Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC232/41730086598D11EBAECC8321C4F9AE02/60B50000598F11EB92FA6F43C4F9AE02.roa
File: 60B50000598F11EB92FA6F43C4F9AE02.roa (raw, json)
Hash identifier: 3BUVxwskY01f8OoVLqbKysyoFbc4sx++sY0IjhVNutE=
Subject key identifier: 77:75:1E:F4:A3:35:57:1C:9A:91:15:AA:3A:98:0D:60:B2:C7:81:5E
Certificate issuer: /CN=A91AC232/serialNumber=7D3A22DED1ABF0CD3909280B89B2376C545F6F07
Certificate serial: 0521
Authority key identifier: 7D:3A:22:DE:D1:AB:F0:CD:39:09:28:0B:89:B2:37:6C:54:5F:6F:07
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fToi3tGr8M05CSgLibI3bFRfbwc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AC232/41730086598D11EBAECC8321C4F9AE02/60B50000598F11EB92FA6F43C4F9AE02.roa
Signing time: Fri 17 Feb 2023 01:01:18 +0000
ROA not before: Fri 17 Feb 2023 01:01:18 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 138520
IP address blocks: 103.127.164.0/24 maxlen: 24
103.127.165.0/24 maxlen: 24
103.127.166.0/24 maxlen: 24
103.127.167.0/24 maxlen: 24
2404:24c0::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1313 (0x521)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AC232/serialNumber=7D3A22DED1ABF0CD3909280B89B2376C545F6F07
Validity
Not Before: Feb 17 01:01:18 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=63eed1de-9fbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:fb:fb:92:37:39:66:2c:31:5d:80:b1:47:16:
ef:15:e2:51:ec:9e:5e:01:78:d4:ab:cf:68:24:57:
3b:77:48:21:39:e2:3a:f8:97:95:b5:f6:ae:a6:5b:
86:87:bb:8f:16:44:c9:f2:c3:5a:80:44:42:11:20:
c8:af:c6:62:44:0e:e7:da:23:7f:ff:86:ec:af:34:
87:74:1d:27:de:90:cf:e8:56:6d:b0:64:4e:28:44:
da:81:65:af:6c:5f:ee:ee:f8:24:f7:29:cf:0a:0e:
5c:27:10:ae:f9:40:4d:22:5e:46:42:70:24:c2:11:
ac:8d:b6:ce:c0:94:68:8b:b0:b8:62:d0:fd:c4:5f:
d9:e7:7d:ac:d3:e1:87:36:ef:2d:fa:c5:48:f7:6a:
34:ea:31:93:d4:ea:5e:8c:63:96:42:fc:c9:8a:df:
d5:fc:49:fe:37:cf:c5:2a:1c:a0:4a:04:07:e8:2f:
4b:ae:87:b3:4a:ea:96:4d:17:d4:f5:3f:12:25:b8:
59:2a:19:29:bf:e9:b4:94:5b:70:1e:1f:8f:c1:2a:
91:31:36:29:d2:c1:76:0d:e8:a3:80:47:39:59:d3:
d4:23:4e:63:69:81:a8:b3:57:63:40:d6:ea:f4:e1:
59:33:79:25:b1:75:8f:56:dc:3c:3e:f7:7a:fb:c4:
00:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:75:1E:F4:A3:35:57:1C:9A:91:15:AA:3A:98:0D:60:B2:C7:81:5E
X509v3 Authority Key Identifier:
keyid:7D:3A:22:DE:D1:AB:F0:CD:39:09:28:0B:89:B2:37:6C:54:5F:6F:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AC232/41730086598D11EBAECC8321C4F9AE02/fToi3tGr8M05CSgLibI3bFRfbwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fToi3tGr8M05CSgLibI3bFRfbwc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC232/41730086598D11EBAECC8321C4F9AE02/60B50000598F11EB92FA6F43C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.127.164.0/22
IPv6:
2404:24c0::/32
Signature Algorithm: sha256WithRSAEncryption
04:ed:64:4a:cc:c7:2b:e5:f3:f2:d2:49:61:64:c0:42:23:ce:
32:b2:5b:17:d7:5f:dd:de:2b:5a:41:84:c0:dd:a5:3a:47:7a:
e2:8a:1b:c4:61:6d:37:35:a0:ed:ca:f7:49:d1:04:3f:cb:49:
dc:04:1f:39:09:61:8d:74:10:20:9a:ab:ac:54:1a:dd:83:54:
73:e8:45:ae:00:17:e7:a6:9c:47:d6:00:0e:a8:12:6c:6c:55:
d6:c8:a1:63:31:ed:a1:ad:64:9a:ac:25:03:31:17:87:50:c0:
94:ea:23:23:fd:2d:d1:9c:12:73:45:52:fe:81:a4:7f:31:43:
f8:2f:27:0a:82:78:15:90:69:22:fb:1b:d3:ab:5a:d5:8d:e2:
3b:2e:99:7a:d3:da:84:ec:50:d1:0b:b0:c7:40:7e:99:d4:c6:
95:62:65:0d:c4:1b:c1:b2:60:65:9c:2d:ce:e5:23:df:41:64:
52:06:bc:ab:17:1b:35:d8:51:9d:57:de:7e:53:e2:2f:ca:af:
f4:9d:4e:31:53:4f:b6:b4:8d:05:35:a6:6f:37:ab:48:5c:54:
26:25:f4:a7:97:6b:be:3f:35:8d:d9:de:95:e2:47:02:5c:b1:
08:ea:fa:5e:80:e6:77:e8:a2:2f:a2:9d:60:ff:5c:4e:0f:d2:
13:17:e9:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:03 2023 by rpki-client on console-fra.rpki-client.org