Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/CAD32576BFD111ECA4347934C4F9AE02.roa
File: CAD32576BFD111ECA4347934C4F9AE02.roa (raw, json)
Hash identifier: ZkU5cNWI+81seWsYe90J+2ultaGkNjHIZkOj2Z1kBsQ=
Subject key identifier: 5F:94:42:F5:B0:D5:06:93:74:9C:38:CE:AE:48:95:21:F3:F1:44:23
Certificate issuer: /CN=A91B72D9/serialNumber=41E5DC2155069FF317E5EE38C75B7889C22197E3
Certificate serial: 0273
Authority key identifier: 41:E5:DC:21:55:06:9F:F3:17:E5:EE:38:C7:5B:78:89:C2:21:97:E3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeXcIVUGn_MX5e44x1t4icIhl-M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/CAD32576BFD111ECA4347934C4F9AE02.roa
Signing time: Fri 27 Jan 2023 04:13:27 +0000
ROA not before: Fri 27 Jan 2023 04:13:27 +0000
ROA not after: Sun 31 Mar 2024 00:00:00 +0000
asID: 149414
IP address blocks: 103.178.220.0/24 maxlen: 24
103.178.221.0/24 maxlen: 24
2001:df0:3e40::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 627 (0x273)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B72D9/serialNumber=41E5DC2155069FF317E5EE38C75B7889C22197E3
Validity
Not Before: Jan 27 04:13:27 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=63d34f67-5363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f6:6a:d8:c1:56:c4:06:63:0f:9a:b6:c9:f0:
38:2d:fa:37:6f:ee:a6:32:da:40:9c:46:e0:81:3a:
ba:19:0b:bb:40:2f:58:2c:29:c1:b4:97:0e:9d:a5:
50:c3:78:67:ae:9a:69:05:11:6e:a9:cc:55:2f:0b:
67:f2:8e:b1:85:b1:af:a9:26:3d:1b:e6:e1:e8:10:
44:c5:d3:ec:7e:60:92:1d:9d:ff:d4:6f:1c:1a:71:
ed:e0:06:fd:00:91:cf:a0:d6:63:56:17:46:c5:55:
17:81:5b:86:38:c5:69:a3:19:1c:97:64:25:c6:9e:
85:a8:8b:cf:55:1e:66:ce:84:ce:51:c5:49:3a:b9:
fa:f2:81:78:53:13:49:1d:f1:6c:c7:c4:a9:3e:76:
92:7b:b0:1a:9c:50:1c:dd:6d:19:16:b0:a5:87:ca:
71:55:a2:f7:c3:57:60:f8:ad:83:9f:e2:aa:48:4c:
8a:7e:f7:a4:34:91:f2:67:f5:85:04:5d:22:1e:73:
68:d7:98:1b:38:d7:8e:98:69:24:22:2d:f6:2a:60:
99:2c:3c:42:69:44:30:cf:40:b1:4c:97:88:94:f9:
b8:ad:95:05:cf:b6:10:29:9a:77:06:ee:3c:5f:07:
8e:5b:e0:7f:8c:c8:fa:2a:d6:14:ab:84:fb:bd:26:
78:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:94:42:F5:B0:D5:06:93:74:9C:38:CE:AE:48:95:21:F3:F1:44:23
X509v3 Authority Key Identifier:
keyid:41:E5:DC:21:55:06:9F:F3:17:E5:EE:38:C7:5B:78:89:C2:21:97:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/QeXcIVUGn_MX5e44x1t4icIhl-M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeXcIVUGn_MX5e44x1t4icIhl-M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/CAD32576BFD111ECA4347934C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.178.220.0/23
IPv6:
2001:df0:3e40::/48
Signature Algorithm: sha256WithRSAEncryption
6b:41:99:22:ad:6b:ad:3c:7c:4c:15:14:5a:86:0c:9e:2d:f9:
19:0e:42:08:9e:3c:e3:b1:58:de:3e:33:48:a9:6c:5f:97:61:
bf:cc:cf:ee:79:fd:d3:dd:61:b2:2f:19:21:e1:bf:43:fd:16:
eb:ab:60:4a:0c:a3:fd:16:a4:7b:ed:48:ab:f0:ca:24:cb:0c:
9f:d4:17:bb:fe:36:9c:ba:7a:01:b6:60:e7:79:6a:f4:00:6c:
06:70:fc:0f:26:c8:0f:14:be:6d:59:3a:e9:26:54:33:ab:56:
53:f2:9d:53:6f:44:f6:bb:a0:b0:90:21:95:5d:a5:6a:df:c1:
3d:31:aa:86:06:2e:ce:b4:b5:4e:90:33:8e:19:d6:73:df:ca:
b5:1d:75:b5:21:ca:5d:3e:a6:2f:92:ac:89:59:45:e0:65:bf:
08:54:64:34:f1:75:d7:88:97:58:a0:74:2b:5c:b4:1d:a4:02:
28:1f:1e:97:d5:1c:98:99:93:8d:d6:78:c6:d6:2e:fc:b6:1e:
03:1e:aa:2f:0a:cc:32:94:67:09:ce:83:55:b5:c4:bd:64:e6:
d7:8f:cc:57:a3:f8:e7:5f:7e:42:a1:84:c0:cc:55:3e:03:f6:
6a:b2:90:0d:81:70:cb:98:59:9a:0c:0c:00:12:72:4c:da:de:
43:68:b7:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:36:17 2023 by rpki-client on console.sobornost.net