Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/37D4298C3C0311EE9151E554C4F9AE02.roa
File: 37D4298C3C0311EE9151E554C4F9AE02.roa (raw, json)
Hash identifier: IJLEMGS86BqYexvch9NvHBS1hm5Uxl4/0KIlcIi3cjU=
Subject key identifier: 3A:8C:80:E3:4F:C6:D8:EE:C2:65:13:29:6E:4A:21:D6:0B:C2:52:3E
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 778D
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/37D4298C3C0311EE9151E554C4F9AE02.roa
Signing time: Wed 16 Aug 2023 07:05:01 +0000
ROA not before: Wed 16 Aug 2023 07:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 132752
IP address blocks: 103.163.14.0/23 maxlen: 24
103.168.60.0/24 maxlen: 24
103.179.121.0/24 maxlen: 24
103.180.177.0/24 maxlen: 24
103.214.162.0/24 maxlen: 24
103.214.163.0/24 maxlen: 24
103.229.209.0/24 maxlen: 24
2001:df2:8d40::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30605 (0x778d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Aug 16 07:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64dc751d-e3d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ee:d4:cb:6c:cd:22:95:ad:54:c4:5f:79:1d:
04:81:a9:9b:60:da:17:1c:e4:5d:7d:21:4b:9b:a9:
ad:8b:01:71:dd:1c:b9:f5:ca:f2:04:a6:6e:66:22:
b3:6d:f6:9e:20:2b:51:eb:98:27:5b:35:0c:8a:6f:
ab:b9:c5:22:3c:2b:45:b8:38:dd:a2:1e:1e:55:d6:
e4:d1:bf:66:05:21:82:43:86:ac:ac:aa:4f:c8:a4:
0c:d2:10:b8:14:b7:4f:2e:e0:b5:8d:d6:4b:d9:6c:
a9:73:3d:f0:83:7e:a6:23:a6:48:17:3b:e6:b2:89:
64:a3:37:4e:71:07:97:78:65:db:0c:6d:72:40:01:
98:db:7b:d7:32:fc:58:21:b8:28:c2:ef:04:44:bc:
12:f6:ee:6c:15:93:93:cb:75:9c:4e:56:83:af:92:
4f:92:58:32:1f:95:d9:43:b8:ac:b8:e0:aa:c4:56:
30:0a:2f:16:4d:92:ce:8a:2b:7d:39:f0:9d:88:17:
4e:cc:14:c6:14:34:a0:20:f9:e2:ae:e1:3f:92:e8:
59:e5:5a:34:dd:dc:62:9e:78:0d:9b:84:7d:0d:69:
92:b1:de:bc:60:e4:0b:44:66:e8:d5:82:a3:ef:2c:
fd:30:7f:a7:96:99:7c:f5:98:ee:96:0d:40:67:ac:
7f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:8C:80:E3:4F:C6:D8:EE:C2:65:13:29:6E:4A:21:D6:0B:C2:52:3E
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/37D4298C3C0311EE9151E554C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.163.14.0/23
103.168.60.0/24
103.179.121.0/24
103.180.177.0/24
103.214.162.0/23
103.229.209.0/24
IPv6:
2001:df2:8d40::/48
Signature Algorithm: sha256WithRSAEncryption
6e:8d:b9:0c:41:2b:00:b9:66:01:5b:5d:11:eb:15:43:2c:99:
30:6a:7d:b5:f4:87:67:d8:22:1c:94:f2:27:f2:5c:75:bd:70:
be:bf:47:0e:56:1c:09:3c:73:02:32:37:40:b3:21:0d:7e:ae:
62:ae:7c:c7:85:41:d6:82:3d:73:30:06:5b:07:c2:1f:f5:ec:
75:98:b7:e6:03:49:6d:38:41:cf:22:6e:63:d2:0a:9d:28:72:
c2:0b:82:21:76:70:9b:ff:2d:cd:9c:3a:0a:c3:14:76:e1:21:
3f:89:f8:9f:d6:db:af:31:bd:a4:99:7c:7e:38:68:f0:59:e3:
a0:29:fe:b8:7e:16:e5:57:54:2f:a9:ae:5f:15:61:86:58:71:
27:d4:b1:5f:30:09:c3:48:c5:19:94:ff:95:af:22:73:48:96:
43:25:5d:29:c7:79:47:dd:19:21:8c:bb:5d:d9:ee:78:a7:98:
e8:5d:8c:dd:b6:bb:4f:ff:ef:c1:5c:a1:6d:c8:75:34:0f:51:
d4:a6:02:a0:c8:cc:8e:9c:3a:5f:bb:9a:18:05:96:94:82:a7:
ef:f6:eb:32:ff:ab:03:85:b6:3e:df:22:b2:96:ac:e4:e7:20:
de:3b:d9:81:0e:b6:68:65:b0:b8:93:a7:c0:7c:d8:0e:5e:57:
1c:7b:9a:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 17 11:34:49 2023 by rpki-client on console-ams.rpki-client.org