Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/FD6087F4BBB011EEAA4D5371C4F9AE02.roa
File: FD6087F4BBB011EEAA4D5371C4F9AE02.roa (raw, json)
Hash identifier: Gv05gTGtb0SHNS14Zck5D7CqaOnuW5imNzdlvzn8hn0=
Subject key identifier: 6B:DF:AE:D8:1F:2D:D9:DF:12:09:49:BD:59:40:7F:D6:1E:DC:11:C5
Certificate issuer: /CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D
Certificate serial: 0186
Authority key identifier: 86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/FD6087F4BBB011EEAA4D5371C4F9AE02.roa
Signing time: Mon 26 Aug 2024 17:46:35 +0000
ROA not before: Mon 26 Aug 2024 17:46:35 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 150385
IP address blocks: 103.24.88.0/23 maxlen: 23
103.24.88.0/24 maxlen: 24
103.24.89.0/24 maxlen: 24
2400:baa0::/32 maxlen: 32
2400:baa0::/48 maxlen: 48
2400:baa0:1::/48 maxlen: 48
2400:baa0:2::/48 maxlen: 48
2400:baa0:3::/48 maxlen: 48
2400:baa0:100::/48 maxlen: 48
2400:baa0:200::/48 maxlen: 48
2400:baa0:300::/48 maxlen: 48
2400:baa0:400::/48 maxlen: 48
2400:baa0:500::/48 maxlen: 48
2400:baa0:600::/48 maxlen: 48
2400:baa0:700::/48 maxlen: 48
2400:baa0:800::/48 maxlen: 48
2400:baa0:900::/48 maxlen: 48
2400:baa0:1000::/48 maxlen: 48
2400:baa0:1001::/48 maxlen: 48
2400:baa0:1002::/48 maxlen: 48
2400:baa0:1003::/48 maxlen: 48
2400:baa0:1004::/48 maxlen: 48
2400:baa0:1005::/48 maxlen: 48
2400:baa0:1006::/48 maxlen: 48
2400:baa0:1007::/48 maxlen: 48
2400:baa0:1008::/48 maxlen: 48
2400:baa0:1009::/48 maxlen: 48
2400:baa0:1111::/48 maxlen: 48
2400:baa0:2000::/48 maxlen: 48
2400:baa0:2001::/48 maxlen: 48
2400:baa0:2002::/48 maxlen: 48
2400:baa0:2003::/48 maxlen: 48
2400:baa0:2004::/48 maxlen: 48
2400:baa0:2005::/48 maxlen: 48
2400:baa0:2006::/48 maxlen: 48
2400:baa0:2007::/48 maxlen: 48
2400:baa0:2008::/48 maxlen: 48
2400:baa0:2009::/48 maxlen: 48
2400:baa0:2222::/48 maxlen: 48
2400:baa0:3000::/48 maxlen: 48
2400:baa0:3001::/48 maxlen: 48
2400:baa0:3002::/48 maxlen: 48
2400:baa0:3003::/48 maxlen: 48
2400:baa0:3004::/48 maxlen: 48
2400:baa0:3005::/48 maxlen: 48
2400:baa0:3006::/48 maxlen: 48
2400:baa0:3007::/48 maxlen: 48
2400:baa0:3008::/48 maxlen: 48
2400:baa0:3009::/48 maxlen: 48
2400:baa0:3333::/48 maxlen: 48
2400:baa0:4000::/48 maxlen: 48
2400:baa0:4001::/48 maxlen: 48
2400:baa0:4002::/48 maxlen: 48
2400:baa0:4003::/48 maxlen: 48
2400:baa0:4004::/48 maxlen: 48
2400:baa0:4005::/48 maxlen: 48
2400:baa0:4006::/48 maxlen: 48
2400:baa0:4007::/48 maxlen: 48
2400:baa0:4008::/48 maxlen: 48
2400:baa0:4009::/48 maxlen: 48
2400:baa0:4444::/48 maxlen: 48
2400:baa0:5000::/48 maxlen: 48
2400:baa0:5001::/48 maxlen: 48
2400:baa0:5002::/48 maxlen: 48
2400:baa0:5003::/48 maxlen: 48
2400:baa0:5004::/48 maxlen: 48
2400:baa0:5005::/48 maxlen: 48
2400:baa0:5006::/48 maxlen: 48
2400:baa0:5007::/48 maxlen: 48
2400:baa0:5008::/48 maxlen: 48
2400:baa0:5009::/48 maxlen: 48
2400:baa0:5555::/48 maxlen: 48
2400:baa0:6000::/48 maxlen: 48
2400:baa0:6001::/48 maxlen: 48
2400:baa0:6002::/48 maxlen: 48
2400:baa0:6003::/48 maxlen: 48
2400:baa0:6004::/48 maxlen: 48
2400:baa0:6005::/48 maxlen: 48
2400:baa0:6006::/48 maxlen: 48
2400:baa0:6007::/48 maxlen: 48
2400:baa0:6008::/48 maxlen: 48
2400:baa0:6009::/48 maxlen: 48
2400:baa0:6666::/48 maxlen: 48
2400:baa0:7000::/48 maxlen: 48
2400:baa0:7001::/48 maxlen: 48
2400:baa0:7002::/48 maxlen: 48
2400:baa0:7003::/48 maxlen: 48
2400:baa0:7004::/48 maxlen: 48
2400:baa0:7005::/48 maxlen: 48
2400:baa0:7006::/48 maxlen: 48
2400:baa0:7007::/48 maxlen: 48
