Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5EF79D56089311EB9277E86CC4F9AE02.roa
File: 5EF79D56089311EB9277E86CC4F9AE02.roa (raw, json)
Hash identifier: kjVgFK95mBk72SADNUho05o1VtsumwHrQj9f8WY0sow=
Subject key identifier: 25:73:85:42:3B:6D:D4:BF:36:05:47:5B:07:7E:A6:9C:43:02:4E:E7
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 6C11
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5EF79D56089311EB9277E86CC4F9AE02.roa
Signing time: Wed 10 May 2023 16:22:43 +0000
ROA not before: Wed 10 May 2023 16:22:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135808
IP address blocks: 103.78.221.0/24 maxlen: 24
103.103.174.0/24 maxlen: 24
103.119.254.0/23 maxlen: 24
103.166.109.0/24 maxlen: 24
2405:13c0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27665 (0x6c11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 10 16:22:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=645bc4d3-26ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:05:f8:f2:8b:5a:94:d4:7b:7b:2b:ad:46:d0:
41:b0:bd:98:22:a8:a0:57:6f:2b:d1:7d:dc:2d:ee:
fe:02:3c:e7:b5:58:4a:fe:e8:4f:00:ab:ea:ea:38:
36:1a:50:b6:c6:88:8d:1d:f2:84:cb:a6:ea:da:89:
35:3d:fc:bb:09:6d:b9:2a:f4:62:92:68:da:f9:c2:
66:19:74:70:47:c4:e1:a0:16:46:66:0b:c4:cc:c2:
8c:b9:1e:60:a6:c4:d1:d7:d9:90:05:33:d6:49:6a:
eb:aa:95:37:9f:84:da:b2:fb:86:86:2d:bb:1e:f6:
4b:73:60:10:f9:43:cd:d0:6e:4b:bc:51:a4:f7:12:
9b:db:59:e7:0b:9c:07:36:75:cc:47:38:f7:95:38:
df:3a:d3:5d:d6:18:0b:ef:15:74:e5:79:c1:c5:37:
6e:6f:cc:15:b5:02:13:86:ec:7c:b3:45:06:c4:2e:
02:ab:84:ba:70:33:a6:70:05:9d:c3:6a:3e:99:fe:
c6:92:34:cd:9b:a5:a8:3d:6f:45:8e:d8:99:6e:c5:
95:5d:3d:18:9c:f2:37:1e:66:17:ba:2a:03:d0:dc:
19:bb:45:77:0b:5e:09:96:4e:02:e2:80:91:19:60:
44:e8:c2:e4:78:b6:b7:d1:ac:ff:0a:cf:ac:db:7e:
7d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:73:85:42:3B:6D:D4:BF:36:05:47:5B:07:7E:A6:9C:43:02:4E:E7
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5EF79D56089311EB9277E86CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.78.221.0/24
103.103.174.0/24
103.119.254.0/23
103.166.109.0/24
IPv6:
2405:13c0::/32
Signature Algorithm: sha256WithRSAEncryption
98:7b:25:30:74:2e:c4:15:4c:76:20:1c:f0:f4:5a:36:c1:99:
87:87:42:bf:08:e8:a7:4c:c0:a2:d9:98:2d:7b:a6:d8:64:0a:
41:f7:77:58:94:a8:45:aa:61:3e:96:38:b5:b2:ce:4b:51:1c:
ea:47:97:3d:b2:4a:a7:7d:94:9e:1b:e4:84:21:02:ed:ef:37:
8e:93:8f:d1:1a:e7:a6:b9:80:63:49:b9:49:29:bc:85:a8:88:
1f:3b:a3:e5:88:d8:80:43:5f:6f:e5:44:10:c7:b4:d5:e3:af:
f7:a1:ae:07:b9:aa:94:f2:f0:6b:f4:15:2d:b6:bd:18:e8:f5:
72:83:da:83:15:12:05:a0:11:7b:af:a3:f8:d9:57:96:12:2e:
6b:0b:d7:7b:97:19:50:4e:3a:a1:d0:bc:a6:af:fb:fc:3a:33:
af:e0:87:d3:1c:e6:e2:96:7c:47:99:3f:1a:d0:f3:ad:6b:5a:
d6:47:ee:d7:b8:bf:5b:9a:62:e0:75:4c:34:7d:51:e4:2f:25:
b0:7a:5f:89:6a:ec:99:11:e5:20:e2:c1:0e:cb:d6:95:15:94:
de:8b:38:d5:58:2f:76:00:bb:c0:8f:4a:67:a7:c4:07:7b:c3:
ca:32:07:c4:fa:ae:dc:2d:bb:0e:1a:48:62:98:65:2d:1a:35:
73:e0:97:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:55 2023 by rpki-client on console-fra.rpki-client.org