Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/085C75C831E611EE9B1C6F6EC4F9AE02.roa
File: 085C75C831E611EE9B1C6F6EC4F9AE02.roa (raw, json)
Hash identifier: ZkD6/3/KuhYY/BCufAm2wTuOxsLq5VKNc4Njz4+6Hf8=
Subject key identifier: BE:05:07:D3:14:5F:F4:C0:74:FC:3E:1E:35:87:D3:50:19:B9:53:4F
Certificate issuer: /CN=A91C1FCC/serialNumber=08D256D426CA2171FCE817C64523F832A36917BD
Certificate serial: 08CF
Authority key identifier: 08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/085C75C831E611EE9B1C6F6EC4F9AE02.roa
Signing time: Thu 03 Aug 2023 10:10:55 +0000
ROA not before: Thu 03 Aug 2023 10:10:55 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 58895
IP address blocks: 103.92.20.0/22 maxlen: 22
103.92.20.0/24 maxlen: 24
103.92.21.0/24 maxlen: 24
103.92.22.0/24 maxlen: 24
103.92.23.0/24 maxlen: 24
103.203.44.0/24 maxlen: 24
103.203.45.0/24 maxlen: 24
116.213.32.0/24 maxlen: 24
116.213.33.0/24 maxlen: 24
116.213.34.0/24 maxlen: 24
116.213.35.0/24 maxlen: 24
123.253.92.0/22 maxlen: 22
123.253.92.0/24 maxlen: 24
123.253.93.0/24 maxlen: 24
123.253.94.0/24 maxlen: 24
123.253.95.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2255 (0x8cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C1FCC/serialNumber=08D256D426CA2171FCE817C64523F832A36917BD
Validity
Not Before: Aug 3 10:10:55 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=64cb7d2f-11c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e4:1a:7c:c8:26:6b:fa:44:30:75:59:89:ec:
eb:62:d1:cd:68:3d:c5:4b:84:49:59:29:f9:6d:9a:
a9:0a:bb:01:9c:62:76:7c:3f:a2:56:dd:45:dc:9a:
dc:93:9e:cf:95:90:25:42:06:c9:9a:4c:53:bc:63:
b2:42:2a:f1:44:01:a0:22:e9:b0:e2:68:60:c3:1b:
19:20:ed:08:f2:66:c3:1d:41:85:df:c9:15:7e:f8:
27:0f:28:09:55:67:60:5b:42:f7:3a:bd:f9:d3:88:
71:21:d1:51:c6:2b:82:40:6f:fa:91:11:51:0c:7f:
33:1b:3a:65:a5:f5:1d:0b:8c:98:37:4e:f6:a6:18:
a0:ac:9a:ff:ea:4b:4b:8f:36:70:ba:1a:17:35:18:
da:7b:1b:9e:1b:76:75:0f:52:23:6b:81:e0:9d:29:
4b:cc:09:d1:d2:b5:9c:fd:04:17:9d:ca:c4:26:6c:
a5:ab:46:27:df:30:83:f9:80:7c:72:57:1f:3d:0f:
de:08:75:d5:4a:46:4d:06:45:13:ad:8c:36:04:f6:
e5:c6:90:ff:ed:5d:f8:f1:69:c8:69:57:49:a8:14:
ee:8a:4c:46:c8:c2:03:b6:0d:b4:29:e6:b2:4e:fc:
65:a9:12:4a:b8:c1:0d:cc:e4:52:5f:c7:0a:a4:3d:
ff:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:05:07:D3:14:5F:F4:C0:74:FC:3E:1E:35:87:D3:50:19:B9:53:4F
X509v3 Authority Key Identifier:
keyid:08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/085C75C831E611EE9B1C6F6EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.92.20.0/22
103.203.44.0/23
116.213.32.0/22
123.253.92.0/22
Signature Algorithm: sha256WithRSAEncryption
c2:7f:86:ec:c2:a8:ca:98:d5:c9:35:5a:89:14:a4:22:d8:79:
7e:43:16:55:15:b7:a5:db:97:ac:19:d9:73:95:26:ff:a7:79:
e9:67:fa:8b:42:f8:bd:84:23:1b:fa:7a:ca:40:c0:7b:d3:87:
51:a4:95:f0:f3:c8:fc:8d:80:6a:c8:11:9c:bc:03:3d:99:84:
77:cf:f6:61:9f:05:51:a9:e6:55:25:51:10:c5:e9:bf:9b:eb:
ae:b4:b5:58:cf:ab:88:c7:fb:cf:28:5f:c2:00:aa:3a:a9:bb:
59:a0:49:76:20:8e:08:52:75:41:9f:e3:84:0f:44:ce:78:70:
15:2c:2e:57:a4:a2:a7:27:ad:fb:9b:69:82:c9:95:3d:1e:ee:
f1:2c:62:00:2f:49:1a:32:9c:a1:f8:e9:fe:50:ca:16:0b:e2:
cb:9a:83:65:b3:29:9a:7a:2b:a3:ca:a5:fc:ac:f0:30:93:ee:
74:f5:fe:f7:d1:6b:45:91:b9:7a:a2:f6:44:d6:9a:14:e1:c0:
7d:ab:9f:ed:03:2a:a8:db:da:d2:71:5f:63:51:3c:43:7a:c1:
61:ec:03:bc:6f:c3:aa:4f:3e:64:59:14:b5:1a:d3:40:9a:b4:
49:50:37:69:79:c5:c7:32:2c:88:b8:00:38:2f:de:33:23:45:
cb:2d:87:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 8 11:45:59 2023 by rpki-client on console-ams.rpki-client.org