Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/36D6CE2C877111EEA7A12427C4F9AE02.roa
File: 36D6CE2C877111EEA7A12427C4F9AE02.roa (raw, json)
Hash identifier: /gVtnhumdDP1kw5++axRWMPqHhYSR/EapwROh2xP2ZM=
Subject key identifier: 4F:4B:E5:86:85:42:AF:BB:7C:EC:B4:0C:4D:83:05:52:2F:38:EF:66
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 7E25
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/36D6CE2C877111EEA7A12427C4F9AE02.roa
Signing time: Mon 20 Nov 2023 06:51:22 +0000
ROA not before: Mon 20 Nov 2023 06:51:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136367
IP address blocks: 103.179.224.0/23 maxlen: 24
103.180.174.0/24 maxlen: 24
103.180.175.0/24 maxlen: 24
103.180.237.0/24 maxlen: 24
103.181.110.0/24 maxlen: 24
103.181.111.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32293 (0x7e25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Nov 20 06:51:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=655b01e9-55ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4a:39:38:d3:90:37:ee:d5:43:7e:5b:01:40:
77:d1:db:e2:4f:c1:27:01:77:60:6c:46:0b:60:72:
60:93:7e:3c:a6:cd:12:93:e5:f9:34:14:d9:93:d6:
78:08:42:0d:1c:a9:6c:f3:55:b8:74:bb:42:69:2a:
b5:9d:81:ce:72:f4:f3:50:01:eb:77:c9:37:18:3c:
a6:b5:91:b7:9f:7a:b4:e4:37:e1:7f:be:6c:d2:87:
81:d4:07:17:92:0a:13:80:5a:73:49:84:c3:ae:18:
c1:d4:99:93:73:a4:25:0a:ba:cd:5a:48:0f:88:81:
51:15:60:33:58:f1:5a:da:ec:c0:d1:ed:ae:4a:52:
c8:73:43:be:f5:28:b5:3c:28:1b:d7:93:21:c5:39:
c8:0c:93:bb:05:9c:6b:f5:63:6b:42:2f:40:63:63:
ef:dd:76:3e:39:5e:01:e1:b4:5e:f6:55:b3:a2:d6:
8f:bd:c9:d5:e8:ff:ac:b3:ed:e6:c3:fa:3b:7b:07:
86:ec:9b:fc:e4:13:43:ad:22:f6:42:a7:29:60:4e:
e8:99:a8:35:09:74:84:aa:7a:6b:32:18:dd:70:7b:
1d:00:74:ba:b0:eb:1e:5d:7f:7e:d9:0c:61:ab:8b:
cc:47:0f:2c:fd:e1:60:0c:7a:87:06:bf:fa:92:a3:
97:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:4B:E5:86:85:42:AF:BB:7C:EC:B4:0C:4D:83:05:52:2F:38:EF:66
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/36D6CE2C877111EEA7A12427C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.179.224.0/23
103.180.174.0/23
103.180.237.0/24
103.181.110.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:ed:79:e1:2c:54:0c:23:6a:d6:17:3f:26:e0:a1:6d:9f:ae:
f3:92:3c:74:5f:42:dd:df:6c:33:ee:e6:f3:24:92:3e:fd:e2:
1c:2b:9b:72:af:ae:91:9f:a4:ac:97:8a:1c:6e:d1:a2:52:47:
f5:7c:63:bd:cd:5d:36:1f:d6:90:e5:6b:04:ed:1e:83:b4:a2:
86:bc:0a:31:7e:51:1a:90:bf:94:76:e8:4c:90:b3:2f:c6:a2:
82:cf:c4:86:2d:85:be:41:24:62:b2:f4:dd:56:45:70:73:81:
ae:61:50:f6:85:ce:a2:b0:1d:0d:2a:10:b7:8a:24:50:87:97:
1f:bf:f0:a2:5d:c2:95:49:8a:51:fd:59:71:2b:6b:62:02:62:
bb:ee:10:f0:c6:5a:33:83:de:c8:c4:0b:3a:52:15:80:96:3a:
9a:ed:d0:10:45:a3:54:b1:c9:49:87:6d:49:ce:64:e6:08:6f:
ed:e0:f1:d7:04:68:2f:98:d3:f5:2b:a9:71:a6:2f:1a:3d:7b:
5d:57:c9:24:6f:bc:4d:f7:0e:c4:3a:71:da:db:0a:9f:ef:06:
98:a2:f2:bf:74:7d:72:d9:77:1c:79:26:a2:e2:aa:5d:ff:e8:
82:26:db:12:4f:0d:4d:c8:bd:ae:16:09:17:9d:2b:8e:a1:2e:
b4:9b:ef:fb
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICfiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz
RTNBQkM4MjMwHhcNMjMxMTIwMDY1MTIyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTViMDFlOS01NWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0ko5ONOQN+7VQ35bAUB30dviT8EnAXdgbEYLYHJgk348ps0Sk+X5NBTZk9Z4
CEINHKls81W4dLtCaSq1nYHOcvTzUAHrd8k3GDymtZG3n3q05Dfhf75s0oeB1AcX
kgoTgFpzSYTDrhjB1JmTc6QlCrrNWkgPiIFRFWAzWPFa2uzA0e2uSlLIc0O+9Si1
PCgb15MhxTnIDJO7BZxr9WNrQi9AY2Pv3XY+OV4B4bRe9lWzotaPvcnV6P+ss+3m
w/o7eweG7Jv85BNDrSL2QqcpYE7omag1CXSEqnprMhjdcHsdAHS6sOseXX9+2Qxh
q4vMRw8s/eFgDHqHBr/6kqOXmwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFE9L5YaF
Qq+7fOy0DE2DBVIvOO9mMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw
RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5
Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzZENkNFMkM4
NzcxMTFFRUE3QTEyNDI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E
IjAgMB4EAgABMBgDBAFns+ADBAFntK4DBABntO0DBAFntW4wDQYJKoZIhvcNAQEL
BQADggEBADzteeEsVAwjatYXPybgoW2frvOSPHRfQt3fbDPu5vMkkj794hwrm3Kv
rpGfpKyXihxu0aJSR/V8Y73NXTYf1pDlawTtHoO0ooa8CjF+URqQv5R26EyQsy/G
ooLPxIYthb5BJGKy9N1WRXBzga5hUPaFzqKwHQ0qELeKJFCHlx+/8KJdwpVJilH9
WXEra2ICYrvuEPDGWjOD3sjECzpSFYCWOprt0BBFo1SxyUmHbUnOZOYIb+3g8dcE
aC+Y0/UrqXGmLxo9e11XySRvvE33DsQ6cdrbCp/vBpii8r90fXLZdxx5JqLiql3/
6IIm2xJPDU3Iva4WCRedK46hLrSb7/s=
-----END CERTIFICATE-----
Generated at Mon Nov 20 08:10:10 2023 by rpki-client on console-fra.rpki-client.org