Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9FE737D85F7E11EDA14AFF2DC4F9AE02.roa
File: 9FE737D85F7E11EDA14AFF2DC4F9AE02.roa (raw, json)
Hash identifier: wyBRSISPjFVNCvsDCkSy2MjTzGkAiR1ou167c+iCVfY=
Subject key identifier: AE:62:F6:93:CE:0D:E5:CB:B1:AE:39:B4:42:8B:05:02:9B:3C:D7:88
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 754F
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9FE737D85F7E11EDA14AFF2DC4F9AE02.roa
Signing time: Mon 10 Jul 2023 11:11:31 +0000
ROA not before: Mon 10 Jul 2023 11:11:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139195
IP address blocks: 103.42.72.0/22 maxlen: 24
103.104.222.0/24 maxlen: 24
103.104.223.0/24 maxlen: 24
103.105.224.0/22 maxlen: 24
103.171.58.0/23 maxlen: 24
103.189.216.0/24 maxlen: 24
103.189.217.0/24 maxlen: 24
113.30.144.0/22 maxlen: 24
119.161.96.0/22 maxlen: 24
2001:df6:4900::/48 maxlen: 48
2407:c040::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 25 Jan 2024 05:56:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30031 (0x754f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jul 10 11:11:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64abe762-c557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:11:cb:24:ed:e0:14:6a:e4:f3:78:9e:91:bc:
51:e9:27:79:48:cd:1a:e7:11:6c:db:f2:cf:a0:27:
18:31:f1:71:d9:65:c7:dc:9a:f4:4f:1e:ea:59:4c:
f9:40:33:6b:8e:2f:d2:5c:0a:ef:9a:3a:89:94:29:
0f:12:a9:29:c7:3f:0b:2a:df:7a:99:a3:14:84:d6:
8e:58:79:3a:c8:8f:8e:e3:81:0f:bf:b7:6e:52:1d:
a1:24:18:7b:b0:02:fe:63:de:c0:81:2b:dd:a4:02:
4c:95:a5:e7:21:72:56:84:5d:a3:44:05:35:91:83:
1c:40:d0:6f:e8:7e:95:53:98:f3:e9:b0:05:56:f3:
c9:77:9b:05:fa:4e:d9:27:cf:00:9d:5a:cd:b4:e3:
3b:44:c1:9d:6a:6a:77:b6:63:66:c3:6d:ff:f5:08:
85:36:d1:14:74:41:95:76:76:34:27:b3:db:29:0c:
ca:12:d4:10:30:16:9d:f7:0c:d2:dc:00:df:84:9e:
f1:b9:21:49:bb:ec:a0:22:f6:c8:3d:d3:cd:6d:1a:
3d:82:1b:39:d4:c6:c0:1d:dd:9c:9e:ba:4f:b1:41:
85:8a:7e:21:0d:ce:4a:74:fa:d8:eb:d8:1b:d8:1f:
1b:5c:35:1a:56:a7:03:31:68:67:52:26:b4:d8:96:
1a:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:62:F6:93:CE:0D:E5:CB:B1:AE:39:B4:42:8B:05:02:9B:3C:D7:88
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9FE737D85F7E11EDA14AFF2DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.42.72.0/22
103.104.222.0/23
103.105.224.0/22
103.171.58.0/23
103.189.216.0/23
113.30.144.0/22
119.161.96.0/22
IPv6:
2001:df6:4900::/48
2407:c040::/32
Signature Algorithm: sha256WithRSAEncryption
8d:e3:03:e0:0d:20:f2:ba:cc:66:1c:ba:cf:13:7b:7a:12:8d:
92:b5:58:35:37:e1:b6:0e:c2:e8:c0:cc:16:27:a8:9d:7d:4a:
28:7d:6b:37:20:5a:21:23:c2:91:fa:97:22:33:35:2e:a5:ae:
8f:75:b1:ee:2c:06:b0:a4:3d:10:29:32:dd:45:24:64:9e:47:
83:fe:c2:a1:a4:df:b3:2f:49:6c:b6:21:c2:55:a6:b4:fc:a9:
8b:ee:3a:30:a8:a2:ed:38:f7:3b:a4:65:9a:76:73:6b:53:43:
84:a8:5f:e7:c0:85:21:88:4f:81:dc:e7:7c:49:a4:97:f1:88:
38:cb:c0:ac:c4:c0:f3:ea:a4:65:ae:16:38:c2:0c:d5:b1:d3:
14:e3:9d:cc:a1:15:3d:21:6b:9a:45:6a:97:ac:ce:82:08:d3:
ec:dc:ef:9f:24:89:b4:1d:0c:1a:30:0b:4d:8d:59:ab:63:a3:
1f:ce:4a:66:e7:c6:1d:3a:40:12:17:c4:39:8d:cd:70:cf:f5:
fd:7b:14:be:63:6e:3a:3f:98:58:dc:f9:8a:c0:f8:bd:a6:50:
67:92:4f:e3:db:af:ff:ac:90:1e:0d:e2:d5:e7:77:a6:2b:c4:
5b:9a:7a:9c:4f:55:b3:0c:d2:5c:86:87:86:77:ab:a9:7f:ec:
91:c5:08:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 25 08:34:29 2024 by rpki-client on console-ams.rpki-client.org