Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/665751CE169B11ECB2AD5F80C4F9AE02.roa
File: 665751CE169B11ECB2AD5F80C4F9AE02.roa (raw, json)
Hash identifier: fTNSpvt/Kv+R/nSrubs6OlUhb/vfy5ZQUvXWknYLVck=
Subject key identifier: 97:4F:47:73:EA:51:3B:45:4C:22:89:42:62:8A:58:5D:0E:85:17:31
Certificate issuer: /CN=A91CE558/serialNumber=B36B971724A3BABD890B754598933720F972FEAF
Certificate serial: 0A72
Authority key identifier: B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/665751CE169B11ECB2AD5F80C4F9AE02.roa
Signing time: Fri 12 Jul 2024 20:50:28 +0000
ROA not before: Fri 12 Jul 2024 20:50:28 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 17819
IP address blocks: 27.111.240.0/20 maxlen: 20
101.97.32.0/23 maxlen: 23
101.97.33.0/24 maxlen: 24
101.97.34.0/23 maxlen: 23
101.97.37.0/24 maxlen: 24
101.97.38.0/23 maxlen: 23
101.97.38.0/24 maxlen: 24
101.97.52.0/23 maxlen: 23
101.97.54.0/23 maxlen: 23
101.97.56.0/22 maxlen: 22
103.13.68.0/22 maxlen: 22
180.189.16.0/22 maxlen: 22
180.189.24.0/21 maxlen: 21
183.177.52.0/22 maxlen: 22
202.177.208.0/22 maxlen: 22
202.177.208.0/24 maxlen: 24
202.177.212.0/22 maxlen: 22
202.177.216.0/24 maxlen: 24
202.177.217.0/24 maxlen: 24
202.177.218.0/23 maxlen: 23
202.177.219.0/24 maxlen: 24
202.177.220.0/23 maxlen: 23
202.177.221.0/24 maxlen: 24
202.177.222.0/23 maxlen: 23
2404:4f00::/32 maxlen: 32
2404:4f00::/33 maxlen: 33
Validation: Failed, certificate revoked on Mon 07 Oct 2024 07:13:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2674 (0xa72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CE558/serialNumber=B36B971724A3BABD890B754598933720F972FEAF
Validity
Not Before: Jul 12 20:50:28 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66919713-d6be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f6:5a:ae:05:46:ec:83:46:7d:be:be:7e:d2:
6c:61:b1:c9:69:ea:14:53:c2:64:3b:e4:14:da:41:
13:4e:38:3b:8f:0b:ce:b1:1e:92:1a:46:13:3e:3c:
8b:b4:83:6c:ee:28:c6:d1:ea:67:c3:74:32:c0:d5:
24:bd:db:38:3e:86:66:29:15:71:3e:fc:8b:04:b8:
4a:de:bf:17:e3:c8:ad:ec:5d:fc:df:a4:64:46:a0:
1a:9f:bc:8b:e5:72:85:0c:1f:23:16:0d:e3:05:05:
8a:b7:4d:dd:1f:71:4a:c7:fe:a0:f4:75:60:a2:1f:
66:f5:6e:44:cd:11:a4:24:48:4d:75:18:6a:de:bd:
23:eb:0c:ef:be:c4:07:c3:8f:12:b3:be:3f:c8:04:
a1:78:58:48:a8:a6:ed:bd:b0:c8:90:17:77:f7:1e:
89:24:fc:3b:a6:45:79:e9:ca:c5:f8:20:78:aa:41:
97:7b:13:13:11:11:a3:ef:bd:ee:a4:9a:17:e1:5e:
f0:6a:06:68:f4:8f:6d:ce:12:72:93:54:bd:9c:f4:
f9:61:20:30:fa:15:21:07:b3:64:ee:9b:48:1b:b5:
b5:38:f5:f1:ae:c7:f5:fc:e1:5a:a1:a1:9f:43:0a:
61:02:9b:33:0a:99:e5:81:1b:ac:50:8c:b1:90:ee:
04:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:4F:47:73:EA:51:3B:45:4C:22:89:42:62:8A:58:5D:0E:85:17:31
X509v3 Authority Key Identifier:
keyid:B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/665751CE169B11ECB2AD5F80C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.111.240.0/20
101.97.32.0/22
101.97.37.0-101.97.39.255
101.97.52.0-101.97.59.255
103.13.68.0/22
180.189.16.0/22
180.189.24.0/21
183.177.52.0/22
202.177.208.0/20
IPv6:
2404:4f00::/32
Signature Algorithm: sha256WithRSAEncryption
0b:72:c4:32:31:c5:0c:79:c5:b4:cd:e6:99:f2:8f:c2:9b:b1:
4e:ee:7a:32:ea:0f:dc:34:5b:fb:44:97:6e:60:16:a3:c6:57:
14:54:58:03:01:43:c1:de:11:70:3a:96:a9:72:e8:79:05:d4:
80:22:33:7d:39:9d:44:8f:5f:74:a4:39:7a:7c:bc:e8:c0:b5:
5a:3f:18:4f:21:e1:dd:d7:af:80:f7:07:3a:42:93:0d:2e:c0:
80:f6:2d:b4:8b:4d:0c:b8:57:c4:1c:91:81:83:87:1f:a5:c2:
b9:4c:e8:cb:9b:7e:ed:bf:17:41:7d:09:6b:5e:bb:ef:ce:d7:
c2:b7:91:24:6b:d0:eb:f6:fc:12:8c:80:fa:c5:1d:3a:80:ab:
af:75:29:8e:d7:2d:60:26:9a:2c:51:4b:2d:bc:6d:54:5b:89:
69:9e:98:d8:bd:7c:d9:90:c7:9e:b5:64:7e:96:74:99:d3:f6:
c0:e5:b9:58:08:10:69:2c:1d:4a:3b:d6:08:2f:fa:b3:39:2b:
0c:71:d9:c4:77:5f:79:8e:e1:3f:43:8e:b7:7f:d2:25:46:c5:
13:9b:64:60:49:aa:da:f9:79:1a:af:11:27:c5:1c:ca:3a:8f:
62:ec:58:ac:74:e0:5e:79:87:d0:1d:a7:2e:9b:47:46:df:62:
ed:33:87:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 7 10:00:43 2024 by rpki-client on console-fra.rpki-client.org