Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4463/A4D4400C139F11EAA6582860C4F9AE02/FAF03A548E5111EF91C4DB38C4F9AE02.roa
File: FAF03A548E5111EF91C4DB38C4F9AE02.roa (raw, json)
Hash identifier: W/MwNHTYVfqUqJ1eS/juS3tiR3D50rmjAk25Qd5Baps=
Subject key identifier: 39:57:0D:81:C3:DB:F2:BB:7C:2C:32:88:75:87:6A:54:4D:3A:F1:1F
Certificate issuer: /CN=A91E4463/serialNumber=771230A82EDBC27716AB3DC6A82FC5AEC45EEF67
Certificate serial: 0BBA
Authority key identifier: 77:12:30:A8:2E:DB:C2:77:16:AB:3D:C6:A8:2F:C5:AE:C4:5E:EF:67
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxIwqC7bwncWqz3GqC_FrsRe72c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E4463/A4D4400C139F11EAA6582860C4F9AE02/FAF03A548E5111EF91C4DB38C4F9AE02.roa
Signing time: Sat 19 Oct 2024 20:18:07 +0000
ROA not before: Sat 19 Oct 2024 20:18:07 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 136224
IP address blocks: 103.84.36.0/22 maxlen: 22
103.84.36.0/23 maxlen: 23
103.84.36.0/24 maxlen: 24
103.84.37.0/24 maxlen: 24
103.84.38.0/23 maxlen: 23
103.84.38.0/24 maxlen: 24
103.84.39.0/24 maxlen: 24
113.212.108.0/22 maxlen: 22
113.212.108.0/23 maxlen: 23
113.212.108.0/24 maxlen: 24
113.212.109.0/24 maxlen: 24
113.212.111.0/24 maxlen: 24
2400:9940:5::/48 maxlen: 48
2400:9940:1000::/36 maxlen: 36
2400:9940:1000::/48 maxlen: 48
2400:9940:1001::/48 maxlen: 48
2400:9940:1002::/48 maxlen: 48
2400:9940:1003::/48 maxlen: 48
2400:9940:1100::/48 maxlen: 48
2400:9940:1101::/48 maxlen: 48
2400:9940:1102::/48 maxlen: 48
2400:9940:1103::/48 maxlen: 48
2400:9940:1200::/48 maxlen: 48
2400:9940:1201::/48 maxlen: 48
2400:9940:1202::/48 maxlen: 48
2400:9940:1203::/48 maxlen: 48
2400:9940:1300::/48 maxlen: 48
2400:9940:1400::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 20 Oct 2024 06:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3002 (0xbba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E4463/serialNumber=771230A82EDBC27716AB3DC6A82FC5AEC45EEF67
Validity
Not Before: Oct 19 20:18:07 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=671413fe-f97e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:91:b9:7e:52:6a:57:e7:1b:cd:f0:29:f5:67:
fa:91:b8:e9:4e:42:2e:31:06:d1:39:ac:a4:7b:4f:
26:af:82:46:b9:8d:3f:99:b1:7b:28:da:b5:f4:e6:
a2:bf:b7:ab:43:66:4d:71:54:19:ce:50:51:99:52:
22:6b:5c:45:58:0b:39:0b:b6:72:d7:76:b9:c8:5a:
8e:f7:2e:88:52:4f:45:5c:0f:ed:eb:21:d3:2b:04:
0c:58:b9:c7:c4:76:b0:50:95:de:ec:cc:91:eb:71:
c6:67:bb:e6:dc:95:45:d1:9b:f1:58:9c:c2:14:19:
68:c8:e2:7e:bc:6a:4c:1b:b3:a4:1e:63:f6:98:45:
d4:96:12:fb:8c:19:6e:29:e8:c5:96:d4:74:fb:87:
75:f9:ff:e2:ef:da:0f:42:ac:70:17:64:95:f4:df:
13:44:dd:09:50:63:fb:73:a1:42:6c:80:9a:b1:f4:
9a:fe:93:57:e4:02:8d:c3:4c:3a:3d:e5:86:d5:c2:
bd:95:0e:7a:58:ce:69:3a:8a:58:6e:2b:26:5f:f7:
0a:c0:0d:6b:8b:f6:d8:70:b9:34:e9:2f:29:a8:be:
d7:aa:f8:0c:91:0c:49:0f:3b:e6:77:29:e5:f9:a1:
11:63:8d:8e:73:85:d9:b9:9d:e3:6c:75:b1:7d:2d:
ab:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:57:0D:81:C3:DB:F2:BB:7C:2C:32:88:75:87:6A:54:4D:3A:F1:1F
X509v3 Authority Key Identifier:
keyid:77:12:30:A8:2E:DB:C2:77:16:AB:3D:C6:A8:2F:C5:AE:C4:5E:EF:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E4463/A4D4400C139F11EAA6582860C4F9AE02/dxIwqC7bwncWqz3GqC_FrsRe72c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxIwqC7bwncWqz3GqC_FrsRe72c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4463/A4D4400C139F11EAA6582860C4F9AE02/FAF03A548E5111EF91C4DB38C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.84.36.0/22
113.212.108.0/22
IPv6:
2400:9940:5::/48
2400:9940:1000::/36
Signature Algorithm: sha256WithRSAEncryption
65:9d:9b:16:ec:3d:04:07:cb:af:6f:93:fb:87:cf:4a:c1:d6:
34:fd:36:37:a5:e4:fe:d8:e3:6f:1c:87:80:36:c9:f1:af:79:
d6:61:27:45:1d:85:ee:e6:6e:35:82:35:cf:a5:32:04:cd:70:
c6:5f:1d:8b:6b:3f:4e:bb:10:74:bb:d4:cd:e5:ae:ef:4a:17:
67:77:ab:5a:c1:de:05:65:28:7f:98:48:01:66:b6:08:87:80:
47:a5:49:9d:8a:33:7e:e7:ac:50:db:e6:87:c1:cb:40:a7:92:
dd:d2:1b:b3:8d:bb:4d:89:2e:f5:89:27:1d:c0:53:14:be:a0:
5f:94:53:c5:68:5f:4e:22:c2:f1:9a:bd:3b:bd:1a:0d:ab:15:
39:e8:42:2e:96:8f:31:ef:fc:2b:cf:9c:3e:ac:f0:a2:86:9f:
98:a6:8c:0e:00:59:ac:89:50:f1:08:b7:de:7f:de:56:c8:65:
0f:e2:e6:03:27:bd:c4:da:e4:3e:a6:a0:6d:f0:4e:e2:ae:dc:
0f:79:04:b0:b7:2b:43:7d:73:68:73:73:f1:cf:5f:1c:23:4e:
06:aa:ff:52:1a:90:95:d6:dc:dd:2e:5b:cf:f9:e5:59:a7:f9:
30:05:d1:d3:be:dc:48:73:ef:d5:22:ab:7b:89:8d:45:06:4a:
3a:fc:90:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 20 08:59:03 2024 by rpki-client on console-ams.rpki-client.org