61:48:56:65:9b:63:b4:
e3:2a:c2:5a:e9:19:12:94:fe:24:4d:cf:60:2b:28:
1b:6b:7b:91:7d:ce:2e:2b:4f:52:d9:92:59:38:c8:
d8:f9:39:e2:f1:f7:a0:8a:49:bf:b6:05:4e:3b:84:
12:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:31:9D:D3:12:2B:61:31:66:BE:96:C4:21:4A:B7:E1:14:7F:E2:CC
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0F951DD8788411EE817E7532C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.79.0/24
103.100.80.0/22
103.127.60.0/23
103.158.178.0/23
103.160.28.0/23
103.163.54.0/23
103.174.240.0/23
103.181.22.0/23
103.199.98.0/23
103.199.116.0/24
103.201.136.0-103.201.138.255
103.225.174.0/24
IPv6:
2001:df1:95c0::/48
Signature Algorithm: sha256WithRSAEncryption
b9:3b:f7:cb:2c:e4:d9:f4:08:87:3d:47:ec:4d:f9:78:c1:3d:
91:71:5f:4a:77:64:4b:54:72:e7:34:15:5d:c4:00:f2:7f:a5:
f3:0a:42:bb:e8:c1:9d:e8:ac:52:ce:e1:d8:09:08:16:33:b6:
79:9f:01:c8:e1:e1:80:37:94:95:4e:6a:da:23:fd:b6:45:26:
4b:d4:31:ae:96:84:97:43:e0:46:46:a2:22:6c:fd:ea:d4:58:
ac:c4:b0:21:fe:b1:8f:f2:d4:d1:5d:dd:82:f5:37:11:35:91:
7e:ef:f7:cf:16:27:e6:bf:2f:b7:1a:aa:ad:57:c9:f8:68:52:
63:7c:52:e4:bd:e9:a4:30:68:f5:fe:8d:5a:49:1a:26:76:54:
52:d8:dc:6f:0d:e1:52:ef:99:8d:c4:48:ef:fd:a8:9c:19:c8:
0d:e9:44:f6:3f:70:4d:f5:52:2f:69:3e:da:50:63:1c:b8:b7:
de:e8:21:4a:4c:96:6c:5d:85:97:7a:31:0b:99:03:ff:d7:6c:
2f:6d:ac:25:a2:a9:f6:10:30:54:52:65:f0:19:af:e1:d4:cc:
eb:dc:23:d0:5e:0c:fc:4b:2b:71:3f:ce:ff:f0:9d:a5:31:4d:
91:7b:af:e6:43:6a:00:dc:6f:f8:e1:83:89:a9:fa:5a:c6:80:
c4:5b:fe:6c
-----BEGIN CERTIFICATE-----
MIIFzDCCBLSgAwIBAgICfN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz
RTNBQkM4MjMwHhcNMjMxMTAxMDY1ODI5WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTQxZjcxNS0yYjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzGAjKQOgDQuUhDPDt5eHnTm6dRuu1eLdalwmPtktMUIMBm1Va8CbGAxtgGv4
k/7xYvpvmSQX4TlgFuuWW210jT8eubWvjcCLVf7gW4obeqUKa51WA5vyAStoY+cw
mEzSHrJj392mibAh+mwr/Dbq+EGDbwl3+eeCRvGpuZgvCOML5HP6hQSkq0XebPrA
pj7tiXdz2SaSHwtLOYE8MN4vTZBEMOyFBVCDIi+B4cHnQHgoqn1v373o1F9WIHv1
eCrDPdWLxvYdLaAmgWFIVmWbY7TjKsJa6RkSlP4kTc9gKygba3uRfc4uK09S2ZJZ
OMjY+Tni8fegikm/tgVOO4QS4wIDAQABo4IC8DCCAuwwHQYDVR0OBBYEFD4xndMS
K2ExZr6WxCFKt+EUf+LMMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw
RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5
Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMEY5NTFERDg3
ODg0MTFFRTgxN0U3NTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwegYIKwYBBQUHAQcBAf8E
azBpMFYEAgABMFADBABnYk8DBAJnZFADBAFnfzwDBAFnnrIDBAFnoBwDBAFnozYD
BAFnrvADBAFntRYDBAFnx2IDBABnx3QwDAMEA2fJiAMEAGfJigMEAGfhrjAPBAIA
AjAJAwcAIAEN8ZXAMA0GCSqGSIb3DQEBCwUAA4IBAQC5O/fLLOTZ9AiHPUfsTfl4
wT2RcV9Kd2RLVHLnNBVdxADyf6XzCkK76MGd6KxSzuHYCQgWM7Z5nwHI4eGAN5SV
TmraI/22RSZL1DGuloSXQ+BGRqIibP3q1FisxLAh/rGP8tTRXd2C9TcRNZF+7/fP
Fifmvy+3GqqtV8n4aFJjfFLkvemkMGj1/o1aSRomdlRS2NxvDeFS75mNxEjv/aic
GcgN6UT2P3BN9VIvaT7aUGMcuLfe6CFKTJZsXYWXejELmQP/12wvbawloqn2EDBU
UmXwGa/h1Mzr3CPQXgz8SytxP87/8J2lMU2Re6/mQ2oA3G/44YOJqfpaxoDEW/5s
-----END CERTIFICATE-----
Generated at Thu Nov 23 07:35:26 2023 by rpki-client on console-ams.rpki-client.org