Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D90B9/D1EA8CF4B58711ECBEDB9229C4F9AE02/64DF1E90EE3F11ECA9E43485C4F9AE02.roa
File: 64DF1E90EE3F11ECA9E43485C4F9AE02.roa (raw, json)
Hash identifier: m3IZLuECX1CXy/u9hnt7vFlsLbqRurCK3tKsU1fcFAk=
Subject key identifier: 4D:7E:6E:73:C8:16:E3:15:1B:A3:22:E3:23:9B:6D:E8:90:54:EA:51
Certificate issuer: /CN=A91D90B9/serialNumber=5A183B1E0FFCA6DADD796F6BB4AAAF93692F0DC9
Certificate serial: 0306
Authority key identifier: 5A:18:3B:1E:0F:FC:A6:DA:DD:79:6F:6B:B4:AA:AF:93:69:2F:0D:C9
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Whg7Hg_8ptrdeW9rtKqvk2kvDck.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D90B9/D1EA8CF4B58711ECBEDB9229C4F9AE02/64DF1E90EE3F11ECA9E43485C4F9AE02.roa
Signing time: Wed 06 Nov 2024 09:27:11 +0000
ROA not before: Wed 06 Nov 2024 09:27:11 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 58945
IP address blocks: 103.26.112.0/22 maxlen: 24
103.35.156.0/23 maxlen: 24
103.35.158.0/24 maxlen: 24
103.35.159.0/24 maxlen: 24
106.0.52.0/22 maxlen: 24
2401:4440::/32 maxlen: 32
2401:4440::/36 maxlen: 36
2401:4440::/48 maxlen: 48
2401:4440:1000::/36 maxlen: 36
2401:4440:2000::/36 maxlen: 36
2401:4440:3000::/36 maxlen: 36
2401:4440:4000::/36 maxlen: 36
2401:4440:5000::/36 maxlen: 36
2401:4440:6000::/36 maxlen: 36
2401:4440:7000::/36 maxlen: 36
2401:4440:8000::/36 maxlen: 36
2401:4440:9000::/36 maxlen: 36
2401:4440:a000::/36 maxlen: 36
2401:4440:a001::/48 maxlen: 48
2401:4440:a002::/48 maxlen: 48
2401:4440:b000::/36 maxlen: 36
2401:4440:c000::/36 maxlen: 36
2401:4440:d000::/36 maxlen: 36
2401:4440:e000::/36 maxlen: 36
2401:4440:f000::/36 maxlen: 36
2401:4440:fb00::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 07 Nov 2024 13:45:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 774 (0x306)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D90B9
Validity
Not Before: Nov 6 09:27:11 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=672b366f-facb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e8:3e:23:12:9e:82:29:63:f1:e6:bc:3f:b0:
01:75:c1:a3:07:a7:35:c8:56:5f:e1:e0:67:16:a6:
b7:4e:c1:c8:e4:45:5c:86:1e:5b:25:1c:27:ef:de:
d8:45:90:0a:7b:25:71:6d:05:3c:29:17:ac:31:82:
33:50:73:9e:4a:b5:2b:10:09:af:08:db:df:4b:f0:
72:10:42:d4:c2:c5:39:83:cf:8a:c0:a1:c5:3b:7b:
83:e2:54:62:8d:5a:46:a5:6b:90:e2:c4:68:a2:e7:
35:58:ec:8f:8f:9c:6f:cf:64:75:4a:6a:83:6b:ed:
aa:ea:2c:c9:3b:e0:80:bc:47:cf:1e:5a:e3:d0:60:
e4:ba:6b:d6:a1:a5:d2:a3:0a:d8:0f:8b:4b:95:09:
29:24:be:79:7b:a9:42:96:9d:23:41:9d:24:82:d8:
23:68:88:e9:09:c2:22:8d:fd:72:7e:db:13:12:50:
f3:e7:71:d9:30:7d:ca:61:a3:69:19:76:4a:e5:d2:
2b:95:89:20:be:61:37:28:bd:7f:ab:ea:17:09:bc:
9e:d1:81:5a:33:cf:d6:5d:f3:8c:64:04:14:2a:c1:
da:75:16:5d:62:5e:8c:8f:60:5d:63:6e:5d:6f:c8:
3d:1c:9f:a3:21:d2:f6:50:5b:88:3b:19:e7:9f:a8:
6f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:7E:6E:73:C8:16:E3:15:1B:A3:22:E3:23:9B:6D:E8:90:54:EA:51
X509v3 Authority Key Identifier:
keyid:5A:18:3B:1E:0F:FC:A6:DA:DD:79:6F:6B:B4:AA:AF:93:69:2F:0D:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D90B9/D1EA8CF4B58711ECBEDB9229C4F9AE02/Whg7Hg_8ptrdeW9rtKqvk2kvDck.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Whg7Hg_8ptrdeW9rtKqvk2kvDck.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D90B9/D1EA8CF4B58711ECBEDB9229C4F9AE02/64DF1E90EE3F11ECA9E43485C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.26.112.0/22
103.35.156.0/22
106.0.52.0/22
IPv6:
2401:4440::/32
Signature Algorithm: sha256WithRSAEncryption
6c:57:58:0a:66:35:44:89:d9:47:3a:20:e3:fa:d6:d8:44:37:
21:d4:ae:e0:f0:15:3f:de:68:dc:fb:08:f0:60:fc:3a:c3:4d:
b8:46:71:0a:b6:31:c0:3c:03:90:81:ac:b3:cb:e6:a7:a6:f5:
16:82:de:82:bd:96:6d:08:a2:ab:31:bd:68:9e:3c:93:42:8e:
36:72:22:a6:8d:3d:4d:a0:87:49:96:d4:45:13:03:af:d6:f6:
3c:ea:9a:d3:f2:a5:5b:27:62:4d:db:6e:85:ca:c1:86:33:c6:
1e:d8:1f:c3:c6:23:dc:00:2f:e8:b0:ab:5f:90:ed:3b:6f:1a:
e8:2c:8e:d1:15:d5:2d:1f:2e:af:67:ef:b1:2b:be:29:6f:55:
dc:e9:22:e6:4f:fe:51:95:dd:8b:a0:79:cd:c6:c2:c0:90:f6:
d6:20:59:e8:7b:72:aa:03:03:c5:18:ea:c2:55:7b:c1:20:7f:
88:cd:15:1f:3f:ae:d9:00:9e:3c:8c:a1:1b:3d:09:1c:c0:b8:
21:17:54:8f:74:20:6f:bd:02:19:13:12:68:dc:2e:06:b2:1d:
5d:b0:25:4d:b7:a6:37:c3:db:7a:40:10:af:a6:1a:0a:1a:eb:
73:b1:22:33:3f:1c:f2:40:0d:0d:6e:ab:fc:e2:83:a4:71:f1:
e2:bb:0c:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:58 2025 by rpki-client