Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/15091E96A8C311EC8F560C42C4F9AE02.roa
File: 15091E96A8C311EC8F560C42C4F9AE02.roa (raw, json)
Hash identifier: 892AIYBLviWV1fdZ0NhRtHCf2mQLKxMzBvsF5Vu3Sqc=
Subject key identifier: D8:90:39:82:36:42:14:DB:7C:57:9E:71:AE:07:2C:2E:8D:F2:C5:C2
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 40B6
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/15091E96A8C311EC8F560C42C4F9AE02.roa
Signing time: Mon 27 Nov 2023 08:07:34 +0000
ROA not before: Mon 27 Nov 2023 08:07:34 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 140810
IP address blocks: 103.77.172.0/23 maxlen: 23
103.77.214.0/23 maxlen: 23
103.77.240.0/23 maxlen: 23
103.77.246.0/23 maxlen: 23
103.78.0.0/23 maxlen: 23
103.116.38.0/23 maxlen: 23
103.141.140.0/23 maxlen: 23
103.141.142.0/23 maxlen: 23
103.155.216.0/23 maxlen: 23
103.168.53.0/24 maxlen: 24
103.176.108.0/23 maxlen: 24
103.178.234.0/23 maxlen: 23
103.213.218.0/23 maxlen: 23
103.214.8.0/22 maxlen: 22
103.238.234.0/23 maxlen: 23
103.252.136.0/23 maxlen: 23
203.145.46.0/23 maxlen: 23
223.130.10.0/23 maxlen: 23
2001:df4:d880::/48 maxlen: 48
2400:ece0::/48 maxlen: 48
2401:1960::/48 maxlen: 48
2401:2420::/48 maxlen: 48
2401:3660::/48 maxlen: 48
2401:36a0::/48 maxlen: 48
2401:3760::/48 maxlen: 48
2401:37a0::/48 maxlen: 48
2401:3f20::/48 maxlen: 48
2401:45a0::/48 maxlen: 48
2401:5120::/48 maxlen: 48
2405:19c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 30 Nov 2023 07:08:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16566 (0x40b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Nov 27 08:07:34 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=65644e46-2647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e9:97:73:96:87:5b:33:04:96:24:ca:e8:73:
7c:8c:42:7d:37:77:8c:0f:0b:81:9c:60:3f:18:a7:
bc:9a:70:d4:8d:ad:a9:46:04:b3:b0:37:e5:59:1f:
e2:88:41:65:e5:25:54:29:33:fe:90:a5:17:3d:01:
33:0f:84:69:14:f3:97:a9:a0:1f:4d:9e:08:ea:63:
d8:c9:94:4e:99:fe:d8:f9:03:54:c7:9d:85:7e:4f:
27:54:a6:2c:b7:2e:75:fc:2c:36:9d:94:e5:54:37:
75:ef:93:e9:fe:ef:26:94:c6:9b:f8:d7:b6:e6:a4:
6a:88:6d:e8:48:42:f6:97:5b:85:e8:40:53:41:a6:
cf:e4:5e:1b:ca:fa:65:d9:82:9d:e9:f9:0e:28:99:
98:42:ef:8d:cc:5a:71:b4:81:92:36:87:0e:65:5c:
1f:d3:ad:e0:e8:4c:7d:cd:29:ef:cd:1d:c9:c1:21:
24:e0:22:ff:f3:d9:17:8d:fe:dd:81:8d:ca:48:5b:
c2:dd:44:76:87:5a:22:34:d1:66:e3:aa:ad:76:7f:
7a:6b:51:3e:15:48:8c:b8:b7:1a:25:c5:5d:e2:30:
fc:71:b9:81:56:28:fd:8d:85:48:e4:2a:63:5a:ad:
89:fd:23:11:84:58:58:7e:7e:e0:0c:a5:9a:5a:de:
21:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:90:39:82:36:42:14:DB:7C:57:9E:71:AE:07:2C:2E:8D:F2:C5:C2
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/15091E96A8C311EC8F560C42C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.77.172.0/23
103.77.214.0/23
103.77.240.0/23
103.77.246.0/23
103.78.0.0/23
103.116.38.0/23
103.141.140.0/22
103.155.216.0/23
103.168.53.0/24
