Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/90A57A94A40211EFBE113E34C4F9AE02.roa
File: 90A57A94A40211EFBE113E34C4F9AE02.roa (raw, json)
Hash identifier: vM+sywa6VgFz2XElB01cuwH15x7iWwBQaO2JKWmG9yo=
Subject key identifier: C8:05:AA:98:F1:D7:7D:25:5A:A8:71:DA:18:3F:C9:A7:C5:A9:45:30
Certificate issuer: /CN=A9139B49/serialNumber=4EE540A48AD973FBD831ABD02603B5FB0FB945BE
Certificate serial: 17E8
Authority key identifier: 4E:E5:40:A4:8A:D9:73:FB:D8:31:AB:D0:26:03:B5:FB:0F:B9:45:BE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/90A57A94A40211EFBE113E34C4F9AE02.roa
Signing time: Sat 16 Nov 2024 10:07:20 +0000
ROA not before: Sat 16 Nov 2024 10:07:20 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 17911
IP address blocks: 122.129.64.0/24 maxlen: 24
122.129.66.0/24 maxlen: 24
122.129.69.0/24 maxlen: 24
122.129.72.0/24 maxlen: 24
122.129.73.0/24 maxlen: 24
122.129.74.0/24 maxlen: 24
122.129.75.0/24 maxlen: 24
122.129.76.0/24 maxlen: 24
122.129.77.0/24 maxlen: 24
122.129.78.0/24 maxlen: 24
122.129.79.0/24 maxlen: 24
122.129.80.0/24 maxlen: 24
122.129.81.0/24 maxlen: 24
122.129.82.0/24 maxlen: 24
122.129.84.0/24 maxlen: 24
122.129.85.0/24 maxlen: 24
122.129.86.0/24 maxlen: 24
122.129.88.0/24 maxlen: 24
122.129.89.0/24 maxlen: 24
122.129.90.0/24 maxlen: 24
122.129.91.0/24 maxlen: 24
122.129.92.0/24 maxlen: 24
122.129.93.0/24 maxlen: 24
122.129.94.0/24 maxlen: 24
203.128.0.0/24 maxlen: 24
203.128.1.0/24 maxlen: 24
203.128.2.0/24 maxlen: 24
203.128.3.0/24 maxlen: 24
203.128.4.0/24 maxlen: 24
203.128.5.0/24 maxlen: 24
203.128.6.0/24 maxlen: 24
203.128.7.0/24 maxlen: 24
203.128.8.0/24 maxlen: 24
203.128.9.0/24 maxlen: 24
203.128.10.0/24 maxlen: 24
203.128.11.0/24 maxlen: 24
203.128.12.0/24 maxlen: 24
203.128.13.0/24 maxlen: 24
203.128.14.0/24 maxlen: 24
203.128.15.0/24 maxlen: 24
203.128.16.0/24 maxlen: 24
203.128.17.0/24 maxlen: 24
203.128.18.0/24 maxlen: 24
203.128.19.0/24 maxlen: 24
203.128.20.0/24 maxlen: 24
203.128.21.0/24 maxlen: 24
203.128.22.0/24 maxlen: 24
203.128.24.0/24 maxlen: 24
203.128.25.0/24 maxlen: 24
203.128.26.0/24 maxlen: 24
203.128.27.0/24 maxlen: 24
203.128.28.0/24 maxlen: 24
203.128.29.0/24 maxlen: 24
203.128.30.0/24 maxlen: 24
203.128.31.0/24 maxlen: 24
2400:4f00::/36 maxlen: 36
Validation: Failed, certificate revoked on Tue 19 Nov 2024 06:41:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6120 (0x17e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9139B49/serialNumber=4EE540A48AD973FBD831ABD02603B5FB0FB945BE
Validity
Not Before: Nov 16 10:07:20 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=67386ed7-7e27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:75:95:3a:60:39:cb:1e:d9:54:76:69:d6:bd:
33:70:45:a4:33:81:5a:d2:a0:65:66:7b:5c:85:b8:
ba:d8:d2:6f:17:93:0b:50:66:8e:f4:8d:32:53:ee:
d7:41:88:9d:2a:7a:86:c2:0a:a5:55:e2:10:ed:de:
dd:d6:06:bb:c2:8e:d8:f9:75:e6:43:b6:ec:53:89:
db:95:f6:2f:ad:4e:b1:ed:5e:c4:ae:d8:af:01:bf:
ea:df:56:69:48:d5:c9:da:2c:38:c1:b6:8f:ad:d0:
27:7a:ea:d4:c8:3e:4a:29:2c:e4:a1:f3:20:eb:df:
45:a0:b8:43:d6:c3:3f:e5:02:08:fe:19:3e:3a:8d:
a8:e8:f8:d7:fb:ef:83:4f:87:c5:25:f5:d9:39:5e:
e4:38:8a:ba:d5:1c:db:74:a4:17:87:0a:ab:ec:ad:
70:e5:64:0a:81:f4:8f:17:9a:53:19:c8:23:3e:03:
93:f6:34:22:4f:7c:f0:77:28:99:5e:a2:54:16:96:
b8:01:6d:d6:6b:0c:f8:63:bc:5b:eb:8c:dc:b3:c8:
a2:d7:be:18:30:79:0b:31:b8:b1:32:dc:58:6b:3c:
a6:6d:c7:aa:99:19:09:23:60:a0:4c:71:cc:70:6a:
