Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/EB744766037211EE9E15EE32C4F9AE02.roa
File: EB744766037211EE9E15EE32C4F9AE02.roa (raw, json)
Hash identifier: uvwc3T1isBWzj8ZhsDtVvXGDP0UrCQf6L4J6m7K4oPI=
Subject key identifier: EE:35:EB:74:7C:D7:A8:96:99:7F:16:7C:42:0C:E9:57:7A:2E:33:4B
Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638
Certificate serial: 013B
Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/EB744766037211EE9E15EE32C4F9AE02.roa
Signing time: Thu 07 Dec 2023 13:50:53 +0000
ROA not before: Thu 07 Dec 2023 13:50:52 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 203020
IP address blocks: 45.125.245.0/24 maxlen: 24
103.3.224.0/22 maxlen: 22
103.66.178.0/23 maxlen: 23
103.77.255.0/24 maxlen: 24
103.85.228.0/22 maxlen: 22
103.104.128.0/23 maxlen: 23
103.221.232.0/24 maxlen: 24
103.221.233.0/24 maxlen: 24
103.221.234.0/24 maxlen: 24
103.221.235.0/24 maxlen: 24
103.228.132.0/24 maxlen: 24
103.241.52.0/22 maxlen: 22
160.20.8.0/22 maxlen: 23
202.94.174.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 315 (0x13b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638
Validity
Not Before: Dec 7 13:50:52 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=6571cdbc-aad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b8:73:5f:ba:d2:2d:6a:97:ea:d9:a9:1f:b3:
df:51:21:94:d4:e7:b3:36:9c:27:fe:03:69:35:50:
80:1f:f9:c8:c0:b2:25:1a:88:c9:2e:98:42:33:78:
48:f1:84:6e:18:4d:a4:29:78:00:ce:7b:fb:29:21:
e0:1a:f6:b0:e2:93:91:51:b2:a8:46:20:2c:21:4d:
4a:21:ef:16:eb:9b:20:0e:2c:c8:b7:a2:b3:23:d2:
ae:35:7c:4d:6e:ab:72:10:e6:2a:f7:d9:a5:04:c2:
51:c2:e6:96:25:20:68:8c:78:14:06:66:b5:f8:fd:
38:95:a4:c2:fa:b3:bf:ce:12:db:32:4f:97:25:39:
ff:3b:03:7c:a6:42:e0:da:27:ea:f7:af:0c:4f:c8:
09:ca:aa:d2:c5:fe:48:4f:09:1e:50:4b:12:71:af:
d1:3b:2e:89:db:12:41:73:8e:5d:01:19:4e:49:78:
45:4a:2a:72:7b:00:cc:51:5a:40:b5:12:4a:81:e7:
b9:68:53:6c:4e:79:66:75:fe:8b:d0:2b:4e:4b:36:
95:4e:2c:a0:05:af:1d:c9:ea:91:a3:8f:9f:7e:20:
16:ed:78:29:e3:03:78:da:ff:af:0b:bd:4b:aa:81:
e7:9d:27:e6:24:c8:34:9a:bb:ae:90:2a:45:20:74:
0c:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:35:EB:74:7C:D7:A8:96:99:7F:16:7C:42:0C:E9:57:7A:2E:33:4B
X509v3 Authority Key Identifier:
keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/EB744766037211EE9E15EE32C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.125.245.0/24
103.3.224.0/22
103.66.178.0/23
103.77.255.0/24
103.85.228.0/22
103.104.128.0/23
