Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0209C6F8896811ECA2D2C484C4F9AE02.roa
File: 0209C6F8896811ECA2D2C484C4F9AE02.roa (raw, json)
Hash identifier: pr1NfxsCDCROjvgL8nTa3r0iivwCHE7zUS3iI6ZI14I=
Subject key identifier: 92:09:8B:8F:CD:C0:51:C3:89:1A:57:7F:59:79:3D:A9:CE:AD:88:B4
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 465C
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0209C6F8896811ECA2D2C484C4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:36:06 +0000
ROA not before: Thu 05 Sep 2024 03:36:06 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 45557
IP address blocks: 45.118.136.0/22 maxlen: 22
45.118.136.0/24 maxlen: 24
45.118.137.0/24 maxlen: 24
45.118.138.0/24 maxlen: 24
45.118.139.0/24 maxlen: 24
103.17.88.0/22 maxlen: 22
103.17.88.0/24 maxlen: 24
103.17.89.0/24 maxlen: 24
103.17.90.0/24 maxlen: 24
103.17.91.0/24 maxlen: 24
103.129.80.0/22 maxlen: 22
103.129.80.0/24 maxlen: 24
103.129.81.0/24 maxlen: 24
103.129.82.0/24 maxlen: 24
103.129.83.0/24 maxlen: 24
103.153.218.0/23 maxlen: 24
103.153.220.0/23 maxlen: 24
103.153.222.0/23 maxlen: 24
103.170.248.0/23 maxlen: 24
180.148.0.0/21 maxlen: 24
2404:3a00::/44 maxlen: 48
2404:3a00:10::/44 maxlen: 48
2404:3a00:20::/44 maxlen: 48
2404:3a00:30::/44 maxlen: 48
2404:3a00:40::/44 maxlen: 48
2404:3a00:50::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 04 Oct 2024 08:22:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18012 (0x465c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Sep 5 03:36:06 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d92725-f96d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7d:fd:d1:3b:5e:d4:23:ce:ff:7b:74:46:d8:
54:a9:a8:20:f1:ee:74:6d:e6:66:76:b3:a8:a6:b6:
38:5f:1b:bb:b5:1a:59:31:74:c4:f8:32:ae:92:c7:
70:7d:a4:92:72:29:b6:8d:1a:db:73:b9:d5:ee:ea:
e2:ca:b0:6b:59:00:35:16:a0:3c:5a:3e:6c:f7:78:
23:90:02:53:0e:68:81:e6:1e:53:de:42:0e:06:56:
aa:24:8f:ac:23:4a:4b:29:16:8c:81:cd:f1:ec:83:
9d:79:5d:57:16:9a:64:4e:b8:37:ba:1e:3c:cc:39:
72:71:86:74:65:03:48:dc:15:ac:00:4b:25:3e:be:
e0:a7:92:da:79:4d:b6:98:8e:6e:54:fa:42:62:95:
fb:82:7c:55:19:12:da:e8:e6:e3:d5:3f:11:1b:5e:
20:e2:99:7b:73:9f:4b:e0:75:8d:50:95:44:a8:bb:
29:31:66:7d:ce:29:eb:d0:8a:44:2f:95:0e:0c:14:
15:0f:1b:72:65:cb:cc:53:f4:a4:45:3e:90:11:1a:
6f:15:ec:94:7b:e1:6a:70:39:3a:76:3c:df:16:61:
34:db:71:c5:f9:2c:1a:ac:cc:e2:69:e7:c6:db:d7:
db:83:84:d9:fb:7c:07:6e:2a:c8:2b:9d:20:de:10:
14:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:09:8B:8F:CD:C0:51:C3:89:1A:57:7F:59:79:3D:A9:CE:AD:88:B4
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0209C6F8896811ECA2D2C484C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.118.136.0/22
103.17.88.0/22
103.129.80.0/22
103.153.218.0-103.153.223.255
103.170.248.0/23
180.148.0.0/21
IPv6:
2404:3a00::-2404:3a00:5f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
9b:08:dd:bc:7f:41:b5:93:e0:3f:40:0e:a8:da:af:e7:22:39:
01:a1:73:9b:19:05:a5:44:6d:71:38:e4:3a:9d:36:19:85:6d:
40:1e:9b:b0:b3:66:fa:a2:7e:78:ad:c6:aa:59:23:a1:6f:f7:
b0:18:6e:42:b3:88:34:bd:49:f2:1b:c0:1d:c8:fa:ee:57:f5:
bc:f4:84:49:3f:52:d5:41:3e:fa:dd:ec:04:bd:1f:eb:95:af:
d0:03:6d:c2:d4:ef:90:2e:03:27:14:fc:92:9e:5e:c8:c0:19:
4c:93:41:98:90:5f:fd:fa:f8:4e:a5:c2:b5:7a:ab:3a:f1:32:
7c:ed:91:91:89:73:fb:3f:49:e8:6e:b5:5f:99:ed:44:18:96:
b6:8a:20:82:07:7a:30:11:5b:14:12:52:ea:20:d3:c0:32:09:
c8:99:8c:b1:d0:d1:0a:23:e3:47:62:a4:b3:9c:2f:16:30:14:
f9:d1:2d:2b:92:8d:8b:8b:74:c8:30:af:7a:d7:d7:4d:98:14:
f4:c8:04:3c:9b:89:7e:8f:48:5b:d8:7f:73:32:d4:a2:06:6f:
eb:8f:8e:6a:04:e0:39:51:c2:74:09:95:a1:8d:01:4d:75:d9:
da:5e:c1:33:6d:c1:3b:15:fc:c7:a7:52:3b:98:2a:f7:6b:ce:
21:f0:41:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 4 10:11:11 2024 by rpki-client on console-fra.rpki-client.org