Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/F42B1508CA5111EBBAD2D42AC4F9AE02.roa
File: F42B1508CA5111EBBAD2D42AC4F9AE02.roa (raw, json)
Hash identifier: Q5czPUE07AXevQqSjzLyEDmH/VyPDdb0lc04NiGGM94=
Subject key identifier: 76:38:1A:59:30:24:ED:10:B1:37:B4:C6:AE:82:90:5A:D3:1B:30:5A
Certificate issuer: /CN=A912176D/serialNumber=96F42E19F69D596A0318921590A17DD53233E595
Certificate serial: 0721
Authority key identifier: 96:F4:2E:19:F6:9D:59:6A:03:18:92:15:90:A1:7D:D5:32:33:E5:95
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/F42B1508CA5111EBBAD2D42AC4F9AE02.roa
Signing time: Mon 17 Jun 2024 10:40:42 +0000
ROA not before: Mon 17 Jun 2024 10:40:42 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 55720
IP address blocks: 14.192.67.0/24 maxlen: 24
14.192.68.0/24 maxlen: 24
14.192.69.0/24 maxlen: 24
43.225.36.0/24 maxlen: 24
43.225.37.0/24 maxlen: 24
43.225.38.0/24 maxlen: 24
43.225.39.0/24 maxlen: 24
43.231.4.0/24 maxlen: 24
43.231.5.0/24 maxlen: 24
43.231.6.0/24 maxlen: 24
43.231.7.0/24 maxlen: 24
45.116.160.0/24 maxlen: 24
45.116.161.0/24 maxlen: 24
45.116.162.0/24 maxlen: 24
45.116.163.0/24 maxlen: 24
45.120.52.0/24 maxlen: 24
45.120.53.0/24 maxlen: 24
45.120.54.0/24 maxlen: 24
45.120.55.0/24 maxlen: 24
61.4.96.0/24 maxlen: 24
61.4.97.0/24 maxlen: 24
61.4.98.0/24 maxlen: 24
61.4.99.0/24 maxlen: 24
61.4.100.0/22 maxlen: 24
61.4.104.0/22 maxlen: 24
61.4.108.0/24 maxlen: 24
61.4.109.0/24 maxlen: 24
61.4.110.0/24 maxlen: 24
61.4.111.0/24 maxlen: 24
103.4.28.0/24 maxlen: 24
103.4.29.0/24 maxlen: 24
103.4.30.0/24 maxlen: 24
103.4.31.0/24 maxlen: 24
103.15.104.0/24 maxlen: 24
103.15.105.0/24 maxlen: 24
103.15.106.0/24 maxlen: 24
103.15.107.0/24 maxlen: 24
103.21.88.0/24 maxlen: 24
103.21.89.0/24 maxlen: 24
103.21.90.0/24 maxlen: 24
103.21.91.0/24 maxlen: 24
103.23.46.0/24 maxlen: 24
103.23.47.0/24 maxlen: 24
103.71.176.0/24 maxlen: 24
103.71.177.0/24 maxlen: 24
103.71.178.0/24 maxlen: 24
103.71.179.0/24 maxlen: 24
103.243.212.0/24 maxlen: 24
103.243.213.0/24 maxlen: 24
103.243.214.0/24 maxlen: 24
103.243.215.0/24 maxlen: 24
103.246.112.0/24 maxlen: 24
103.246.113.0/24 maxlen: 24
103.246.114.0/24 maxlen: 24
103.246.115.0/24 maxlen: 24
118.107.212.0/24 maxlen: 24
118.107.213.0/24 maxlen: 24
118.107.214.0/24 maxlen: 24
118.107.215.0/24 maxlen: 24
118.107.216.0/24 maxlen: 24
118.107.217.0/24 maxlen: 24
118.107.218.0/24 maxlen: 24
118.107.219.0/24 maxlen: 24
118.107.220.0/24 maxlen: 24
118.107.221.0/24 maxlen: 24
118.107.222.0/24 maxlen: 24
118.107.223.0/24 maxlen: 24
150.107.76.0/24 maxlen: 24
150.107.77.0/24 maxlen: 24
150.107.78.0/24 maxlen: 24
150.107.79.0/24 maxlen: 24
202.9.36.0/24 maxlen: 24
202.9.37.0/24 maxlen: 24
202.9.38.0/24 maxlen: 24
202.9.39.0/24 maxlen: 24
202.73.12.0/24 maxlen: 24
202.73.13.0/24 maxlen: 24
202.73.14.0/24 maxlen: 24
202.73.15.0/24 maxlen: 24
202.87.220.0/24 maxlen: 24
202.87.221.0/24 maxlen: 24
202.87.222.0/24 maxlen: 24
202.87.223.0/24 maxlen: 24
223.25.240.0/24 maxlen: 24
223.25.241.0/24 maxlen: 24
223.25.242.0/24 maxlen: 24
223.25.243.0/24 maxlen: 24
223.25.244.0/24 maxlen: 24
223.25.245.0/24 maxlen: 24
223.25.246.0/24 maxlen: 24
223.25.247.0/24 maxlen: 24
2402:9500::/32 maxlen: 32
2402:9500::/48 maxlen: 48
2402:9500:a00::/48 maxlen: 48