8a:2a:3b:31:b3:01:12:a6:c6:67:fe:c7:b0:3d:17:
96:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:05:AA:98:F1:D7:7D:25:5A:A8:71:DA:18:3F:C9:A7:C5:A9:45:30
X509v3 Authority Key Identifier:
keyid:4E:E5:40:A4:8A:D9:73:FB:D8:31:AB:D0:26:03:B5:FB:0F:B9:45:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/TuVApIrZc_vYMavQJgO1-w-5Rb4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/90A57A94A40211EFBE113E34C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
122.129.64.0/24
122.129.66.0/24
122.129.69.0/24
122.129.72.0-122.129.82.255
122.129.84.0-122.129.86.255
122.129.88.0-122.129.94.255
203.128.0.0-203.128.22.255
203.128.24.0/21
IPv6:
2400:4f00::/36
Signature Algorithm: sha256WithRSAEncryption
81:0e:dc:17:8c:d1:84:a3:b1:27:a0:10:2f:3e:2b:32:9a:5b:
b1:14:a3:a2:de:aa:51:21:ef:11:1c:d7:5a:d0:fa:80:43:ad:
67:e9:fa:ae:88:94:85:e2:c2:1c:c8:96:f2:62:63:bd:ec:e4:
cf:58:3e:9d:76:c6:e2:f8:a1:d9:5c:eb:49:d2:cc:5d:38:64:
74:ce:b6:81:2c:4b:cf:79:58:be:85:86:41:55:ff:5d:cd:73:
dd:8c:f7:dc:84:1d:f9:cc:68:ce:e3:74:f1:93:cc:f4:a7:e7:
86:d4:f8:de:2d:6e:a5:dc:9c:ef:41:c3:da:fd:3c:3c:6a:de:
4e:e5:6f:7e:c1:e5:a6:89:e9:25:ef:28:51:97:20:18:58:df:
ae:21:fc:05:95:79:27:1e:b7:78:aa:6f:b7:f8:fe:cf:98:0c:
7b:bb:b2:8c:b0:27:db:8a:19:df:fa:51:c9:fc:41:91:dd:f8:
63:c5:c5:7a:c0:05:8b:2c:f3:da:d6:ff:a3:9d:01:97:0f:93:
8e:fb:1b:5b:01:01:b2:c8:55:0b:03:56:dc:68:1d:08:7e:03:
0f:66:cb:08:49:28:5b:2e:95:87:3f:f6:f0:1a:b8:af:15:7c:
97:20:7c:7a:05:82:67:60:7a:d0:58:c7:0d:a5:fc:7b:d4:1a:
81:67:b0:5a
-----BEGIN CERTIFICATE-----
MIIFyjCCBLKgAwIBAgICF+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MzlCNDkxMTAvBgNVBAUTKDRFRTU0MEE0OEFEOTczRkJEODMxQUJEMDI2MDNCNUZC
MEZCOTQ1QkUwHhcNMjQxMTE2MTAwNzIwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzM4NmVkNy03ZTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAunWVOmA5yx7ZVHZp1r0zcEWkM4Fa0qBlZntchbi62NJvF5MLUGaO9I0yU+7X
QYidKnqGwgqlVeIQ7d7d1ga7wo7Y+XXmQ7bsU4nblfYvrU6x7V7ErtivAb/q31Zp
SNXJ2iw4wbaPrdAneurUyD5KKSzkofMg699FoLhD1sM/5QII/hk+Oo2o6PjX+++D
T4fFJfXZOV7kOIq61RzbdKQXhwqr7K1w5WQKgfSPF5pTGcgjPgOT9jQiT3zwdyiZ
XqJUFpa4AW3Wawz4Y7xb64zcs8ii174YMHkLMbixMtxYazymbceqmRkJI2CgTHHM
cGqKKjsxswESpsZn/sewPReWaQIDAQABo4IC7jCCAuowHQYDVR0OBBYEFMgFqpjx
130lWqhx2hg/yafFqUUwMB8GA1UdIwQYMBaAFE7lQKSK2XP72DGr0CYDtfsPuUW+
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOUI0OS8wNzgwQjk5MEM5
RjgxMUU3OUVGMTIwMDlDNEY5QUUwMi9UdVZBcElyWmNfdllNYXZRSmdPMS13LTVS
YjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1R1VkFwSXJaY192WU1hdlFKZ08xLXctNVJiNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MzlCNDkvMDc4MEI5OTBDOUY4MTFFNzlFRjEyMDA5QzRGOUFFMDIvOTBBNTdBOTRB
NDAyMTFFRkJFMTEzRTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwweAYIKwYBBQUHAQcBAf8E
aTBnMFUEAgABME8DBAB6gUADBAB6gUIDBAB6gUUwDAMEA3qBSAMEAHqBUjAMAwQC
eoFUAwQAeoFWMAwDBAN6gVgDBAB6gV4wCwMDB8uAAwQAy4AWAwQDy4AYMA4EAgAC
MAgDBgQkAE8AADANBgkqhkiG9w0BAQsFAAOCAQEAgQ7cF4zRhKOxJ6AQLz4rMppb
sRSjot6qUSHvERzXWtD6gEOtZ+n6roiUheLCHMiW8mJjvezkz1g+nXbG4vih2Vzr
SdLMXThkdM62gSxLz3lYvoWGQVX/Xc1z3Yz33IQd+cxozuN08ZPM9KfnhtT43i1u
pdyc70HD2v08PGreTuVvfsHlponpJe8oUZcgGFjfriH8BZV5Jx63eKpvt/j+z5gM
e7uyjLAn24oZ3/pRyfxBkd34Y8XFesAFiyzz2tb/o50Blw+TjvsbWwEBsshVCwNW
3GgdCH4DD2bLCEkoWy6Vhz/28Bq4rxV8lyB8egWCZ2B60FjHDaX8e9QagWewWg==
-----END CERTIFICATE-----
Generated at Tue Nov 19 08:10:02 2024 by rpki-client on console-fra.rpki-client.org