Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/49726758123D11EDA5012021C4F9AE02.roa
File: 49726758123D11EDA5012021C4F9AE02.roa (raw, json)
Hash identifier: ismI4zpIXAC5aogrCPg+Iuyktwsup6xyqJCgyYBiw4Y=
Subject key identifier: DD:D3:34:FE:DA:E9:FC:D1:35:1C:34:B0:A8:DB:F7:3F:41:36:22:C2
Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74
Certificate serial: 068C
Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/49726758123D11EDA5012021C4F9AE02.roa
Signing time: Thu 01 Jun 2023 00:16:09 +0000
ROA not before: Thu 01 Jun 2023 00:16:09 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 18254
IP address blocks: 103.213.244.0/23 maxlen: 23
103.213.245.0/24 maxlen: 24
103.213.246.0/23 maxlen: 23
103.213.246.0/24 maxlen: 24
103.213.247.0/24 maxlen: 24
144.48.4.0/23 maxlen: 24
144.48.6.0/23 maxlen: 23
144.48.6.0/24 maxlen: 24
144.48.7.0/24 maxlen: 24
2401:1640::/32 maxlen: 32
2401:1640:10::/48 maxlen: 48
2401:1640:11::/48 maxlen: 48
2401:1640:12::/48 maxlen: 48
2401:1640:13::/48 maxlen: 48
2401:1640:14::/48 maxlen: 48
2401:1640:15::/48 maxlen: 48
2401:1640:16::/48 maxlen: 48
2401:1640:17::/48 maxlen: 48
2401:1640:18::/48 maxlen: 48
2401:1640:19::/48 maxlen: 48
2401:1640:1a::/48 maxlen: 48
2401:1640:1b::/48 maxlen: 48
2401:1640:1c::/48 maxlen: 48
2401:1640:1d::/48 maxlen: 48
2401:1640:1e::/48 maxlen: 48
2401:1640:1f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 May 2024 03:16:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1676 (0x68c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74
Validity
Not Before: Jun 1 00:16:09 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6477e349-7278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:66:46:c1:cb:ed:af:0b:8d:cb:97:c5:94:2c:
92:a4:b0:2f:55:0b:f5:84:a2:9b:f8:cb:d0:97:d7:
5c:83:be:f0:ae:86:05:d6:e2:7f:11:0e:cf:df:d0:
5e:4e:df:ce:a1:a6:4a:b1:e5:c6:d8:b4:7b:a9:df:
73:74:48:23:3b:e7:88:1b:c7:b4:22:51:89:5f:fd:
32:5e:ac:fa:77:08:19:1b:59:6c:6a:53:c6:22:8c:
49:cd:58:f3:9f:c1:7a:18:d3:71:d6:46:a3:d3:1d:
5f:d0:53:41:3c:82:4e:04:a9:8f:c7:65:98:12:a3:
b7:3c:16:60:9f:42:4f:1d:a6:4f:1a:d0:f8:de:d3:
c0:f8:f5:a4:58:90:18:9a:c4:4d:d5:0b:1f:de:96:
c6:7f:1c:fd:f7:29:37:c7:a4:28:80:c5:b4:df:04:
36:8e:85:2b:9e:38:ce:69:42:5a:95:f9:12:de:0e:
f8:5b:b9:a5:b5:7d:73:1e:6b:56:01:7c:ae:2b:69:
63:28:f8:89:68:17:b9:4c:a1:45:ac:f0:51:d2:6e:
f7:b7:c8:da:07:bc:dc:c8:f0:d9:bb:51:44:92:92:
53:57:f8:62:03:56:5e:fa:c4:71:81:ec:77:a4:24:
32:c7:3c:38:4a:0f:c4:12:e0:a3:7d:19:18:81:0a:
36:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:D3:34:FE:DA:E9:FC:D1:35:1C:34:B0:A8:DB:F7:3F:41:36:22:C2
X509v3 Authority Key Identifier:
keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/49726758123D11EDA5012021C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.213.244.0/22
144.48.4.0/22
IPv6:
2401:1640::/32
Signature Algorithm: sha256WithRSAEncryption
ae:ee:33:12:b5:d2:0c:6b:8b:99:5e:75:af:b2:08:68:f0:1a:
8b:3f:54:88:5b:14:00:6c:e7:3d:92:67:82:c1:0e:d3:1f:9d:
99:cc:50:73:81:af:99:9a:6f:96:9e:4a:8d:a8:4c:57:91:98:
cd:b0:cd:0f:88:a3:e6:4f:0b:71:a8:8b:47:2d:24:77:7f:7a:
d6:02:83:e7:1d:0a:5f:da:90:6a:17:33:3c:87:a2:4c:96:08:
c2:80:b6:6d:6e:95:e7:f2:68:24:e2:64:84:4f:eb:e2:1e:6c:
f2:23:e5:05:2d:1a:35:99:37:15:a2:95:0b:46:76:b0:6b:c2:
e9:ce:a7:73:1e:49:9b:e2:85:1c:04:51:c9:85:62:c0:dc:cd:
be:80:77:e4:90:e4:89:64:21:18:e5:06:d1:1f:cb:b3:17:89:
fb:5a:fd:4d:a4:b2:9b:79:a4:e2:58:8b:f3:72:79:7a:4b:94:
96:e7:1e:04:64:af:f8:08:80:e3:93:ab:80:ba:1e:05:4a:34:
9e:a7:62:d1:8f:36:d6:3f:da:af:1d:8e:0a:15:6d:d5:83:a3:
78:8f:5f:3c:50:a5:01:67:5f:88:d3:d6:69:b5:c9:f1:21:3d:
84:d5:86:78:47:25:b7:a8:8d:f6:7f:3d:d5:e0:b4:10:2c:77:
54:36:5d:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 05:08:50 2024 by rpki-client on console-ams.rpki-client.org