Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7BDC/681C8F4658BE11EC8AED5F2CC4F9AE02/A0183FCCEC1D11EEBB97077FC4F9AE02.roa
File: A0183FCCEC1D11EEBB97077FC4F9AE02.roa (raw, json)
Hash identifier: a41XSp6h8aQ8smaZiApjLygIFut0x4N/FyKFRn2y54A=
Subject key identifier: AA:26:77:3C:68:38:38:89:F5:32:32:98:65:34:1D:E9:78:25:46:79
Certificate issuer: /CN=A91B7BDC/serialNumber=D43B44D5F937F65E8BAB9B7F987A3DC9D2104A32
Certificate serial: 0399
Authority key identifier: D4:3B:44:D5:F9:37:F6:5E:8B:AB:9B:7F:98:7A:3D:C9:D2:10:4A:32
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DtE1fk39l6Lq5t_mHo9ydIQSjI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B7BDC/681C8F4658BE11EC8AED5F2CC4F9AE02/A0183FCCEC1D11EEBB97077FC4F9AE02.roa
Signing time: Tue 21 May 2024 03:50:12 +0000
ROA not before: Tue 21 May 2024 03:50:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 132139
IP address blocks: 103.149.62.0/23 maxlen: 23
103.149.62.0/24 maxlen: 24
103.149.62.72/29 maxlen: 29
103.149.63.0/24 maxlen: 24
2405:e440::/32 maxlen: 32
2405:e440::/48 maxlen: 48
2405:e440:1::/48 maxlen: 48
2405:e440:2::/48 maxlen: 48
2405:e440:3::/48 maxlen: 48
2405:e440:4::/46 maxlen: 46
2405:e440:4::/48 maxlen: 48
2405:e440:5::/48 maxlen: 48
2405:e440:6::/48 maxlen: 48
2405:e440:7::/48 maxlen: 48
2405:e440:8::/46 maxlen: 46
2405:e440:8::/48 maxlen: 48
2405:e440:9::/48 maxlen: 48
2405:e440:a::/48 maxlen: 48
2405:e440:b::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 20 Jun 2024 02:21:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 921 (0x399)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B7BDC/serialNumber=D43B44D5F937F65E8BAB9B7F987A3DC9D2104A32
Validity
Not Before: May 21 03:50:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=664c19f3-c050
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9f:a2:15:04:9a:25:9d:61:ac:52:62:fc:6a:
9a:af:3c:c4:0c:fb:40:5e:8c:71:69:a8:1f:a8:5e:
fe:90:77:1a:52:d6:98:d6:ad:02:4d:14:71:92:08:
df:28:5f:fe:55:db:8d:45:05:a1:38:7a:9b:76:12:
4f:e4:d9:b1:29:fd:0d:9a:35:16:d6:d5:ed:85:b5:
66:84:f4:aa:d0:d3:08:3a:31:bd:69:99:b7:e2:8b:
11:7e:30:64:e3:0d:f1:cb:ff:8e:4d:a3:d5:cf:c8:
18:bc:a2:a0:fb:5f:04:69:90:bb:ea:24:41:05:36:
ee:fc:6f:b1:3c:59:08:fa:51:7b:5b:da:e0:72:64:
57:61:7a:1e:48:59:f8:43:b8:55:a5:54:4c:7a:eb:
21:a5:3c:74:d1:0a:e9:89:5d:73:f3:a3:12:84:a4:
e3:59:54:bd:3f:89:7d:25:fa:ee:8d:ea:9b:fa:07:
07:0a:71:6d:3f:75:04:c9:ca:41:23:f8:f7:76:dd:
13:8e:dc:80:c4:1e:de:01:5d:77:fb:05:b8:b5:6f:
96:f9:96:24:2c:f3:f8:6b:cf:75:b6:86:2b:d7:5b:
3d:6f:79:74:3a:87:e0:81:4f:dc:4b:ef:5d:89:15:
09:9f:35:35:21:8f:c8:39:d2:a5:e3:e5:cb:b7:44:
c6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:26:77:3C:68:38:38:89:F5:32:32:98:65:34:1D:E9:78:25:46:79
X509v3 Authority Key Identifier:
keyid:D4:3B:44:D5:F9:37:F6:5E:8B:AB:9B:7F:98:7A:3D:C9:D2:10:4A:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B7BDC/681C8F4658BE11EC8AED5F2CC4F9AE02/1DtE1fk39l6Lq5t_mHo9ydIQSjI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DtE1fk39l6Lq5t_mHo9ydIQSjI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7BDC/681C8F4658BE11EC8AED5F2CC4F9AE02/A0183FCCEC1D11EEBB97077FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.149.62.0/23
IPv6:
2405:e440::/32
Signature Algorithm: sha256WithRSAEncryption
8e:3e:d1:be:0b:a0:6f:bb:1e:b8:27:8d:5d:a4:09:9c:0a:ed:
6e:20:b2:16:78:c0:d5:d3:b5:7a:27:b9:e1:95:f1:e1:7e:93:
23:c2:46:c9:db:3e:bf:b2:76:2a:0e:f1:73:51:a0:d5:70:a8:
18:ed:5b:c4:c5:fc:30:e2:38:7e:b5:6a:d4:23:18:9e:64:6d:
fd:79:98:5a:c5:38:c6:2e:52:47:05:c0:2c:85:a1:98:61:9e:
23:3c:be:e0:3e:3d:b9:ca:59:39:35:72:47:e7:fe:9b:a4:83:
58:2b:3e:da:8d:d8:97:e2:b9:e7:26:b6:17:09:a1:13:3c:f3:
84:92:8a:99:23:52:ad:fb:fb:f5:86:6e:a1:a5:c1:68:35:58:
35:9a:73:47:00:7e:c3:98:a9:fd:1f:69:6f:0f:98:0b:5f:56:
14:bc:09:f0:97:11:7d:93:ac:81:ee:25:d1:a1:e7:5a:bb:30:
2b:66:72:99:27:2a:f0:18:0c:18:ac:18:71:aa:05:82:59:81:
2c:a5:6a:18:d6:eb:9f:d9:38:8f:4a:81:f9:e8:28:f6:b2:69:
11:fe:af:0f:f7:52:d4:24:51:0f:b7:7a:29:1b:cd:6a:a9:b4:
3a:5d:ac:7c:9e:34:a5:50:59:b5:0b:83:27:72:16:7c:5f:b0:
a7:d3:12:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 03:17:46 2024 by rpki-client on console-fra.rpki-client.org