Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DC1BB764E18A11ECB1697F55C4F9AE02.roa
File: DC1BB764E18A11ECB1697F55C4F9AE02.roa (raw, json)
Hash identifier: 9LsxZ3/uzi2/Id51Eg3LJPEdomeq5sSF2HgEmkK8vuQ=
Subject key identifier: A4:8F:85:12:44:19:8C:32:34:47:D1:AE:A0:E9:58:6A:B2:52:CF:7A
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 887D
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DC1BB764E18A11ECB1697F55C4F9AE02.roa
Signing time: Thu 30 May 2024 15:54:45 +0000
ROA not before: Thu 30 May 2024 15:54:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 132768
IP address blocks: 103.16.144.0/22 maxlen: 24
103.16.196.0/24 maxlen: 24
103.18.68.0/22 maxlen: 24
103.18.120.0/22 maxlen: 24
103.18.164.0/22 maxlen: 24
103.18.242.0/24 maxlen: 24
103.25.132.0/22 maxlen: 24
103.30.80.0/22 maxlen: 24
103.107.96.0/22 maxlen: 24
103.198.10.0/23 maxlen: 24
103.241.242.0/24 maxlen: 24
103.241.243.0/24 maxlen: 24
103.246.170.0/23 maxlen: 24
103.253.148.0/22 maxlen: 24
139.5.36.0/22 maxlen: 24
150.107.92.0/22 maxlen: 24
183.87.12.0/24 maxlen: 24
183.87.13.0/24 maxlen: 24
183.87.14.0/24 maxlen: 24
183.87.15.0/24 maxlen: 24
2405:ec0::/32 maxlen: 32
2405:ec0::/36 maxlen: 36
2405:ec0:1000::/36 maxlen: 36
2405:ec0:2000::/36 maxlen: 36
2407:a780:1000::/36 maxlen: 36
2407:a780:1000::/48 maxlen: 48
2407:a780:1001::/48 maxlen: 48
2407:a780:1002::/48 maxlen: 48
2407:a780:1003::/48 maxlen: 48
2407:a780:1004::/48 maxlen: 48
2407:a780:1005::/48 maxlen: 48
2407:a780:1006::/48 maxlen: 48
2407:a780:1007::/48 maxlen: 48
2407:a780:1008::/48 maxlen: 48
2407:a780:1009::/48 maxlen: 48
2407:a780:100a::/48 maxlen: 48
2407:a780:100b::/48 maxlen: 48
2407:a780:100c::/48 maxlen: 48
2407:a780:100d::/48 maxlen: 48
2407:a780:100e::/48 maxlen: 48
2407:a780:100f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 05 Jun 2024 10:02:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34941 (0x887d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 30 15:54:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658a145-0032
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:62:eb:d7:81:85:a1:7c:68:57:e0:99:69:b4:
e4:bc:af:4f:03:bd:81:dd:13:d6:40:be:b0:b9:cd:
d9:ce:95:43:23:a2:1c:9f:e5:5b:36:52:f1:85:56:
09:b4:8b:5c:28:3f:59:28:df:41:dc:38:dd:f1:7f:
72:6a:a6:2c:d6:2e:d0:8c:86:c2:06:dd:49:ce:0d:
0d:54:b9:9d:d4:79:48:a1:7d:f9:dc:f5:81:f2:b9:
5f:1d:a9:f7:23:e6:4b:94:c1:af:1a:b0:ef:19:ec:
ae:33:84:d9:04:ab:fe:57:e4:c8:63:16:d1:63:dd:
6d:19:46:4d:db:b5:01:5b:74:96:2d:5d:30:6c:c5:
74:df:3a:20:f7:2a:80:51:54:a3:84:2c:b8:fb:c6:
99:98:7e:37:5a:f9:f4:02:6a:6e:07:13:2e:40:20:
e8:52:3c:02:51:d2:37:8b:4f:04:9f:40:96:d0:82:
f0:ac:db:87:12:50:ac:d7:ab:f5:c8:55:f4:98:c8:
22:28:b6:b5:3a:dc:7e:4a:c8:0c:7b:7b:8b:95:98:
0d:a4:05:45:42:05:5b:23:fa:9b:3e:8d:0e:a9:9f:
e1:3d:41:49:67:bb:64:44:0b:19:53:20:d4:2b:62:
5d:cb:ed:26:5f:f9:f2:e3:27:f7:c1:b2:e5:ae:5d:
ec:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:8F:85:12:44:19:8C:32:34:47:D1:AE:A0:E9:58:6A:B2:52:CF:7A
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DC1BB764E18A11ECB1697F55C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.16.144.0/22
103.16.196.0/24
103.18.68.0/22
103.18.120.0/22
103.18.164.0/22
103.18.242.0/24
103.25.132.0/22
103.30.80.0/22
103.107.96.0/22
103.198.10.0/23
103.241.242.0/23
103.246.170.0/23
103.253.148.0/22
139.5.36.0/22
150.107.92.0/22
183.87.12.0/22
IPv6:
2405:ec0::/32
2407:a780:1000::/36
Signature Algorithm: sha256WithRSAEncryption
5e:18:11:c4:23:85:af:13:20:c7:07:4d:e4:ab:4d:ac:d4:63:
db:4d:eb:f4:60:74:45:5b:83:17:78:fb:bd:b6:33:1f:aa:9c:
19:29:58:9f:cf:c1:84:51:c4:2a:12:03:f4:ac:8c:42:23:2e:
91:f0:90:f0:18:bf:ba:34:41:00:14:40:64:50:bb:43:dc:67:
39:80:38:d1:25:3c:51:fb:a1:d4:1c:19:0f:24:34:40:8c:d4:
39:0e:25:5b:a0:c0:70:26:24:46:6a:f0:73:4a:4d:04:39:8f:
a2:d8:7e:88:b8:72:4d:b9:c5:42:b5:c0:0a:10:6f:c3:5a:9a:
4e:8b:0e:ae:06:bb:98:81:49:15:3e:5f:fa:c4:65:d2:7a:00:
ad:d6:d5:46:53:3d:ea:a9:18:69:57:5a:c6:39:96:7f:86:3c:
57:5a:ac:8e:86:8c:f8:6d:8e:5f:ff:f7:0f:4c:4d:90:98:fc:
da:11:1e:33:d2:31:22:b6:52:5b:8a:37:6c:ff:0c:d8:f0:43:
2c:1c:dd:39:02:4b:30:24:8d:9a:18:28:d0:d9:3d:4c:2d:23:
8b:6f:72:11:89:48:83:f9:f7:03:f7:44:cf:eb:33:00:a3:c0:
8b:34:f0:b6:4c:f1:9f:ae:bd:10:41:d4:fe:4f:23:67:e0:5c:
00:e4:48:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 13:46:45 2025 by rpki-client