103.176.108.0/23
103.178.234.0/23
103.213.218.0/23
103.214.8.0/22
103.238.234.0/23
103.252.136.0/23
203.145.46.0/23
223.130.10.0/23
IPv6:
2001:df4:d880::/48
2400:ece0::/48
2401:1960::/48
2401:2420::/48
2401:3660::/48
2401:36a0::/48
2401:3760::/48
2401:37a0::/48
2401:3f20::/48
2401:45a0::/48
2401:5120::/48
2405:19c0::/32
Signature Algorithm: sha256WithRSAEncryption
72:db:05:fc:6d:28:96:f8:8b:c9:a8:d7:b1:a4:d9:09:e2:2b:
fa:19:db:5f:aa:26:39:ad:85:34:bc:0a:6c:d4:85:07:14:40:
6a:d3:ad:63:fd:15:4f:e7:d7:2f:1d:b3:9b:7f:9a:9d:1c:88:
48:55:b5:bf:3e:c9:35:0b:2b:da:19:11:d4:db:b6:98:9d:b1:
64:58:1b:79:95:1e:fb:58:82:76:68:b8:53:56:59:07:1c:a4:
2c:76:3d:c9:17:12:d5:a6:a7:02:c8:5c:d6:68:b1:9a:91:83:
5a:74:60:d0:26:a1:80:1e:18:dc:10:82:3e:5b:33:5b:3c:60:
78:3c:3b:06:19:90:b3:ba:10:bb:65:63:f8:02:76:62:6d:d3:
ba:e4:ca:b2:20:a7:5a:45:a1:6a:ac:e3:63:41:94:af:a4:94:
5b:12:0f:e5:18:db:d3:e5:50:b2:f4:65:8e:0b:e1:35:3b:d7:
1d:65:b0:79:0f:4e:7b:4f:9d:c7:47:fe:3a:3c:0d:e1:d3:b8:
82:f6:ce:29:e9:ad:90:7b:cb:2b:65:5e:db:66:e4:72:de:ad:
9e:df:e0:13:46:90:e0:2c:53:ee:b8:63:35:23:a3:b8:dd:bb:
5a:33:64:11:96:a2:67:03:87:ce:31:16:6e:e2:a9:a9:fe:d5:
4f:83:bc:da
-----BEGIN CERTIFICATE-----
MIIGRjCCBS6gAwIBAgICQLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3
NTZBQzZGMEEwHhcNMjMxMTI3MDgwNzM0WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTY0NGU0Ni0yNjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1OmXc5aHWzMEliTK6HN8jEJ9N3eMDwuBnGA/GKe8mnDUja2pRgSzsDflWR/i
iEFl5SVUKTP+kKUXPQEzD4RpFPOXqaAfTZ4I6mPYyZROmf7Y+QNUx52Ffk8nVKYs
ty51/Cw2nZTlVDd175Pp/u8mlMab+Ne25qRqiG3oSEL2l1uF6EBTQabP5F4byvpl
2YKd6fkOKJmYQu+NzFpxtIGSNocOZVwf063g6Ex9zSnvzR3JwSEk4CL/89kXjf7d
gY3KSFvC3UR2h1oiNNFm46qtdn96a1E+FUiMuLcaJcVd4jD8cbmBVij9jYVI5Cpj
Wq2J/SMRhFhYfn7gDKWaWt4hIwIDAQABo4IDajCCA2YwHQYDVR0OBBYEFNiQOYI2
QhTbfFeeca4HLC6N8sXCMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE
OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi
d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMTUwOTFFOTZB
OEMzMTFFQzhGNTYwQzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgfMGCCsGAQUFBwEHAQH/
BIHjMIHgMGwEAgABMGYDBAFnTawDBAFnTdYDBAFnTfADBAFnTfYDBAFnTgADBAFn
dCYDBAJnjYwDBAFnm9gDBABnqDUDBAFnsGwDBAFnsuoDBAFn1doDBAJn1ggDBAFn
7uoDBAFn/IgDBAHLkS4DBAHfggowcAQCAAIwagMHACABDfTYgAMHACQA7OAAAAMH
ACQBGWAAAAMHACQBJCAAAAMHACQBNmAAAAMHACQBNqAAAAMHACQBN2AAAAMHACQB
N6AAAAMHACQBPyAAAAMHACQBRaAAAAMHACQBUSAAAAMFACQFGcAwDQYJKoZIhvcN
AQELBQADggEBAHLbBfxtKJb4i8mo17Gk2QniK/oZ21+qJjmthTS8CmzUhQcUQGrT
rWP9FU/n1y8ds5t/mp0ciEhVtb8+yTULK9oZEdTbtpidsWRYG3mVHvtYgnZouFNW
WQccpCx2PckXEtWmpwLIXNZosZqRg1p0YNAmoYAeGNwQgj5bM1s8YHg8OwYZkLO6
ELtlY/gCdmJt07rkyrIgp1pFoWqs42NBlK+klFsSD+UY29PlULL0ZY4L4TU71x1l
sHkPTntPncdH/jo8DeHTuIL2zinprZB7yytlXttm5HLerZ7f4BNGkOAsU+64YzUj
o7jdu1ozZBGWomcDh84xFm7iqan+1U+DvNo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:36 2024 by rpki-client on console-fra.rpki-client.org