Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/592E20C6964811ED98758871C4F9AE02.roa
File: 592E20C6964811ED98758871C4F9AE02.roa (raw, json)
Hash identifier: AQ/Lc6taEXhyFhyuUD6rEpPd4x25Tx74+vl6Pglyq9w=
Subject key identifier: 74:E9:01:B8:8D:88:EE:DC:96:EF:42:44:D3:ED:8C:3B:9F:B8:CE:0D
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 6F92
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/592E20C6964811ED98758871C4F9AE02.roa
Signing time: Wed 10 May 2023 16:39:26 +0000
ROA not before: Wed 10 May 2023 16:39:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 103.53.55.0/24 maxlen: 24
103.54.236.0/24 maxlen: 24
103.71.98.0/24 maxlen: 24
103.166.180.0/24 maxlen: 24
103.167.152.0/23 maxlen: 24
103.233.120.0/24 maxlen: 24
203.78.131.0/24 maxlen: 24
2001:df6:9580::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 20 Feb 2024 09:33:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28562 (0x6f92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 10 16:39:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=645bc8bd-24a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a0:8b:f5:e2:45:ac:87:f2:2d:11:4c:20:2e:
14:09:17:10:1f:7e:54:32:40:14:55:ec:39:cb:0c:
d0:1c:9b:8e:bb:7b:ba:46:35:67:55:d9:da:87:7c:
2d:45:46:80:69:8a:67:78:06:c1:aa:22:d1:c9:0f:
4e:53:18:96:72:09:4a:86:53:33:12:cf:1f:a3:cf:
46:76:49:a9:57:d3:b6:c8:14:36:38:78:2a:91:d5:
2f:85:9d:a1:67:3d:1e:3c:cb:df:39:98:be:76:78:
29:d0:ea:88:7b:31:a2:15:7b:68:28:e3:38:64:25:
cf:2a:ae:14:49:14:62:f7:d8:ab:b9:73:90:bd:f7:
a7:3d:7d:ef:f2:ff:f3:83:4f:9e:71:15:31:0d:95:
d0:03:e0:52:7a:27:9a:a5:57:50:d4:1a:b8:c2:a0:
c0:28:df:7c:a3:fb:28:0b:29:f5:d3:f7:c5:6a:09:
f6:ce:32:a7:4d:a1:b6:81:e1:5e:73:74:76:c0:98:
bf:99:b3:7b:6e:5d:0f:46:34:1f:24:43:36:d4:26:
38:f5:1f:ad:e1:9e:6b:81:4e:88:df:e3:12:a2:dc:
35:93:04:41:68:1d:d8:ea:ee:ed:2d:f1:91:f3:09:
39:73:74:76:20:dd:ea:84:01:00:12:71:0a:42:3a:
e7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E9:01:B8:8D:88:EE:DC:96:EF:42:44:D3:ED:8C:3B:9F:B8:CE:0D
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/592E20C6964811ED98758871C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.53.55.0/24
103.54.236.0/24
103.71.98.0/24
103.166.180.0/24
103.167.152.0/23
103.233.120.0/24
203.78.131.0/24
IPv6:
2001:df6:9580::/48
Signature Algorithm: sha256WithRSAEncryption
52:1b:01:a3:6a:68:7e:b5:7a:c3:49:cf:b9:ab:c7:a9:2b:8f:
a4:0b:9b:78:11:ab:21:f9:02:87:93:fe:2f:cc:a3:6a:54:b0:
b9:5e:b9:9a:4d:1a:4a:a0:7c:28:1b:a4:87:ba:b5:50:86:4a:
6f:19:b6:c6:e9:af:6b:a3:7b:12:1a:f2:17:08:f7:5c:76:09:
46:df:45:62:13:77:44:cd:6c:41:28:17:ce:47:3e:3c:d4:3d:
1b:3b:02:c0:fd:fd:fc:13:97:fe:04:b7:46:c1:91:4d:55:e2:
a0:9c:3c:54:13:f3:c1:8c:87:67:52:d4:f2:63:e1:4a:0d:28:
e6:bd:f0:66:bf:c2:8b:ac:57:82:01:ad:63:17:94:82:36:5d:
9e:84:73:be:1c:f4:1c:94:82:c2:dc:2c:ae:90:92:ca:74:46:
38:ba:b0:fa:47:67:bf:ac:5b:08:e5:9c:49:98:bb:0a:1f:e8:
8c:96:97:01:b9:22:b7:dc:74:91:1a:7a:fd:51:5d:fb:48:e7:
93:ba:88:c1:a4:a7:6f:f0:14:a3:8f:b8:26:07:7d:28:e1:b8:
74:16:71:34:7c:f2:e7:89:a6:0b:55:2f:fd:39:ae:63:89:bb:
f9:08:99:17:b3:7b:06:ae:a0:b6:fb:08:b8:37:f3:f7:2d:11:
ae:61:95:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 20 12:20:05 2024 by rpki-client on console-ams.rpki-client.org