Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1867F59A10B011EC8C986E16C4F9AE02.roa
File: 1867F59A10B011EC8C986E16C4F9AE02.roa (raw, json)
Hash identifier: TtuK93uxZChXy0DG5XfYm8v4920UFU8Q0vTpu+YvTGo=
Subject key identifier: 70:83:8D:DF:AA:1B:E2:8F:80:03:F2:D1:24:34:5F:BF:F8:4A:8A:55
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 71AF
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1867F59A10B011EC8C986E16C4F9AE02.roa
Signing time: Wed 10 May 2023 16:49:28 +0000
ROA not before: Wed 10 May 2023 16:49:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55947
IP address blocks: 43.247.156.0/22 maxlen: 24
103.5.132.0/22 maxlen: 24
103.39.126.0/23 maxlen: 24
103.87.92.0/22 maxlen: 24
103.87.128.0/22 maxlen: 24
103.91.180.0/22 maxlen: 24
103.92.100.0/22 maxlen: 24
103.132.16.0/23 maxlen: 24
103.154.27.0/24 maxlen: 24
103.157.238.0/23 maxlen: 24
103.161.74.0/23 maxlen: 24
103.168.232.0/23 maxlen: 24
103.173.170.0/23 maxlen: 24
124.40.244.0/22 maxlen: 24
2400:c2a0::/32 maxlen: 32
2404:1f00::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29103 (0x71af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 10 16:49:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=645bcb18-9d8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3d:9c:7f:ad:2c:bf:80:96:3d:ce:b4:5b:ad:
d9:8b:55:92:43:6e:22:6b:26:0d:ab:37:59:f6:1a:
27:15:02:d7:74:4d:fd:44:b9:f8:8d:25:29:fd:8f:
05:85:78:2f:2b:36:a7:ec:af:da:68:e5:97:0e:36:
79:e4:86:5b:3b:f1:ac:01:c3:8c:c0:18:84:91:a9:
18:5e:2f:df:3c:9d:d9:29:35:c6:7c:60:92:bc:6c:
b5:00:c1:3f:7d:9d:3b:9a:9f:4e:12:0c:bd:3f:5c:
72:0a:df:86:50:73:60:ec:47:d5:30:8f:31:4f:97:
4e:b6:b0:76:ac:d1:4f:d4:4c:ed:c6:ca:42:d7:69:
78:03:2d:c7:28:bc:e7:bf:eb:7b:1a:3c:85:db:39:
0f:51:5c:f7:cd:fb:80:91:76:4c:ad:7a:8c:cd:ef:
8d:73:76:fc:73:54:c9:6e:e6:e2:51:03:53:61:f0:
b7:82:fc:9d:ad:c3:91:1b:15:2c:7f:f2:0f:b9:0f:
42:bb:e7:06:82:61:9d:81:d3:68:60:91:b9:1e:80:
b4:45:21:71:a6:5e:b1:d4:63:3c:cd:20:10:5e:63:
49:fb:2b:9c:4f:f1:98:7f:82:d6:cb:57:42:15:68:
60:92:d6:2a:fe:a1:b2:9c:f6:c8:a0:da:54:f8:78:
5f:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:83:8D:DF:AA:1B:E2:8F:80:03:F2:D1:24:34:5F:BF:F8:4A:8A:55
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1867F59A10B011EC8C986E16C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.247.156.0/22
103.5.132.0/22
103.39.126.0/23
103.87.92.0/22
103.87.128.0/22
103.91.180.0/22
103.92.100.0/22
103.132.16.0/23
103.154.27.0/24
103.157.238.0/23
103.161.74.0/23
103.168.232.0/23
103.173.170.0/23
124.40.244.0/22
IPv6:
2400:c2a0::/32
2404:1f00::/32
Signature Algorithm: sha256WithRSAEncryption
62:19:aa:0f:a7:29:54:47:54:cf:53:23:3c:9b:1a:56:c6:06:
c0:4c:3b:2a:27:36:b8:16:6e:ea:fa:11:27:98:4e:65:61:5b:
08:28:11:3d:10:21:36:d1:95:da:73:8e:c6:2d:a3:a5:91:2c:
2e:40:3d:ad:8f:83:a7:93:bf:62:22:66:c2:b6:25:b1:7a:b0:
94:b3:21:35:35:41:79:01:9c:28:85:2a:8d:d7:54:d8:80:a5:
68:91:63:8e:6a:dc:c2:43:d3:55:0b:39:37:fa:cb:c2:be:bf:
f3:f8:f4:32:fa:87:5a:05:40:37:c7:d7:a8:b6:e8:04:f2:c9:
9d:35:93:ed:cb:6e:ae:10:a1:e6:99:43:27:b1:ad:bd:12:fc:
d4:b8:ee:c9:70:70:d8:2d:47:1a:14:2c:c2:62:99:3a:f9:6f:
71:eb:f5:93:a8:c7:50:ec:4a:c2:32:d0:b0:20:df:7f:dc:8c:
c9:ef:db:c6:6b:28:9c:3e:29:d3:25:de:d2:31:e6:58:15:c3:
1a:cd:f5:24:6a:d2:2d:ca:e5:14:e8:f5:68:82:6d:54:5b:97:
8f:0b:18:0b:72:3a:d5:4f:aa:a3:58:de:e6:6b:cb:c8:f2:95:
1a:c2:39:04:5c:5b:8d:7a:dc:72:33:be:7a:4d:91:4e:10:bc:
5c:2e:49:25
-----BEGIN CERTIFICATE-----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Generated at Fri Sep 22 06:20:12 2023 by rpki-client on console-ams.rpki-client.org