Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/B5328BFEB10911E586FC2D11C4F9AE02.roa
File: B5328BFEB10911E586FC2D11C4F9AE02.roa (raw, json)
Hash identifier: SEXtVcIsmTkbIDqj0Xqta/R4AWLa5OIOFapBp6dFvK8=
Subject key identifier: BE:E2:98:C2:1D:95:B1:6D:F7:70:A5:1A:EC:30:DC:1B:6C:93:F0:03
Certificate issuer: /CN=A91B01C7/serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1
Certificate serial: 28A5
Authority key identifier: E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/B5328BFEB10911E586FC2D11C4F9AE02.roa
Signing time: Thu 22 Jun 2023 07:42:52 +0000
ROA not before: Thu 22 Jun 2023 07:42:52 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 58601
IP address blocks: 43.245.192.0/22 maxlen: 22
43.245.192.0/24 maxlen: 24
43.245.193.0/24 maxlen: 24
43.245.194.0/24 maxlen: 24
43.245.195.0/24 maxlen: 24
103.9.112.0/22 maxlen: 22
103.9.112.0/24 maxlen: 24
103.9.113.0/24 maxlen: 24
103.9.114.0/24 maxlen: 24
103.9.115.0/24 maxlen: 24
2403:e100::/32 maxlen: 32
2403:e100:1000::/48 maxlen: 48
2403:e100:1000:4::/64 maxlen: 64
Validation: Failed, certificate revoked on Tue 02 Apr 2024 14:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10405 (0x28a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B01C7/serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1
Validity
Not Before: Jun 22 07:42:52 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6493fb7c-6d3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:57:97:f4:55:85:1f:9f:2c:c1:62:8f:ba:59:
14:56:5b:83:ed:40:37:b9:92:27:70:ff:71:b6:51:
58:76:3d:8a:08:60:74:e5:39:c5:47:2a:6e:e9:e3:
ed:ed:02:f4:e3:e9:dd:36:1e:c8:ee:d3:8e:b0:c3:
75:ee:6b:19:e1:d0:11:7d:33:b8:b1:53:33:f9:81:
4b:36:ca:9f:67:20:b5:53:d5:aa:b9:ce:dd:5f:fe:
60:e1:8e:24:e7:41:a4:5f:35:58:a0:ac:84:52:81:
20:62:1a:c2:b9:4d:2c:a9:71:61:40:e1:3f:47:55:
f3:9a:de:2e:1a:f0:8b:be:71:82:40:89:f0:42:2b:
15:17:56:56:85:02:a9:68:31:8b:bd:e5:79:a3:ea:
cb:f7:30:3b:5b:6e:11:07:dc:ae:1b:6b:37:26:7e:
07:b6:ee:74:7d:2d:24:77:90:56:4b:56:43:24:64:
95:bc:6c:b7:c4:5e:a5:a7:e3:64:13:59:78:dd:08:
69:45:d8:d2:70:23:c3:10:9a:a9:c0:07:6b:e7:8c:
fa:70:bf:cd:05:8c:9c:e9:db:cc:59:ac:68:2f:b8:
09:6d:d2:cd:23:30:a0:11:eb:0f:31:7d:d1:fa:b9:
2b:96:b6:90:91:b8:9e:27:3a:ae:07:f7:42:ec:04:
0f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:E2:98:C2:1D:95:B1:6D:F7:70:A5:1A:EC:30:DC:1B:6C:93:F0:03
X509v3 Authority Key Identifier:
keyid:E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/B5328BFEB10911E586FC2D11C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.245.192.0/22
103.9.112.0/22
IPv6:
2403:e100::/32
Signature Algorithm: sha256WithRSAEncryption
08:db:34:56:08:43:c3:fb:9c:e9:ed:50:a0:16:a5:57:82:24:
19:9a:74:07:2e:8a:5b:7a:3f:4c:13:5d:98:79:49:45:a7:b0:
57:8a:b4:7e:d3:e2:e0:e6:6d:a6:0a:02:06:f0:23:4d:08:2e:
32:47:25:82:9f:78:7c:75:13:84:a7:3d:73:56:85:40:f2:93:
13:ba:b2:98:4a:cd:a8:8d:0a:18:b1:53:1f:86:7d:64:e9:8b:
05:50:e0:c8:cf:b6:95:01:c1:38:4e:d7:8e:af:10:91:89:a5:
9f:d6:61:58:6d:ac:51:d1:e7:47:22:8c:62:56:bb:d5:1f:c6:
97:1e:f1:24:e3:ba:85:44:69:df:f6:23:1a:1f:b3:7c:56:bc:
4a:3a:0a:75:b8:2c:64:da:12:d3:5d:a2:f8:e7:ce:12:0f:e3:
96:53:bb:56:10:0c:76:d2:c5:3c:5e:51:80:84:04:38:85:91:
11:70:f6:a9:07:d4:4d:39:23:d5:98:31:0d:92:3d:71:ff:2a:
56:3e:03:83:57:15:9d:85:15:54:fe:89:fd:a6:77:c9:09:9f:
53:20:0d:a8:44:9d:d7:92:13:93:28:46:ba:03:47:db:d5:50:
1c:87:dd:8e:e7:98:f9:2a:7f:e8:b5:0c:64:27:65:56:be:a2:
4a:c0:73:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:37 2024 by rpki-client on console-fra.rpki-client.org