Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9190FEA/240DACEA0B7211EAACFB6916C4F9AE02/279A3D000B7311EAB0D8E617C4F9AE02.roa
File: 279A3D000B7311EAB0D8E617C4F9AE02.roa (raw, json)
Hash identifier: UafbiMmZF9F3XPcAOMRSjdNNwyxnWZkW944zFM+t9pk=
Subject key identifier: 79:E8:AF:39:EA:18:0E:A3:BE:24:F4:E6:07:1C:01:15:DF:58:F9:B0
Certificate issuer: /CN=A9190FEA/serialNumber=627FA9960EA283AA239213CACD37504D2460A104
Certificate serial: 0B6A
Authority key identifier: 62:7F:A9:96:0E:A2:83:AA:23:92:13:CA:CD:37:50:4D:24:60:A1:04
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yn-plg6ig6ojkhPKzTdQTSRgoQQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9190FEA/240DACEA0B7211EAACFB6916C4F9AE02/279A3D000B7311EAB0D8E617C4F9AE02.roa
Signing time: Fri 26 Apr 2024 19:38:23 +0000
ROA not before: Fri 26 Apr 2024 19:38:23 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 137432
IP address blocks: 103.108.88.0/22 maxlen: 24
2402:68c0::/32 maxlen: 32
2402:68c0::/36 maxlen: 36
2402:68c0:1000::/36 maxlen: 36
2402:68c0:2000::/36 maxlen: 36
2402:68c0:3000::/36 maxlen: 36
2402:68c0:4000::/36 maxlen: 36
2402:68c0:5000::/36 maxlen: 36
2402:68c0:6000::/36 maxlen: 36
2402:68c0:7000::/36 maxlen: 36
2402:68c0:8000::/36 maxlen: 36
2402:68c0:9000::/36 maxlen: 36
2402:68c0:a000::/36 maxlen: 36
2402:68c0:a000::/48 maxlen: 48
2402:68c0:a001::/48 maxlen: 48
2402:68c0:b000::/36 maxlen: 36
2402:68c0:c000::/36 maxlen: 36
2402:68c0:d000::/36 maxlen: 36
2402:68c0:e000::/36 maxlen: 36
2402:68c0:f000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 11 Nov 2024 10:36:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2922 (0xb6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9190FEA/serialNumber=627FA9960EA283AA239213CACD37504D2460A104
Validity
Not Before: Apr 26 19:38:23 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=662c02ae-5576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:7c:3f:05:3f:3d:99:54:fa:24:10:fb:36:f2:
6c:5c:6e:24:17:2b:de:0c:5c:41:04:3e:b8:29:60:
db:e0:19:52:b1:ca:c5:8d:22:61:49:f0:52:d6:a0:
ab:3a:a8:ff:be:91:77:84:8c:91:09:8f:8f:6e:4b:
b3:8e:ef:a5:54:70:7c:0d:d0:1f:26:b4:f3:e1:13:
a8:79:b0:dc:f9:65:5a:a2:76:70:4b:8c:21:ce:bd:
b2:e3:6c:f3:06:dd:cc:73:ed:44:a8:0c:9f:4a:08:
f7:2e:ce:e0:b1:83:c4:5c:a2:69:24:c3:bf:c8:a7:
f1:0c:7a:da:96:40:01:f8:0b:8a:31:c9:d8:f7:75:
ab:a0:10:5f:1f:d0:50:bb:48:21:5e:5b:c8:54:aa:
05:d4:6e:dd:17:83:51:4c:76:0b:27:f1:7f:11:29:
a3:15:b9:7c:8d:0c:8a:43:10:40:3b:76:0f:13:65:
ff:4f:c6:30:2d:39:22:37:ed:1e:7b:e2:0c:76:40:
83:26:16:a6:37:be:a4:74:f4:14:02:75:8a:55:40:
dd:ec:63:ed:c1:9c:b9:11:db:26:63:a9:3d:ed:d4:
2a:bf:9d:65:73:d7:44:a9:cb:f1:49:6c:d0:be:b7:
64:0e:48:09:d9:9a:6b:7a:44:ee:e2:6f:25:5f:46:
cb:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:E8:AF:39:EA:18:0E:A3:BE:24:F4:E6:07:1C:01:15:DF:58:F9:B0
X509v3 Authority Key Identifier:
