Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/888B171A960D11ED942B5D62C4F9AE02.roa
File: 888B171A960D11ED942B5D62C4F9AE02.roa (raw, json)
Hash identifier: Ljy2S3dqL60dGM7nafmhqB5DnChNrk3HzOt8T4mdexA=
Subject key identifier: 1E:86:48:14:A5:54:02:E3:43:28:F7:9A:35:B3:B9:1F:31:2D:F8:51
Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3
Certificate serial: 341D
Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/888B171A960D11ED942B5D62C4F9AE02.roa
Signing time: Tue 18 Jun 2024 15:31:10 +0000
ROA not before: Tue 18 Jun 2024 15:31:10 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 148989
IP address blocks: 103.112.36.0/22 maxlen: 22
180.189.160.0/20 maxlen: 20
Validation: Failed, certificate revoked on Fri 22 Nov 2024 06:54:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13341 (0x341d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3
Validity
Not Before: Jun 18 15:31:10 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=6671a83e-30df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c7:44:a5:2d:29:29:cd:39:85:72:39:9e:b2:
6b:a5:6b:d4:60:9c:8a:54:cd:c6:df:82:fe:e3:70:
03:07:9f:57:6e:bc:3b:fb:55:f9:91:ac:d9:b5:08:
f0:a1:b9:99:03:00:50:fa:f0:8d:70:46:79:ea:82:
2e:47:bc:be:ad:15:d4:a1:f6:3b:ef:1f:c5:74:39:
5d:42:88:48:77:a3:e8:53:32:00:41:90:b0:e1:0d:
7c:0f:9f:b0:a6:a0:05:41:61:66:d1:b6:3b:c6:9e:
52:87:38:38:9d:0d:85:7a:0d:58:1d:5c:19:59:ff:
ec:57:5f:21:b9:00:fb:49:80:ad:5f:11:88:41:29:
69:93:65:0d:5f:ec:32:18:14:d9:13:0e:45:6e:f1:
7c:69:cf:d1:66:e1:45:ea:4b:34:94:04:f4:3f:5c:
f5:e0:c6:fc:74:99:b0:47:81:27:94:c5:84:82:d0:
c0:e5:70:5a:b5:ab:04:03:49:15:be:f7:7e:50:72:
0a:bf:06:b3:f4:bd:e9:4c:c3:30:24:9e:d4:ce:10:
c9:9c:d2:b5:9a:3a:9d:eb:73:cf:e2:0b:d1:4c:c3:
79:2e:17:5c:0e:41:86:4a:91:a9:e1:f5:6f:61:8f:
1c:73:14:15:d4:a2:b8:26:98:12:c4:7d:fd:f3:61:
52:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:86:48:14:A5:54:02:E3:43:28:F7:9A:35:B3:B9:1F:31:2D:F8:51
X509v3 Authority Key Identifier:
keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/888B171A960D11ED942B5D62C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.112.36.0/22
180.189.160.0/20
Signature Algorithm: sha256WithRSAEncryption
7b:dc:fb:bf:c7:ea:77:27:ac:35:c8:f7:e6:81:30:7b:c0:c3:
41:06:d5:37:50:81:11:d4:67:1e:4a:68:3a:a9:cf:46:8d:6f:
16:12:7a:f4:5b:e4:ec:bd:23:f9:19:13:1b:f7:7a:b0:e7:f1:
ca:e3:99:ad:39:22:63:26:25:af:af:dc:44:8f:26:88:58:4b:
ab:ab:1d:00:7b:a8:01:43:99:78:81:63:e3:bf:e8:6f:d8:a8:
fc:df:3c:dd:fc:20:25:b5:b0:8e:8d:69:bc:ce:21:74:52:36:
30:c6:12:f5:48:69:7a:86:ed:bb:12:c1:f9:10:da:15:4a:f7:
2f:56:70:e6:60:24:ff:13:ad:f6:41:61:9d:c5:17:dd:a6:06:
ed:ae:64:f5:cb:18:b7:32:33:3f:3b:25:5d:7a:d1:e8:39:9c:
cd:f5:a1:49:c1:5a:37:97:e5:7c:60:5c:23:4b:10:6f:cc:03:
16:cc:42:b7:ee:dd:20:21:37:de:fe:1a:25:66:df:9a:c6:ad:
80:b0:00:43:15:79:44:ed:9e:e2:09:93:d0:1f:bc:54:af:3f:
24:08:bb:53:b9:de:9d:72:1b:c3:b1:af:cd:e2:27:fe:ab:28:
09:9f:16:b0:c3:6d:e3:0d:a2:00:97:29:d5:81:be:fd:ff:34:
d6:ab:57:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:22:35 2024 by rpki-client on console-fra.rpki-client.org