Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6BD72C9C904A11EFA2BA5A49C4F9AE02.roa
File: 6BD72C9C904A11EFA2BA5A49C4F9AE02.roa (raw, json)
Hash identifier: /efN/nNk0vfpoaz+24w4t8qUI8p+JmF5+8pjVV/Gvew=
Subject key identifier: 88:0A:93:1A:0D:81:2F:22:7B:34:AD:E8:97:52:EC:6B:4D:EF:3E:3D
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 4784
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6BD72C9C904A11EFA2BA5A49C4F9AE02.roa
Signing time: Tue 22 Oct 2024 07:51:18 +0000
ROA not before: Tue 22 Oct 2024 07:51:18 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 140810
IP address blocks: 103.77.172.0/23 maxlen: 23
103.77.214.0/23 maxlen: 23
103.77.240.0/23 maxlen: 23
103.77.246.0/23 maxlen: 23
103.78.0.0/23 maxlen: 23
103.116.38.0/23 maxlen: 23
103.137.184.0/23 maxlen: 24
103.141.140.0/23 maxlen: 23
103.176.108.0/23 maxlen: 24
103.178.234.0/23 maxlen: 23
103.213.218.0/23 maxlen: 23
103.214.8.0/22 maxlen: 22
103.238.234.0/23 maxlen: 23
103.252.136.0/23 maxlen: 23
223.130.10.0/23 maxlen: 23
2001:df4:d880::/48 maxlen: 48
2400:ece0::/48 maxlen: 48
2401:1960::/48 maxlen: 48
2401:2420::/48 maxlen: 48
2401:3660::/48 maxlen: 48
2401:36a0::/48 maxlen: 48
2401:3760::/48 maxlen: 48
2401:37a0::/48 maxlen: 48
2401:3f20::/48 maxlen: 48
2401:45a0::/48 maxlen: 48
2405:19c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 22 Nov 2024 01:33:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18308 (0x4784)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Oct 22 07:51:18 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=67175976-62ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:b5:e6:7f:c0:9c:e7:7a:79:9d:18:54:db:40:
42:25:86:b9:8a:4f:79:ad:75:56:69:08:81:33:60:
4c:2d:e9:67:49:fe:85:07:eb:10:3f:a8:b5:1b:e6:
13:89:d3:94:91:ab:34:09:75:d0:12:2b:cb:2b:4b:
01:b9:b1:0a:ee:1f:fc:1d:c8:e3:a2:04:15:68:76:
af:d8:d0:91:20:a0:c1:46:2f:2e:a3:12:07:44:08:
4d:0a:c2:98:2c:29:34:19:23:06:c2:64:79:71:fd:
f2:2a:11:1e:76:c3:45:d4:82:bb:28:68:c3:c0:5b:
e3:78:fc:a3:df:89:89:0e:cf:4a:09:98:7e:84:12:
10:08:4a:e4:d0:7a:ac:37:d2:54:73:3f:82:9d:5d:
52:70:27:e6:a7:63:0d:05:61:05:b6:23:ac:50:fd:
79:cd:ca:c1:64:cc:8c:f3:b7:9d:03:3a:46:9b:41:
9b:bb:d7:f2:e3:9d:e0:1f:a0:da:e1:95:78:06:6e:
c7:f3:1f:53:76:3f:d5:a2:d9:04:3a:92:49:23:ba:
14:e9:47:ce:e9:07:5e:18:e8:8d:ca:a5:ee:3c:6d:
fa:5f:63:a9:fd:6c:e3:60:f6:af:bf:2b:90:07:9e:
bf:58:91:83:f6:96:be:d3:37:b4:51:f3:5a:0b:5c:
1d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:0A:93:1A:0D:81:2F:22:7B:34:AD:E8:97:52:EC:6B:4D:EF:3E:3D
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/6BD72C9C904A11EFA2BA5A49C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.77.172.0/23
103.77.214.0/23
103.77.240.0/23
103.77.246.0/23
103.78.0.0/23
103.116.38.0/23
103.137.184.0/23
103.141.140.0/23
103.176.108.0/23
103.178.234.0/23
103.213.218.0/23
103.214.8.0/22
103.238.234.0/23
103.252.136.0/23
223.130.10.0/23
IPv6:
2001:df4:d880::/48
2400:ece0::/48
2401:1960::/48
2401:2420::/48
2401:3660::/48
2401:36a0::/48
2401:3760::/48
2401:37a0::/48
2401:3f20::/48
2401:45a0::/48
2405:19c0::/32
Signature Algorithm: sha256WithRSAEncryption
08:c9:7e:b6:81:a9:43:ae:93:60:cf:b7:c0:5c:cf:36:9e:ba:
19:6e:9b:90:2c:3c:83:ee:f7:35:46:bc:09:8c:bb:b6:0f:33:
14:6c:56:27:c3:03:a9:c1:7c:b8:6b:01:b8:77:5d:61:74:3e:
71:32:86:c3:65:6f:b7:e8:85:f8:39:a5:1e:84:f4:0b:21:3f:
40:ac:13:c2:aa:a5:e1:f3:20:aa:af:3e:90:1e:66:fe:a8:10:
e3:a5:29:e1:9e:1e:99:7a:e4:bc:b9:09:47:d5:42:d6:c3:27:
fa:00:cf:a1:43:35:1b:c5:b1:e4:90:75:49:53:59:b8:e0:e7:
57:5c:c5:5e:37:9f:fb:08:e5:e6:8e:e4:ed:9a:08:94:88:1f:
f9:be:d0:cc:48:81:05:76:22:e5:b6:69:38:31:d2:84:0f:53:
ab:9c:29:38:63:61:c7:37:f9:d5:02:f5:3f:31:6d:b0:8b:d4:
45:2a:1c:4d:6c:38:8b:53:b8:74:95:c0:45:e7:da:7e:95:d0:
5a:67:15:bd:6a:39:0e:2b:c7:63:13:9d:4a:0d:55:b7:65:a7:
89:4b:08:6e:a6:fa:f9:2a:6d:9e:d7:09:a8:4a:0c:af:c0:23:
95:e1:61:1b:03:5a:9d:da:c3:7b:3e:47:5f:a1:c8:e2:b7:d3:
cc:44:c2:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 05:02:53 2024 by rpki-client on console-ams.rpki-client.org