2400:baa0:7008::/48 maxlen: 48
2400:baa0:7009::/48 maxlen: 48
2400:baa0:7777::/48 maxlen: 48
2400:baa0:8000::/48 maxlen: 48
2400:baa0:8001::/48 maxlen: 48
2400:baa0:8002::/48 maxlen: 48
2400:baa0:8003::/48 maxlen: 48
2400:baa0:8004::/48 maxlen: 48
2400:baa0:8005::/48 maxlen: 48
2400:baa0:8006::/48 maxlen: 48
2400:baa0:8007::/48 maxlen: 48
2400:baa0:8008::/48 maxlen: 48
2400:baa0:8009::/48 maxlen: 48
2400:baa0:8888::/48 maxlen: 48
2400:baa0:9000::/48 maxlen: 48
2400:baa0:9001::/48 maxlen: 48
2400:baa0:9002::/48 maxlen: 48
2400:baa0:9003::/48 maxlen: 48
2400:baa0:9004::/48 maxlen: 48
2400:baa0:9005::/48 maxlen: 48
2400:baa0:9006::/48 maxlen: 48
2400:baa0:9007::/48 maxlen: 48
2400:baa0:9008::/48 maxlen: 48
2400:baa0:9009::/48 maxlen: 48
2400:baa0:9999::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 29 Aug 2024 18:18:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390 (0x186)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BF28F/serialNumber=86CD8B4218A9B9A1BCE2FAC5EE6DC785B00A931D
Validity
Not Before: Aug 26 17:46:35 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=66ccbf7b-7b70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:59:c0:da:10:23:42:6b:df:1a:62:cf:0d:d7:
84:2f:9c:cf:04:95:b6:f0:ef:1d:a0:02:84:a8:d3:
98:21:11:b8:ae:cf:26:c6:c4:1e:2e:a8:19:32:e4:
0a:b7:10:9e:d5:21:a2:e3:56:d6:f4:cd:1a:52:c0:
11:56:6f:ef:42:37:d4:66:9f:31:44:ff:ac:b3:d0:
d5:ed:0b:11:6d:8b:62:51:64:64:6c:4f:f4:96:31:
a8:eb:19:a0:71:fd:4b:04:01:e7:dd:17:04:71:8d:
b6:86:32:08:66:9d:53:98:c4:93:51:12:80:5c:92:
9e:b8:c4:c0:c9:65:30:a6:e1:13:7e:8a:1b:ca:3a:
a5:bf:63:27:2a:19:0c:39:62:50:89:a1:d3:17:06:
ed:2d:c7:bb:34:ce:d6:f6:33:d6:11:3e:fc:09:50:
84:5f:54:c6:ea:f5:26:1b:ef:54:b0:6b:f4:a9:8c:
a9:eb:7d:db:89:f1:d4:80:7f:1e:8b:49:02:de:fe:
2e:ee:d6:d0:a9:7e:83:a6:d6:ff:51:aa:e5:ec:05:
ee:80:4c:af:23:8e:11:10:fa:42:b9:43:5b:d6:7a:
11:c6:bb:99:36:39:36:dd:da:f4:6e:7f:87:dc:40:
4e:c5:51:ba:83:a9:a9:68:df:f3:cd:5b:68:e5:71:
d2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:DF:AE:D8:1F:2D:D9:DF:12:09:49:BD:59:40:7F:D6:1E:DC:11:C5
X509v3 Authority Key Identifier:
keyid:86:CD:8B:42:18:A9:B9:A1:BC:E2:FA:C5:EE:6D:C7:85:B0:0A:93:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/hs2LQhipuaG84vrF7m3HhbAKkx0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hs2LQhipuaG84vrF7m3HhbAKkx0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF28F/7DDC5A2E554711EDB47B332BC4F9AE02/FD6087F4BBB011EEAA4D5371C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.24.88.0/23
IPv6:
2400:baa0::/32
Signature Algorithm: sha256WithRSAEncryption
9a:da:64:0d:25:54:da:bf:ed:e9:72:01:30:83:28:55:ab:9b:
8c:45:1b:03:f0:06:2d:ad:4d:93:de:6f:24:40:7e:33:a3:74:
03:d7:30:b7:4d:5e:0c:95:09:a1:47:1c:06:44:e0:bf:75:b4:
82:c3:57:0b:4f:19:83:01:bc:cb:21:fe:11:36:ef:67:fd:dc:
a6:f2:e4:37:ed:5f:9a:49:4a:5b:7d:b6:b6:ef:e0:20:77:2b:
40:ce:28:31:a3:c2:dd:84:f5:c4:29:7e:82:41:0a:c1:82:d8:
69:cd:38:c0:a5:7a:70:48:f9:b6:ed:ff:81:86:45:ca:ea:1c:
68:4b:0c:4d:14:26:d0:ac:87:f6:03:67:e0:2a:6d:28:19:b2:
ee:5f:fa:20:f4:33:23:3c:19:fa:39:5b:57:c9:a0:e7:17:12:
8e:77:63:e2:45:71:2f:d5:91:e2:0f:bb:93:5a:01:20:c5:ee:
fd:e0:6c:70:43:8e:80:73:5e:92:ee:e0:d6:15:86:11:4f:55:
c9:40:b5:77:4a:8d:1b:76:c5:47:8b:41:07:1f:77:19:4d:61:
75:5a:b0:9a:bd:40:f3:d1:3d:47:80:6b:45:82:44:ba:65:b0:
29:e2:10:0d:15:82:ba:24:fd:2e:5c:15:5d:5f:9e:65:56:4b:
52:e4:3b:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 29 19:08:46 2024 by rpki-client on console-fra.rpki-client.org