Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/ABC83CB4921911EDB2D4A126C4F9AE02.roa
File: ABC83CB4921911EDB2D4A126C4F9AE02.roa (raw, json)
Hash identifier: ES1K0MPJmB91s47RBeQdjDw2KxH8rTD51/hf5n9BosU=
Subject key identifier: 22:36:07:07:8D:12:98:F4:7F:81:E5:DF:AE:8C:7C:23:9A:07:AC:14
Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846
Certificate serial: 09B0
Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/ABC83CB4921911EDB2D4A126C4F9AE02.roa
Signing time: Thu 02 Mar 2023 21:08:06 +0000
ROA not before: Thu 02 Mar 2023 21:08:06 +0000
ROA not after: Wed 29 May 2024 00:00:00 +0000
asID: 9311
IP address blocks: 43.246.128.0/24 maxlen: 24
43.246.130.0/24 maxlen: 24
43.246.196.0/24 maxlen: 24
43.246.198.0/24 maxlen: 24
103.8.85.0/24 maxlen: 24
103.8.87.0/24 maxlen: 24
103.15.32.0/24 maxlen: 24
103.15.34.0/24 maxlen: 24
103.15.77.0/24 maxlen: 24
103.15.79.0/24 maxlen: 24
103.24.160.0/24 maxlen: 24
103.24.161.0/24 maxlen: 24
103.24.162.0/24 maxlen: 24
103.24.163.0/24 maxlen: 24
103.244.208.0/24 maxlen: 24
103.244.209.0/24 maxlen: 24
103.244.210.0/24 maxlen: 24
103.244.211.0/24 maxlen: 24
103.248.148.0/24 maxlen: 24
103.248.150.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2480 (0x9b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846
Validity
Not Before: Mar 2 21:08:06 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=64011036-3736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:64:2f:dd:4e:99:8e:e3:5f:99:2d:51:4e:f6:
47:43:83:cd:e9:34:bb:c1:a1:00:43:fc:a6:48:4c:
09:0e:70:16:79:8d:e4:fe:ce:e0:c9:df:a5:e7:c1:
dc:f9:f5:b0:94:ec:41:93:d8:91:c2:0d:f0:19:a4:
78:9b:7f:bf:2a:78:bb:93:2e:12:f8:da:ad:02:7a:
91:f6:29:c9:6e:55:10:86:b2:42:d8:2a:1a:da:9c:
42:cb:11:57:d5:60:ab:c0:b9:73:62:7e:3a:96:3b:
4b:1a:af:ee:ba:f0:67:4c:fc:8b:15:e9:10:7f:13:
0c:d6:cc:df:1a:08:28:ee:90:74:bd:1d:85:6b:7d:
2f:3f:51:f6:cb:a5:fe:7c:3a:51:a2:36:cc:0e:df:
fd:21:d0:78:61:80:39:6d:ac:67:a1:55:28:9f:bc:
87:1e:49:f5:a3:de:df:33:4f:16:eb:5d:7f:18:a6:
55:20:8a:8c:03:c7:05:92:9e:85:c7:70:65:5a:58:
4c:0c:b6:a5:04:19:28:19:05:47:a2:b6:f3:04:c9:
4e:fa:4c:7e:31:2e:98:c4:18:1b:e7:e5:81:df:81:
a3:84:81:38:6b:5d:11:30:ac:7b:f1:5a:24:92:7e:
2c:a8:fa:cb:33:af:3d:57:e1:07:ae:4f:d5:83:b7:
37:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:36:07:07:8D:12:98:F4:7F:81:E5:DF:AE:8C:7C:23:9A:07:AC:14
X509v3 Authority Key Identifier:
keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/ABC83CB4921911EDB2D4A126C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.246.128.0/24
43.246.130.0/24
43.246.196.0/24
43.246.198.0/24
103.8.85.0/24
103.8.87.0/24
103.15.32.0/24
103.15.34.0/24
103.15.77.0/24
103.15.79.0/24
103.24.160.0/22
103.244.208.0/22
103.248.148.0/24
103.248.150.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:37:62:8f:c0:f1:80:7f:26:99:7d:40:65:63:eb:72:ea:a9:
60:ed:89:1a:ae:81:ea:bd:22:d1:d2:5c:32:fc:a0:9e:a5:f0:
54:e3:7c:68:26:f7:d3:0d:7b:a9:1f:f1:18:66:e4:0b:d1:e8:
c2:e4:4e:24:d2:2a:cc:11:90:ca:ae:7a:9b:cc:5d:58:f5:d8:
61:fe:0d:23:1a:0e:d0:c8:2c:32:b9:ed:c3:d8:b6:7d:de:64:
42:90:06:a2:04:5c:c8:8c:8f:5c:fe:0b:26:32:a9:a9:39:5f:
2e:e6:fc:8d:b1:c7:01:43:f2:e2:40:05:c0:e1:1d:14:45:2f:
76:46:b1:45:cc:38:02:7c:0c:2c:67:08:1e:1c:de:d1:56:1f:
26:c8:c9:c2:ba:f0:4e:9a:4e:49:36:2a:86:92:65:57:6f:46:
62:5e:d0:41:d7:13:d9:85:1d:a4:8d:21:9c:e1:85:95:01:99:
a9:15:4a:43:d8:97:12:e9:90:e7:54:5b:08:80:75:de:7e:35:
b5:18:e4:2d:f3:29:13:7f:25:c0:46:13:38:fc:10:9d:bf:cf:
8f:cd:a9:95:cc:37:fc:7c:91:f1:ca:b7:9e:ff:d7:f0:d8:ea:
f6:12:b3:b5:a5:4a:7d:59:f2:6c:f4:5a:fb:bd:6a:83:60:cf:
45:6d:f7:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:57 2023 by rpki-client on console.sobornost.net