Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/8C5F2288981311EEB0DBBF72C4F9AE02.roa
File: 8C5F2288981311EEB0DBBF72C4F9AE02.roa (raw, json)
Hash identifier: xwYct3MaOCzM6TbNxMBo5hbskuy54ODyx21xTMAE56Y=
Subject key identifier: F4:0E:A4:FB:B7:1F:FD:54:85:13:4D:A8:24:7E:F2:B6:EB:90:5F:1F
Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Certificate serial: 344F
Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/8C5F2288981311EEB0DBBF72C4F9AE02.roa
Signing time: Wed 20 Dec 2023 10:32:19 +0000
ROA not before: Wed 20 Dec 2023 10:32:19 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 23750
IP address blocks: 103.207.84.0/24 maxlen: 24
103.207.86.0/24 maxlen: 24
103.207.87.0/24 maxlen: 24
116.90.100.0/24 maxlen: 24
116.90.101.0/24 maxlen: 24
116.90.105.0/24 maxlen: 24
116.90.106.0/24 maxlen: 24
116.90.107.0/24 maxlen: 24
116.90.108.0/24 maxlen: 24
116.90.109.0/24 maxlen: 24
116.90.110.0/24 maxlen: 24
116.90.111.0/24 maxlen: 24
116.90.115.0/24 maxlen: 24
116.90.116.0/24 maxlen: 24
116.90.117.0/24 maxlen: 24
116.90.119.0/24 maxlen: 24
116.90.120.0/24 maxlen: 24
116.90.123.0/24 maxlen: 24
116.90.124.0/24 maxlen: 24
116.90.125.0/24 maxlen: 24
116.90.126.0/24 maxlen: 24
116.90.127.0/24 maxlen: 24
121.46.64.0/24 maxlen: 24
202.69.32.0/24 maxlen: 24
202.69.33.0/24 maxlen: 24
202.69.34.0/24 maxlen: 24
202.69.35.0/24 maxlen: 24
202.69.36.0/24 maxlen: 24
202.69.37.0/24 maxlen: 24
202.69.38.0/24 maxlen: 24
202.69.39.0/24 maxlen: 24
202.69.40.0/24 maxlen: 24
202.69.41.0/24 maxlen: 24
202.69.42.0/24 maxlen: 24
202.69.43.0/24 maxlen: 24
202.69.44.0/24 maxlen: 24
202.69.45.0/24 maxlen: 24
202.69.46.0/24 maxlen: 24
202.69.47.0/24 maxlen: 24
202.69.48.0/24 maxlen: 24
202.69.49.0/24 maxlen: 24
202.69.50.0/24 maxlen: 24
202.69.51.0/24 maxlen: 24
202.69.52.0/24 maxlen: 24
202.69.53.0/24 maxlen: 24
202.69.54.0/24 maxlen: 24
202.69.55.0/24 maxlen: 24
202.69.56.0/24 maxlen: 24
202.69.57.0/24 maxlen: 24
202.69.58.0/24 maxlen: 24
202.69.59.0/24 maxlen: 24
202.69.60.0/24 maxlen: 24
202.69.61.0/24 maxlen: 24
202.69.62.0/24 maxlen: 24
202.69.63.0/24 maxlen: 24
202.142.144.0/24 maxlen: 24
202.142.145.0/24 maxlen: 24
202.142.146.0/24 maxlen: 24
202.142.147.0/24 maxlen: 24
202.142.148.0/24 maxlen: 24
202.142.149.0/24 maxlen: 24
202.142.150.0/24 maxlen: 24
202.142.152.0/24 maxlen: 24
202.142.153.0/24 maxlen: 24
202.142.154.0/24 maxlen: 24
202.142.155.0/24 maxlen: 24
202.142.156.0/24 maxlen: 24
202.142.157.0/24 maxlen: 24
202.142.158.0/24 maxlen: 24
202.142.159.0/24 maxlen: 24
2406:ac00:1::/48 maxlen: 48
2406:ac00:2::/48 maxlen: 48