keyid:62:7F:A9:96:0E:A2:83:AA:23:92:13:CA:CD:37:50:4D:24:60:A1:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9190FEA/240DACEA0B7211EAACFB6916C4F9AE02/Yn-plg6ig6ojkhPKzTdQTSRgoQQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yn-plg6ig6ojkhPKzTdQTSRgoQQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190FEA/240DACEA0B7211EAACFB6916C4F9AE02/279A3D000B7311EAB0D8E617C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.108.88.0/22
IPv6:
2402:68c0::/32
Signature Algorithm: sha256WithRSAEncryption
0b:21:aa:ec:34:27:5d:59:7d:18:a4:96:16:35:90:c0:7b:8c:
49:99:82:49:8c:17:04:02:76:db:a6:33:05:36:54:3b:11:53:
14:d7:9c:00:b6:cc:2e:34:a6:e8:05:c1:83:91:70:25:0f:ba:
62:79:2a:00:0d:25:3a:07:c7:cf:e5:79:a9:08:ee:38:68:15:
e6:94:9a:72:24:2b:a2:2e:4c:3d:a6:15:42:0a:16:f3:34:b7:
ae:d1:0f:7b:76:55:d8:e5:b7:82:9c:d5:22:29:68:b8:05:7e:
31:61:67:2b:94:a7:d5:3c:ca:22:bb:8a:3f:80:d7:3e:7b:0f:
7c:f5:75:30:19:c4:a6:c3:3a:df:8a:84:77:59:83:8a:da:91:
78:26:3f:d3:0a:f7:64:56:21:cb:40:9b:83:59:a8:5e:2c:2e:
f6:57:ae:61:79:c8:8d:8b:18:14:49:bd:5c:63:a4:56:a1:24:
36:06:6a:91:d7:1d:6e:4a:be:ba:32:a1:fc:fa:f5:2f:bb:1d:
b3:16:ae:b8:8e:18:09:27:d0:a5:fd:75:e5:a2:5c:1c:39:f1:
3a:06:6f:89:40:c1:32:e3:d7:94:47:02:3b:bb:82:cb:8a:09:
80:03:02:32:5c:45:57:2b:69:23:76:09:74:e0:b4:68:fc:87:
40:60:7b:e9
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICC2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTBGRUExMTAvBgNVBAUTKDYyN0ZBOTk2MEVBMjgzQUEyMzkyMTNDQUNEMzc1MDRE
MjQ2MEExMDQwHhcNMjQwNDI2MTkzODIzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjJjMDJhZS01NTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAznw/BT89mVT6JBD7NvJsXG4kFyveDFxBBD64KWDb4BlSscrFjSJhSfBS1qCr
Oqj/vpF3hIyRCY+Pbkuzju+lVHB8DdAfJrTz4ROoebDc+WVaonZwS4whzr2y42zz
Bt3Mc+1EqAyfSgj3Ls7gsYPEXKJpJMO/yKfxDHralkAB+AuKMcnY93WroBBfH9BQ
u0ghXlvIVKoF1G7dF4NRTHYLJ/F/ESmjFbl8jQyKQxBAO3YPE2X/T8YwLTkiN+0e
e+IMdkCDJhamN76kdPQUAnWKVUDd7GPtwZy5EdsmY6k97dQqv51lc9dEqcvxSWzQ
vrdkDkgJ2ZprekTu4m8lX0bLYQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHnorznq
GA6jviT05gccARXfWPmwMB8GA1UdIwQYMBaAFGJ/qZYOooOqI5ITys03UE0kYKEE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEZFQS8yNDBEQUNFQTBC
NzIxMUVBQUNGQjY5MTZDNEY5QUUwMi9Zbi1wbGc2aWc2b2praFBLelRkUVRTUmdv
UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1luLXBsZzZpZzZvamtoUEt6VGRRVFNSZ29RUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTBGRUEvMjQwREFDRUEwQjcyMTFFQUFDRkI2OTE2QzRGOUFFMDIvMjc5QTNEMDAw
QjczMTFFQUIwRDhFNjE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E
HzAdMAwEAgABMAYDBAJnbFgwDQQCAAIwBwMFACQCaMAwDQYJKoZIhvcNAQELBQAD
ggEBAAshquw0J11ZfRiklhY1kMB7jEmZgkmMFwQCdtumMwU2VDsRUxTXnAC2zC40
pugFwYORcCUPumJ5KgANJToHx8/leakI7jhoFeaUmnIkK6IuTD2mFUIKFvM0t67R
D3t2Vdjlt4Kc1SIpaLgFfjFhZyuUp9U8yiK7ij+A1z57D3z1dTAZxKbDOt+KhHdZ
g4rakXgmP9MK92RWIctAm4NZqF4sLvZXrmF5yI2LGBRJvVxjpFahJDYGapHXHW5K
vroyofz69S+7HbMWrriOGAkn0KX9deWiXBw58ToGb4lAwTLj15RHAju7gsuKCYAD
AjJcRVcraSN2CXTgtGj8h0Bge+k=
-----END CERTIFICATE-----
Generated at Mon Nov 11 14:44:09 2024 by rpki-client on console-fra.rpki-client.org