2402:9500:b00::/48 maxlen: 48
2402:9500:c00::/48 maxlen: 48
2402:9500:d00::/48 maxlen: 48
2402:9500:1000::/48 maxlen: 48
2402:9500:2000::/48 maxlen: 48
2402:9500:3000::/48 maxlen: 48
2402:9500:4000::/48 maxlen: 48
2402:9500:5000::/48 maxlen: 48
2402:9500:6000::/48 maxlen: 48
2402:9500:7000::/48 maxlen: 48
2402:9500:8000::/48 maxlen: 48
2402:9500:9000::/48 maxlen: 48
2402:9500:e000::/48 maxlen: 48
2402:9500:f000::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 19 Jun 2024 05:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1825 (0x721)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912176D/serialNumber=96F42E19F69D596A0318921590A17DD53233E595
Validity
Not Before: Jun 17 10:40:42 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=667012aa-b5c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1d:83:2b:e3:16:e3:bb:fe:ef:a3:ce:2e:58:
65:14:bb:e6:b3:30:40:2a:11:c2:1d:0a:a3:ef:14:
6e:b0:5f:f8:f9:64:f7:a8:47:d0:75:5e:f3:85:ef:
a2:30:c9:b2:80:95:17:34:c3:97:db:f5:eb:ef:84:
6d:49:9c:d5:ee:85:99:d9:ca:9d:2d:b3:31:14:f1:
5d:d4:ed:ee:2e:c6:e1:cb:aa:3a:13:01:50:01:64:
9f:3f:cf:b6:29:69:8c:cd:fa:44:bb:c6:c0:5f:49:
06:67:8a:11:66:49:d6:9c:f6:06:ee:7b:14:88:1f:
a7:93:2c:60:78:b0:8f:13:6e:71:c8:46:03:12:ac:
69:8b:c5:c6:52:f6:5a:a1:80:c0:01:e2:70:92:b0:
a8:3b:2c:b6:b6:32:61:fe:a2:20:a9:1d:f1:1a:c2:
ca:17:b1:71:ac:7b:b0:7e:12:b3:28:98:3e:ad:50:
d3:84:cf:63:8d:7c:84:77:c7:45:63:5c:99:94:0f:
19:36:3e:ef:a8:0d:f4:eb:c4:f8:4a:ac:55:ee:5c:
28:51:c8:6c:b1:4b:98:05:34:fd:82:0a:89:39:e2:
ba:a2:89:90:a9:ad:53:a8:52:68:e6:d4:9a:35:32:
58:d5:e6:69:9b:3a:72:a9:48:33:c9:e7:df:06:12:
51:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:38:1A:59:30:24:ED:10:B1:37:B4:C6:AE:82:90:5A:D3:1B:30:5A
X509v3 Authority Key Identifier:
keyid:96:F4:2E:19:F6:9D:59:6A:03:18:92:15:90:A1:7D:D5:32:33:E5:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/F42B1508CA5111EBBAD2D42AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.192.67.0-14.192.69.255
43.225.36.0/22
43.231.4.0/22
45.116.160.0/22
45.120.52.0/22
61.4.96.0/20
103.4.28.0/22
103.15.104.0/22
103.21.88.0/22
103.23.46.0/23
103.71.176.0/22
103.243.212.0/22
103.246.112.0/22
118.107.212.0-118.107.223.255
150.107.76.0/22
202.9.36.0/22
202.73.12.0/22
202.87.220.0/22
223.25.240.0/21
IPv6:
2402:9500::/32
Signature Algorithm: sha256WithRSAEncryption
9c:3b:dc:45:8e:b8:90:0a:77:d0:11:e1:bd:ab:be:d1:63:48:
af:91:41:f3:16:9a:b9:cb:f5:73:f1:bf:80:2a:b8:0c:98:e0:
f0:60:af:8b:be:92:93:8e:1c:6c:54:f9:d9:20:2f:62:b7:42:
d4:c0:4e:7b:d3:ff:1f:ab:c0:c8:fa:17:7e:f6:0f:73:9a:1c:
1b:6a:8c:6b:be:ed:37:83:32:fa:98:67:89:ae:16:8e:fb:4f:
43:f0:42:01:93:6c:d0:27:a4:84:0d:08:c9:62:8d:81:0c:77:
c6:f3:f5:53:07:33:8a:4e:b1:a4:13:cf:2c:fb:ff:c7:4a:61:
4a:df:ab:fd:df:6f:2b:b9:79:cd:62:fc:3c:89:15:dd:02:93:
06:d2:78:6c:59:d7:54:e1:78:22:8a:34:37:0c:95:4d:5d:ab:
77:97:16:4b:61:04:f0:55:93:20:da:63:4a:ae:7b:0a:09:53:
7b:f2:5c:c9:82:34:ea:73:06:14:2a:99:59:94:12:dc:11:58:
ad:9e:70:5c:0d:6c:59:94:88:8f:e0:4c:a8:20:5a:df:0e:b1:
8c:18:52:b4:0e:7c:53:07:19:30:84:51:71:05:6c:29:cf:d8:
86:09:56:2f:6d:f9:da:65:9c:5b:36:58:5c:f6:2c:dc:a7:40:
17:6e:8c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 19 09:52:33 2024 by rpki-client on console-ams.rpki-client.org