Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/368C74408F4F11EEACD40B7EC4F9AE02.roa
File: 368C74408F4F11EEACD40B7EC4F9AE02.roa (raw, json)
Hash identifier: cjLJfirtTwpDfqTuQMxfYRTplH0EZ3aZeCIS+hBzySY=
Subject key identifier: D4:E3:DF:56:E9:04:2E:DB:56:A1:8D:B5:66:4A:CF:91:ED:79:CC:31
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 40CA
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/368C74408F4F11EEACD40B7EC4F9AE02.roa
Signing time: Thu 30 Nov 2023 07:08:08 +0000
ROA not before: Thu 30 Nov 2023 07:08:08 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 140810
IP address blocks: 103.77.172.0/23 maxlen: 23
103.77.214.0/23 maxlen: 23
103.77.240.0/23 maxlen: 23
103.77.246.0/23 maxlen: 23
103.78.0.0/23 maxlen: 23
103.116.38.0/23 maxlen: 23
103.141.140.0/23 maxlen: 23
103.141.142.0/23 maxlen: 23
103.155.216.0/23 maxlen: 23
103.168.53.0/24 maxlen: 24
103.176.108.0/23 maxlen: 24
103.178.234.0/23 maxlen: 23
103.213.218.0/23 maxlen: 23
103.214.8.0/22 maxlen: 22
103.238.234.0/23 maxlen: 23
103.252.136.0/23 maxlen: 23
223.130.10.0/23 maxlen: 23
2001:df4:d880::/48 maxlen: 48
2400:ece0::/48 maxlen: 48
2401:1960::/48 maxlen: 48
2401:2420::/48 maxlen: 48
2401:3660::/48 maxlen: 48
2401:36a0::/48 maxlen: 48
2401:3760::/48 maxlen: 48
2401:37a0::/48 maxlen: 48
2401:3f20::/48 maxlen: 48
2401:45a0::/48 maxlen: 48
2405:19c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 26 Dec 2023 02:48:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16586 (0x40ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Nov 30 07:08:08 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=656834d7-ead8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:bd:92:ac:ec:80:6b:35:51:24:85:42:f3:da:
ee:9b:ec:8a:74:68:6c:73:ab:3a:fd:c8:28:2a:b1:
d6:4e:df:1b:ba:40:31:cc:84:4d:8d:d1:97:b7:d8:
d3:b8:01:10:59:77:01:6e:9e:1f:72:28:47:59:bd:
20:0b:ec:32:8b:6c:07:32:b0:d6:68:04:03:7d:a2:
a5:e3:22:dc:c2:29:25:c0:6d:14:ab:1b:9d:07:bd:
7b:95:77:af:0b:38:3d:2e:f6:da:2b:54:18:ec:32:
a6:88:d7:e2:e6:3a:30:48:e0:0f:4c:d5:e6:42:39:
6e:46:3f:72:7a:8d:41:94:e2:8c:5b:37:70:8f:25:
de:7e:47:fe:11:a6:5b:2b:da:d0:77:9c:2c:1e:98:
36:3d:21:92:e2:10:16:71:ba:bb:3c:5f:3b:06:ae:
12:86:83:f7:88:ab:36:ea:0d:4d:c8:17:2f:f6:c3:
13:d0:d3:d8:cc:f2:1c:4d:a1:ef:69:bf:73:74:a4:
e8:42:02:23:fa:32:94:49:2c:78:b8:ba:75:ee:ea:
0f:c0:47:bc:5e:22:9d:34:35:e5:29:4e:53:26:4a:
7f:ac:4f:3a:ea:f7:95:a2:5a:64:e0:a8:ae:62:0c:
1d:5e:15:80:15:28:de:d3:d5:b3:1e:31:e0:e4:d3:
70:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:E3:DF:56:E9:04:2E:DB:56:A1:8D:B5:66:4A:CF:91:ED:79:CC:31
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/368C74408F4F11EEACD40B7EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.77.172.0/23
103.77.214.0/23
103.77.240.0/23
103.77.246.0/23
103.78.0.0/23
103.116.38.0/23
103.141.140.0/22
103.155.216.0/23
103.168.53.0/24
103.176.108.0/23
103.178.234.0/23
103.213.218.0/23
103.214.8.0/22
103.238.234.0/23
103.252.136.0/23
223.130.10.0/23
IPv6:
2001:df4:d880::/48
2400:ece0::/48
2401:1960::/48
2401:2420::/48
2401:3660::/48
2401:36a0::/48
2401:3760::/48
2401:37a0::/48
2401:3f20::/48
2401:45a0::/48
2405:19c0::/32
Signature Algorithm: sha256WithRSAEncryption
92:c7:db:11:fb:fa:5c:e3:18:76:e2:0e:49:1f:ce:cc:41:55:
66:da:a3:cd:3d:d2:14:38:d4:18:76:fe:02:be:77:07:b7:23:
be:28:ee:67:ac:47:d4:e3:8c:8d:e1:9f:04:8f:5e:66:09:6a:
ff:bd:e6:a0:e0:25:17:55:d0:c0:ce:50:b8:38:6d:28:52:3c:
19:76:0b:dd:f9:c0:26:2d:bd:46:7c:4e:a2:45:78:a0:65:f5:
da:4b:cf:c1:1c:b7:f7:9b:f9:7e:79:ee:04:85:f0:80:57:bb:
cf:13:f8:28:a3:2f:bb:5f:8a:d4:5e:6a:6b:b6:82:fa:79:a6:
f6:2d:3c:a0:f8:2f:19:e0:f5:97:ba:57:06:7f:48:fe:8c:4b:
16:6f:4c:40:7b:f0:4e:c2:9f:30:43:9d:4b:f1:54:1b:2d:c5:
2a:90:2e:4d:41:13:54:19:53:73:34:ec:e5:cb:68:21:8a:ee:
83:a1:1c:d4:65:55:3e:9f:c9:a6:51:34:e9:02:82:84:9b:aa:
27:dc:8b:8c:63:1f:0c:bd:ff:86:23:5a:af:fc:ac:bd:55:72:
3e:f2:50:25:98:67:56:7a:4d:a6:b1:0d:61:24:04:a0:de:ec:
3e:ce:44:8e:2c:09:9d:38:a7:0e:9e:db:23:b0:d9:f6:ba:8b:
d6:cd:72:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:36 2024 by rpki-client on console-fra.rpki-client.org