2406:ac00:203::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13391 (0x344f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Validity
Not Before: Dec 20 10:32:19 2023 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=6582c2b3-bdf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7b:ab:54:23:46:29:8d:4b:06:ab:f5:d8:52:
89:76:af:54:7f:5d:0b:e4:3b:df:75:13:84:a1:b3:
6c:42:a9:60:a5:b4:bb:a1:d4:fb:69:0a:27:45:cd:
15:4d:d7:98:93:9b:31:70:8c:b2:72:93:d9:a9:b5:
a5:47:74:7c:29:ac:a7:88:33:b9:3c:51:8c:06:83:
21:91:6d:2f:dd:0c:23:42:11:16:c2:21:3e:47:44:
e3:c7:4b:a3:a6:53:23:60:2b:03:99:a2:56:7e:6c:
d1:c6:bc:c8:86:8c:45:58:6d:c3:0e:26:3d:3b:1f:
57:ba:84:28:b3:b0:ac:3c:d2:7c:10:ae:d3:a0:be:
d4:48:52:b3:1a:62:0e:da:9b:f9:57:74:19:15:a0:
ab:4d:12:b4:e9:d6:15:bd:05:1d:1d:46:be:26:3d:
ec:98:77:4b:9b:d0:7f:b8:b7:6a:77:f9:a2:11:ab:
76:4c:54:0b:56:fb:a5:9a:61:75:b1:cb:88:9e:ed:
90:6c:ee:45:53:78:b2:8a:4f:93:4b:62:ec:3b:69:
99:f3:65:2f:25:c6:97:d3:45:a8:93:37:d5:0c:e3:
a7:84:a8:4a:7a:39:eb:d1:a7:c5:9a:da:11:5b:11:
1c:86:b1:94:b2:e0:76:bf:0d:f5:29:cf:fb:d0:2b:
3a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:0E:A4:FB:B7:1F:FD:54:85:13:4D:A8:24:7E:F2:B6:EB:90:5F:1F
X509v3 Authority Key Identifier:
keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/8C5F2288981311EEB0DBBF72C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.207.84.0/24
103.207.86.0/23
116.90.100.0/23
116.90.105.0-116.90.111.255
116.90.115.0-116.90.117.255
116.90.119.0-116.90.120.255
116.90.123.0-116.90.127.255
121.46.64.0/24
202.69.32.0/19
202.142.144.0-202.142.150.255
202.142.152.0/21
IPv6:
2406:ac00:1::-2406:ac00:2:ffff:ffff:ffff:ffff:ffff
2406:ac00:203::/48
Signature Algorithm: sha256WithRSAEncryption
89:25:cf:d5:39:04:8a:a9:00:6e:2e:62:2a:4d:9b:c8:af:13:
7b:b8:a4:ab:c5:ab:99:31:57:cc:5c:4c:a1:7e:d2:82:30:3d:
d9:bd:a3:4e:99:a9:52:7c:16:cb:2e:2e:2f:ab:ef:bc:31:9e:
ee:1f:3e:30:fa:b4:fa:7d:8a:b6:91:63:b6:97:f7:b5:00:b8:
59:e0:fa:ae:9f:93:20:87:ff:57:38:69:d5:1b:30:3e:54:f9:
e1:6f:49:27:a6:bd:5f:fd:0a:ba:83:dd:39:33:cc:29:96:0f:
74:13:8b:48:f3:86:8e:30:84:c2:46:d0:67:a2:0d:41:d6:bd:
67:01:f0:01:5f:0e:1f:08:ce:88:af:07:f4:4f:f3:d6:c5:a9:
55:f8:26:e3:08:e3:18:aa:3e:f1:f5:29:f5:c8:a5:0e:ef:e0:
73:7d:58:34:1c:c5:1b:71:db:29:f9:5e:45:b7:43:ab:e0:d5:
bf:96:9d:4f:3c:32:02:70:e9:00:16:c3:c7:0b:41:6a:42:0d:
28:d0:31:e6:3b:b1:88:42:2b:1e:7e:99:ef:1f:57:b1:f6:48:
43:98:9c:49:e9:44:3c:19:92:3e:12:13:0b:18:fc:c8:3e:d7:
01:10:78:d8:46:95:24:76:14:c3:f1:e3:4f:b3:33:fa:69:d5:
73:f1:24:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 14:37:05 2023 by rpki-client on console-ams.rpki-client.org