103.221.232.0/22
103.228.132.0/24
103.241.52.0/22
160.20.8.0/22
202.94.174.0/24
Signature Algorithm: sha256WithRSAEncryption
63:3a:4a:49:8e:14:27:59:cd:45:6a:9e:cb:f4:45:07:0d:a7:
2f:fc:ff:07:cb:65:bd:5a:2f:fb:45:4b:f6:ef:f4:9c:f5:64:
59:1a:a3:23:8b:50:fc:9f:93:b5:a7:c8:0d:fe:fd:43:59:d6:
a5:db:2a:37:da:45:18:ec:ea:d1:66:38:a9:65:b3:94:2f:62:
bc:03:b5:de:86:37:91:66:07:8b:44:85:b5:f9:27:50:4e:eb:
bb:f0:c7:48:76:f2:5a:1e:c0:eb:3c:78:9f:95:8a:ea:3a:ae:
ce:cf:75:97:ba:bd:d7:8f:f2:86:61:ba:26:d5:5b:63:79:8f:
fb:ef:91:34:6a:aa:82:77:74:c1:9c:51:43:af:65:f9:b6:c8:
6d:64:2c:e9:93:10:29:49:8d:50:13:8b:21:b1:9d:15:50:54:
b1:23:83:f9:a4:2c:6b:38:7a:68:36:d5:57:0b:97:ad:7d:68:
b1:4f:0f:8f:6d:1b:50:c1:80:33:0c:ad:29:d7:b6:80:39:b8:
61:28:02:9c:10:2f:a4:61:97:bf:11:19:de:9a:e0:71:15:1d:
a2:32:27:25:86:af:78:2b:2b:01:a9:4f:5d:a1:7f:b1:d5:9d:
b8:94:36:fc:8f:c2:42:fc:5d:b6:34:03:28:8b:52:4f:d8:29:
ad:5a:9b:ce
-----BEGIN CERTIFICATE-----
MIIFrTCCBJWgAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5
Njk4RkU2MzgwHhcNMjMxMjA3MTM1MDUyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTcxY2RiYy1hYWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAoLhzX7rSLWqX6tmpH7PfUSGU1OezNpwn/gNpNVCAH/nIwLIlGojJLphCM3hI
8YRuGE2kKXgAznv7KSHgGvaw4pORUbKoRiAsIU1KIe8W65sgDizIt6KzI9KuNXxN
bqtyEOYq99mlBMJRwuaWJSBojHgUBma1+P04laTC+rO/zhLbMk+XJTn/OwN8pkLg
2ifq968MT8gJyqrSxf5ITwkeUEsSca/ROy6J2xJBc45dARlOSXhFSipyewDMUVpA
tRJKgee5aFNsTnlmdf6L0CtOSzaVTiygBa8dyeqRo4+ffiAW7Xgp4wN42v+vC71L
qoHnnSfmJMg0mruukCpFIHQMDwIDAQABo4IC0TCCAs0wHQYDVR0OBBYEFO4163R8
16iWmX8WfEIM6Vd6LjNLMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx
ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1
amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvRUI3NDQ3NjYw
MzcyMTFFRTlFMTVFRTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWwYIKwYBBQUHAQcBAf8E
TDBKMEgEAgABMEIDBAAtffUDBAJnA+ADBAFnQrIDBABnTf8DBAJnVeQDBAFnaIAD
BAJn3egDBABn5IQDBAJn8TQDBAKgFAgDBADKXq4wDQYJKoZIhvcNAQELBQADggEB
AGM6SkmOFCdZzUVqnsv0RQcNpy/8/wfLZb1aL/tFS/bv9Jz1ZFkaoyOLUPyfk7Wn
yA3+/UNZ1qXbKjfaRRjs6tFmOKlls5QvYrwDtd6GN5FmB4tEhbX5J1BO67vwx0h2
8loewOs8eJ+Viuo6rs7PdZe6vdeP8oZhuibVW2N5j/vvkTRqqoJ3dMGcUUOvZfm2
yG1kLOmTEClJjVATiyGxnRVQVLEjg/mkLGs4emg21VcLl619aLFPD49tG1DBgDMM
rSnXtoA5uGEoApwQL6Rhl78RGd6a4HEVHaIyJyWGr3grKwGpT12hf7HVnbiUNvyP
wkL8XbY0AyiLUk/YKa1am84=
-----END CERTIFICATE-----
Generated at Thu Dec 7 21:22:30 2023 by rpki-client on console-ams.rpki-client.org