Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/B6413BFC536311EAB9ACF938C4F9AE02.roa
File: B6413BFC536311EAB9ACF938C4F9AE02.roa (raw, json)
Hash identifier: GjJEvSGJ1OeLcztWlc9YEIHDJwpln0VJ4ezsFt+2RkU=
Subject key identifier: 42:86:E0:76:BF:4D:05:7F:CB:9A:16:08:07:3B:BF:67:60:30:42:45
Certificate issuer: /CN=A919EF51/serialNumber=806706637950EF8DAE7BEBD1C9A74BB1F265D417
Certificate serial: 0AA4
Authority key identifier: 80:67:06:63:79:50:EF:8D:AE:7B:EB:D1:C9:A7:4B:B1:F2:65:D4:17
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGcGY3lQ742ue-vRyadLsfJl1Bc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/B6413BFC536311EAB9ACF938C4F9AE02.roa
Signing time: Wed 21 Aug 2024 04:36:41 +0000
ROA not before: Wed 21 Aug 2024 04:36:41 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 0
IP address blocks: 27.106.192.0/23 maxlen: 23
103.79.72.0/24 maxlen: 24
218.100.52.0/23 maxlen: 23
218.100.54.0/24 maxlen: 24
218.100.76.0/24 maxlen: 24
218.100.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Aug 2024 03:31:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2724 (0xaa4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919EF51/serialNumber=806706637950EF8DAE7BEBD1C9A74BB1F265D417
Validity
Not Before: Aug 21 04:36:41 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=66c56ed9-e539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:08:8d:23:77:97:26:17:75:80:06:5c:bb:43:
bd:29:ba:a3:10:2c:5c:8e:5a:f4:f4:93:a0:dd:73:
e0:34:0e:80:45:2c:ea:95:4e:00:f7:ca:00:00:be:
c9:84:83:f2:ed:10:0a:05:9a:23:7d:44:34:2b:e8:
fd:14:24:98:be:3f:07:cf:38:df:61:6c:f7:32:f8:
05:d5:f1:65:6a:85:76:21:fe:74:8f:7d:37:28:36:
09:64:92:a7:d9:f6:97:b2:ef:3e:22:87:1c:9d:f1:
38:cd:36:00:40:17:3d:f4:c8:86:de:54:d3:09:86:
90:8c:c5:a5:33:26:ba:ca:4a:15:55:85:7a:78:57:
34:aa:78:c9:26:d2:e4:60:e1:8b:38:19:e6:15:7b:
46:85:c5:8f:32:70:40:8c:85:c3:38:9f:9d:b1:bf:
53:db:aa:b5:d0:60:e7:1e:3e:18:bc:93:01:af:3d:
53:4e:6b:a3:08:6d:54:c2:fa:36:65:13:19:3e:7b:
91:5a:df:a0:27:f9:10:cf:62:6e:af:22:d6:b5:34:
ec:d5:35:e5:b6:f2:b7:0b:50:ab:16:2c:67:f7:06:
27:af:55:4b:38:34:d4:3b:ca:4b:3f:89:96:d1:4f:
8d:d4:46:6f:34:62:49:47:52:81:3b:9f:ad:67:c5:
11:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:86:E0:76:BF:4D:05:7F:CB:9A:16:08:07:3B:BF:67:60:30:42:45
X509v3 Authority Key Identifier:
keyid:80:67:06:63:79:50:EF:8D:AE:7B:EB:D1:C9:A7:4B:B1:F2:65:D4:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/gGcGY3lQ742ue-vRyadLsfJl1Bc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGcGY3lQ742ue-vRyadLsfJl1Bc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF51/A883E81C3D8211EA9F267370C4F9AE02/B6413BFC536311EAB9ACF938C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.106.192.0/23
103.79.72.0/24
218.100.52.0-218.100.54.255
218.100.76.0/24
218.100.78.0/24
Signature Algorithm: sha256WithRSAEncryption
10:7b:14:59:d6:3a:0c:6f:69:ee:88:e6:0f:66:16:b4:8b:e9:
e3:fa:d4:2f:a5:5e:ea:d2:db:5a:41:3a:1a:93:dc:c4:9c:d5:
b4:fa:10:5d:73:7c:4c:81:98:1f:e0:bb:ae:0f:d7:96:f9:c5:
2e:dd:31:bf:d6:42:1b:ab:f0:f9:89:eb:26:84:bf:07:d7:cd:
a8:4d:1a:74:e5:28:d1:30:4a:b1:17:30:2e:25:0a:e8:af:74:
17:6c:47:93:5f:b9:71:39:b3:f0:2a:dd:5a:c8:6e:be:01:dc:
9b:22:58:69:b6:62:8d:97:4a:4b:9e:85:97:8e:0f:0f:71:5d:
64:29:1f:52:8e:66:a8:dc:d0:5c:47:90:a2:90:fa:06:b1:55:
ff:23:0d:7f:f2:65:e4:c3:90:d4:5d:ee:0b:d0:4c:44:fa:69:
70:60:b8:7a:5d:5a:84:2b:3e:1d:72:f5:d2:43:0c:2f:32:02:
ba:2f:6a:75:5e:41:c7:f5:e5:6d:41:94:96:af:42:a1:35:e3:
4a:4e:ff:77:50:6f:b5:93:eb:be:5e:5b:32:d9:f7:25:15:b2:
49:e1:70:05:1b:53:f3:21:71:94:bf:d6:74:f8:8a:74:30:37:
2d:b3:2f:7f:6e:4d:f6:1d:98:ee:4d:d0:44:bb:8c:57:0d:75:
24:6e:b8:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 06:46:00 2024 by rpki-client on console-fra.rpki-client.org