Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/77EDBFA2730211EE94308945C4F9AE02.roa
File: 77EDBFA2730211EE94308945C4F9AE02.roa (raw, json)
Hash identifier: LG4Hn4qG4YsuV2PUZKwQyVLSOPv1pq+v55Yk5Xttw6Q=
Subject key identifier: DD:AF:AE:7F:CB:39:94:54:6C:17:9A:20:A0:00:8F:99:77:AF:9D:73
Certificate issuer: /CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618
Certificate serial: 0A1B
Authority key identifier: 6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/77EDBFA2730211EE94308945C4F9AE02.roa
Signing time: Mon 06 May 2024 08:15:08 +0000
ROA not before: Mon 06 May 2024 08:15:08 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 58453
IP address blocks: 103.11.108.0/22 maxlen: 22
103.11.108.0/24 maxlen: 24
103.11.109.0/24 maxlen: 24
223.118.0.0/15 maxlen: 15
223.118.0.0/16 maxlen: 24
223.118.0.0/27 maxlen: 27
223.119.0.0/16 maxlen: 20
223.119.0.0/21 maxlen: 24
223.119.8.0/22 maxlen: 24
223.119.12.0/22 maxlen: 24
223.119.16.0/20 maxlen: 24
223.119.32.0/19 maxlen: 23
223.119.33.0/24 maxlen: 24
223.119.38.0/23 maxlen: 24
223.119.40.0/21 maxlen: 24
223.119.48.0/22 maxlen: 24
223.119.53.0/24 maxlen: 24
223.119.54.0/23 maxlen: 24
223.119.56.0/21 maxlen: 24
223.119.64.0/18 maxlen: 23
223.119.64.0/19 maxlen: 24
223.119.96.0/22 maxlen: 24
223.119.101.0/24 maxlen: 24
223.119.102.0/23 maxlen: 24
223.119.104.0/21 maxlen: 24
223.119.112.0/20 maxlen: 24
223.119.128.0/17 maxlen: 23
223.119.128.0/18 maxlen: 24
223.119.192.0/19 maxlen: 24
223.119.224.0/20 maxlen: 24
223.119.240.0/21 maxlen: 24
223.119.248.0/22 maxlen: 24
223.119.252.0/23 maxlen: 24
223.120.0.0/17 maxlen: 24
223.121.0.0/17 maxlen: 24
2402:4f00::/32 maxlen: 32
2402:4f00:1000::/36 maxlen: 36
2402:4f00:2000::/36 maxlen: 36
2402:4f00:4000::10/124 maxlen: 124
2402:4f00:4000::20/125 maxlen: 125
2402:4f00:4000::30/124 maxlen: 124
2402:4f00:4000::40/125 maxlen: 125
2402:4f00:4000::68/127 maxlen: 127
2402:4f00:4000:3::2c/126 maxlen: 126
2402:4f00:4000:4::/64 maxlen: 64
2402:4f00:4001:100::/56 maxlen: 56
2402:4f00:4002:100::/56 maxlen: 56
2402:4f00:4003::/48 maxlen: 48
2402:4f00:8000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 06 May 2024 08:44:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2587 (0xa1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618
Validity
Not Before: May 6 08:15:08 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=6638918b-5b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f9:00:3b:e2:6a:3b:f6:d3:c3:61:82:7c:fe:
c2:e7:0e:6a:11:c0:39:5f:31:42:a6:a6:00:9a:01:
3a:ea:06:af:e0:be:2b:71:21:35:c8:14:ef:95:40:
ad:cc:f0:af:e8:2d:40:0c:d2:53:47:19:8c:70:be:
9b:ba:23:c3:33:56:fd:cf:0b:3c:2f:fd:53:53:ab:
c0:6d:3f:45:82:1d:35:c8:49:09:99:f2:22:c2:c5:
bd:da:48:80:5d:3a:e6:d2:f6:d1:f7:52:17:9c:af:
0f:2b:dc:37:81:1b:53:65:85:ea:d8:bf:53:60:0b:
bd:a3:10:29:fd:58:07:f7:86:77:f9:f7:3c:ac:5f:
76:3f:69:aa:d6:fd:5c:67:65:04:aa:a1:44:2d:64:
cb:b8:bf:f2:41:90:52:47:1c:0a:c4:aa:ee:89:ef:
d6:08:48:2b:0e:d2:b5:62:24:df:af:93:79:83:52:
82:91:12:be:db:59:9d:81:8b:27:8f:bc:fe:eb:b0:
cf:0e:57:f3:b5:c3:c7:1e:76:e3:07:9c:78:43:f8:
ef:83:32:1b:df:1c:7e:de:35:8c:3f:1d:2a:a5:ad:
86:5b:00:8b:79:ef:97:e0:78:ae:e8:69:49:cd:1d:
f0:98:9e:22:14:10:f1:e7:57:4e:d5:2d:c5:11:1b:
32:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:AF:AE:7F:CB:39:94:54:6C:17:9A:20:A0:00:8F:99:77:AF:9D:73
X509v3 Authority Key Identifier:
keyid:6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/77EDBFA2730211EE94308945C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.108.0/22
223.118.0.0-223.120.127.255
223.121.0.0/17
IPv6:
2402:4f00::/32
Signature Algorithm: sha256WithRSAEncryption
6d:83:eb:c6:44:97:a5:92:35:2e:f6:95:92:12:a0:9d:5d:ad:
de:68:5a:75:3a:d3:a8:1e:4c:26:99:f3:b1:1c:1e:d2:82:e5:
a2:82:a3:2d:70:6e:89:ef:50:e4:3a:d4:48:29:89:96:6c:af:
2d:7a:f8:12:0a:c4:ee:2c:17:fc:52:b2:12:fc:e4:48:16:23:
65:41:60:08:29:8e:35:40:b6:ea:9d:17:8b:df:e7:cb:bc:61:
06:ff:70:2f:17:57:17:ef:88:68:4f:d8:eb:51:02:81:4e:b2:
6a:ee:7b:ac:de:ab:ac:14:ef:15:64:1c:77:c2:2a:30:d0:ee:
c9:f6:7a:b6:12:26:cf:33:c5:38:98:1d:7d:f9:52:86:37:6c:
99:e7:88:de:27:ae:f5:b6:97:22:8a:d2:9c:97:51:bf:60:59:
a9:cd:e0:f5:6c:d9:52:8d:9d:dc:03:dc:47:9b:83:57:21:cc:
54:72:ad:0c:0c:31:e6:99:8f:99:79:2e:d8:c9:ca:93:b6:c7:
74:46:61:c1:37:f6:40:88:13:b9:f1:29:f1:43:63:ae:e0:57:
b5:b5:e0:d9:21:b1:cd:d7:3a:a4:bb:4e:8d:4e:32:74:40:05:
db:f2:78:d1:c0:29:a0:6a:07:c2:21:1e:80:c1:d8:dc:2d:a8:
df:b1:e9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:47 2024 by rpki-client on console-fra.rpki-client.org