Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB7B8/4DE16CE4D81811ECB6493D5AC4F9AE02/F0336060D82211ECB9E0375AC4F9AE02.roa
File: F0336060D82211ECB9E0375AC4F9AE02.roa (raw, json)
Hash identifier: hjfsFqyhXEFuSstKjf0WDAdFMAsFOHNR3MLNKsdcV/A=
Subject key identifier: 22:5C:60:04:A5:86:87:12:69:66:32:F2:3E:F2:3A:3B:84:A3:5E:07
Certificate issuer: /CN=A91EB7B8/serialNumber=D79EA876C848013D704E3203AF7D6086DB02C79D
Certificate serial: 01A0
Authority key identifier: D7:9E:A8:76:C8:48:01:3D:70:4E:32:03:AF:7D:60:86:DB:02:C7:9D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/156odshIAT1wTjIDr31ghtsCx50.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EB7B8/4DE16CE4D81811ECB6493D5AC4F9AE02/F0336060D82211ECB9E0375AC4F9AE02.roa
Signing time: Thu 13 Jul 2023 02:42:33 +0000
ROA not before: Thu 13 Jul 2023 02:42:33 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 149833
IP address blocks: 103.187.140.0/23 maxlen: 23
103.187.140.0/24 maxlen: 24
103.187.141.0/24 maxlen: 24
2400:7da0::/32 maxlen: 32
2400:7da0::/40 maxlen: 40
2400:7da0:100::/40 maxlen: 40
2400:7da0:200::/40 maxlen: 40
2400:7da0:300::/40 maxlen: 40
2400:7da0:400::/40 maxlen: 40
2400:7da0:500::/40 maxlen: 40
2400:7da0:600::/40 maxlen: 40
2400:7da0:700::/40 maxlen: 40
2400:7da0:800::/40 maxlen: 40
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 416 (0x1a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EB7B8/serialNumber=D79EA876C848013D704E3203AF7D6086DB02C79D
Validity
Not Before: Jul 13 02:42:33 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=64af6498-806a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:12:3f:7a:3d:51:f2:6d:2d:3c:bc:28:4a:9e:
a8:70:16:7a:26:78:2f:3a:a2:a9:06:7f:f9:4c:f2:
d6:3f:75:e2:e0:e1:da:6a:08:79:b6:a2:53:15:4e:
3b:89:f2:25:79:00:ae:2a:e9:34:75:53:0d:11:e4:
66:00:e2:0c:7f:49:a8:f4:bd:08:db:60:e4:e0:61:
eb:de:6a:09:4e:35:e8:29:71:94:8c:d0:ae:e9:63:
ec:36:3a:e8:08:c8:13:33:e5:17:8e:24:1b:65:d0:
7d:ec:ab:3d:f2:a4:1b:ba:3a:09:28:85:dc:fc:14:
33:c6:19:37:3c:03:94:04:58:7c:6a:aa:80:e5:d9:
f6:84:c0:2d:b0:91:04:32:f0:ff:8f:50:28:97:0c:
46:8a:eb:a1:b7:5b:d8:67:4a:1f:7b:1a:2d:ec:8c:
ba:e5:c5:47:15:84:ef:8e:5a:32:b7:ad:5c:e0:ea:
ae:58:59:55:46:3b:08:2e:98:4d:f6:fc:10:7c:c2:
21:8d:46:df:31:50:c2:c7:2c:ab:4b:c6:f6:af:9a:
d7:8e:ec:9d:bd:d2:c0:1b:6c:9c:af:3d:bc:5f:01:
c4:64:f2:d4:7d:ef:19:7f:ed:3b:58:c4:86:fd:d4:
dd:d0:dc:74:1b:43:51:6f:4c:c0:65:f3:b5:fb:69:
40:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:5C:60:04:A5:86:87:12:69:66:32:F2:3E:F2:3A:3B:84:A3:5E:07
X509v3 Authority Key Identifier:
keyid:D7:9E:A8:76:C8:48:01:3D:70:4E:32:03:AF:7D:60:86:DB:02:C7:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EB7B8/4DE16CE4D81811ECB6493D5AC4F9AE02/156odshIAT1wTjIDr31ghtsCx50.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/156odshIAT1wTjIDr31ghtsCx50.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB7B8/4DE16CE4D81811ECB6493D5AC4F9AE02/F0336060D82211ECB9E0375AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.187.140.0/23
IPv6:
2400:7da0::/32
Signature Algorithm: sha256WithRSAEncryption
97:05:80:8b:01:e4:43:c9:4d:f2:a2:f8:d8:b8:29:e5:f9:36:
aa:1e:49:76:c0:b5:79:19:7a:88:4f:a6:62:78:12:73:c5:04:
c9:60:19:3f:e3:bd:8c:93:a4:25:8a:66:d3:43:4c:b0:57:7b:
95:20:92:16:4d:b6:70:0f:a6:03:33:d4:bc:08:13:fb:b9:d1:
94:f1:2e:2d:a7:27:a3:cf:70:0c:5c:f6:9f:9e:ce:08:39:74:
99:e6:c1:19:36:1e:41:42:7a:fc:d3:90:ce:10:4e:52:33:59:
3c:dc:08:a5:b4:39:86:0f:f5:c7:9e:3a:25:5a:84:4b:3c:1b:
db:96:1d:ec:f8:7f:f7:35:27:8a:ab:d6:cd:01:eb:37:ab:97:
94:94:5e:96:31:a2:5a:c2:3b:2a:2d:20:72:c2:cd:a0:01:47:
ed:33:b6:6f:bf:b5:94:f5:4a:2a:a4:77:6b:21:da:e1:4e:83:
e0:23:68:f7:c1:72:3b:f0:bb:40:18:aa:d3:5d:de:ff:42:ab:
b1:3a:9e:5d:e6:60:7d:ba:a8:5f:54:22:d9:2b:d9:89:ff:b9:
d0:2e:16:93:55:fd:c1:9e:56:e6:97:ec:18:67:fa:16:dc:e3:
bf:7c:c1:ab:28:74:78:02:52:d1:55:da:f7:39:84:95:4e:20:
d4:07:18:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 6 10:03:14 2023 by rpki-client on console-fra.rpki-client.org