Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F7E6/01C72C807D7511EB8D8F486DC4F9AE02/E4305D3A843711EB8E4DB665C4F9AE02.roa
File: E4305D3A843711EB8E4DB665C4F9AE02.roa (raw, json)
Hash identifier: q24jBZODHXBkP/eYx4mjFQyptAcTOkaJ6BL2C7+awRk=
Subject key identifier: 9A:E8:66:64:6A:4C:84:6F:0D:66:5C:35:5C:C2:14:45:CA:BD:8B:EB
Certificate issuer: /CN=A918F7E6/serialNumber=2E5C0CAEA5FAF96ADEA0158AA8FB52FA3467E0E8
Certificate serial: 0556
Authority key identifier: 2E:5C:0C:AE:A5:FA:F9:6A:DE:A0:15:8A:A8:FB:52:FA:34:67:E0:E8
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlwMrqX6-WreoBWKqPtS-jRn4Og.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918F7E6/01C72C807D7511EB8D8F486DC4F9AE02/E4305D3A843711EB8E4DB665C4F9AE02.roa
Signing time: Thu 23 Nov 2023 00:11:30 +0000
ROA not before: Thu 23 Nov 2023 00:11:30 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 133130
IP address blocks: 43.245.112.0/22 maxlen: 22
103.252.56.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 24 Nov 2023 02:47:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1366 (0x556)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918F7E6/serialNumber=2E5C0CAEA5FAF96ADEA0158AA8FB52FA3467E0E8
Validity
Not Before: Nov 23 00:11:30 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=655e98b2-b12b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a1:f1:34:4c:e1:fe:33:69:58:ba:17:19:92:
a6:2c:2c:9f:57:8c:f6:e1:46:87:e6:a0:5e:87:8f:
4a:1e:83:4d:cf:0e:0a:e9:bc:23:ee:84:ed:22:7f:
08:26:d4:0d:ec:6d:b3:51:ef:ee:27:87:7e:09:fe:
20:43:3c:48:40:cd:79:bb:63:a0:bd:20:05:c3:d1:
40:bd:78:1c:3d:d0:64:ac:e8:e1:94:f8:67:65:04:
0d:8b:c3:f2:3f:f5:f1:5f:f2:bb:2d:b9:35:76:27:
f8:51:ef:54:b9:fa:90:65:02:82:38:82:6f:10:91:
70:0b:9a:12:86:55:7f:56:8e:0a:e3:89:d6:7f:b2:
1c:f8:2b:bf:72:7f:01:ae:3b:e5:4a:cb:61:68:2d:
da:18:38:9e:de:18:08:2e:cf:48:f3:fe:42:c6:48:
67:69:41:b4:b8:db:b5:cc:d4:20:f0:78:80:df:3f:
f5:60:fe:e1:54:f2:13:3a:c2:1d:be:04:17:72:25:
90:9b:db:31:23:e4:e4:f4:59:e3:ab:44:c8:d7:a4:
01:f8:af:fd:59:28:05:de:d7:fe:5c:fe:a0:6b:03:
cf:69:4b:32:a6:bd:9c:93:66:2b:43:08:7c:a4:b3:
41:ce:75:3d:d3:84:99:05:fe:7c:a6:45:39:d3:48:
59:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:E8:66:64:6A:4C:84:6F:0D:66:5C:35:5C:C2:14:45:CA:BD:8B:EB
X509v3 Authority Key Identifier:
keyid:2E:5C:0C:AE:A5:FA:F9:6A:DE:A0:15:8A:A8:FB:52:FA:34:67:E0:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918F7E6/01C72C807D7511EB8D8F486DC4F9AE02/LlwMrqX6-WreoBWKqPtS-jRn4Og.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlwMrqX6-WreoBWKqPtS-jRn4Og.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F7E6/01C72C807D7511EB8D8F486DC4F9AE02/E4305D3A843711EB8E4DB665C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.245.112.0/22
103.252.56.0/22
Signature Algorithm: sha256WithRSAEncryption
57:b4:ce:22:9f:31:ae:e7:2e:49:45:f6:b7:22:80:fb:ab:6f:
4c:d3:be:b7:eb:d0:7e:aa:fe:59:56:21:ab:8d:12:fd:3b:c6:
1d:89:76:93:d4:75:05:6d:b9:24:6e:73:cb:46:7e:10:17:c7:
bc:6c:5c:f3:2c:95:bd:66:4d:f4:8a:a5:f2:8d:a6:6c:00:f5:
7f:e8:63:d4:d8:30:c1:0d:92:2c:74:0b:35:4f:6d:bd:a2:b2:
a6:71:17:c1:a5:37:35:b7:d3:0a:df:e6:bd:4a:f7:ab:bd:9e:
22:b0:1f:02:06:1a:8b:d0:36:ba:3a:83:46:0e:c9:86:80:7a:
fa:55:43:ea:5b:c5:d0:c0:b2:01:39:6a:6b:e5:ed:18:7f:8c:
63:da:02:16:43:13:85:3b:36:53:b2:52:a7:64:45:7d:a4:64:
f3:4f:3d:61:ef:cd:4d:f2:c0:93:3f:ba:24:70:3b:7e:33:53:
7b:67:bc:58:4e:df:48:c2:60:01:4d:f3:a2:77:8e:35:b4:a9:
c7:f3:4a:eb:c5:e2:8d:14:72:ba:7d:e0:d2:b9:3d:6c:b8:8c:
6a:42:0a:71:46:c2:65:3d:6b:34:ff:54:48:b0:43:f6:01:ff:
41:9e:25:d9:a8:a1:60:90:ef:8c:b2:22:74:e2:45:9b:50:e2:
86:0e:fc:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:46 2024 by rpki-client on console-ams.rpki-client.org