Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/E8B5AACE7D6511EF824C1E16C4F9AE02.roa
File: E8B5AACE7D6511EF824C1E16C4F9AE02.roa (raw, json)
Hash identifier: FjwKxd1PlvY9kwM7BRDV44x1hCap9EJjydrIEwYhwqc=
Subject key identifier: 33:E4:79:CC:53:3F:AD:94:E1:79:D4:28:CE:C7:3C:22:B1:AD:4E:C5
Certificate issuer: /CN=A9139B49/serialNumber=4EE540A48AD973FBD831ABD02603B5FB0FB945BE
Certificate serial: 17CF
Authority key identifier: 4E:E5:40:A4:8A:D9:73:FB:D8:31:AB:D0:26:03:B5:FB:0F:B9:45:BE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/E8B5AACE7D6511EF824C1E16C4F9AE02.roa
Signing time: Fri 25 Oct 2024 12:42:28 +0000
ROA not before: Fri 25 Oct 2024 12:42:28 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 17911
IP address blocks: 103.224.14.0/24 maxlen: 24
103.224.15.0/24 maxlen: 24
122.129.64.0/24 maxlen: 24
122.129.65.0/24 maxlen: 24
122.129.66.0/24 maxlen: 24
122.129.67.0/24 maxlen: 24
122.129.68.0/24 maxlen: 24
122.129.69.0/24 maxlen: 24
122.129.70.0/24 maxlen: 24
122.129.71.0/24 maxlen: 24
122.129.72.0/24 maxlen: 24
122.129.73.0/24 maxlen: 24
122.129.74.0/24 maxlen: 24
122.129.75.0/24 maxlen: 24
122.129.76.0/24 maxlen: 24
122.129.77.0/24 maxlen: 24
122.129.78.0/24 maxlen: 24
122.129.79.0/24 maxlen: 24
122.129.80.0/24 maxlen: 24
122.129.81.0/24 maxlen: 24
122.129.82.0/24 maxlen: 24
122.129.83.0/24 maxlen: 24
122.129.84.0/24 maxlen: 24
122.129.85.0/24 maxlen: 24
122.129.86.0/24 maxlen: 24
122.129.87.0/24 maxlen: 24
122.129.88.0/24 maxlen: 24
122.129.89.0/24 maxlen: 24
122.129.90.0/24 maxlen: 24
122.129.91.0/24 maxlen: 24
122.129.92.0/24 maxlen: 24
122.129.93.0/24 maxlen: 24
122.129.94.0/24 maxlen: 24
122.129.95.0/24 maxlen: 24
203.128.0.0/24 maxlen: 24
203.128.1.0/24 maxlen: 24
203.128.2.0/24 maxlen: 24
203.128.3.0/24 maxlen: 24
203.128.4.0/24 maxlen: 24
203.128.5.0/24 maxlen: 24
203.128.6.0/24 maxlen: 24
203.128.7.0/24 maxlen: 24
203.128.8.0/24 maxlen: 24
203.128.9.0/24 maxlen: 24
203.128.10.0/24 maxlen: 24
203.128.11.0/24 maxlen: 24
203.128.12.0/24 maxlen: 24
203.128.13.0/24 maxlen: 24
203.128.14.0/24 maxlen: 24
203.128.15.0/24 maxlen: 24
203.128.16.0/24 maxlen: 24
203.128.17.0/24 maxlen: 24
203.128.18.0/24 maxlen: 24
203.128.19.0/24 maxlen: 24
203.128.20.0/24 maxlen: 24
203.128.21.0/24 maxlen: 24
203.128.22.0/24 maxlen: 24
203.128.24.0/24 maxlen: 24
203.128.25.0/24 maxlen: 24
203.128.26.0/24 maxlen: 24
203.128.27.0/24 maxlen: 24
203.128.28.0/24 maxlen: 24
203.128.29.0/24 maxlen: 24
203.128.30.0/24 maxlen: 24
203.128.31.0/24 maxlen: 24
2400:4f00::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 04 Nov 2024 15:53:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6095 (0x17cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9139B49/serialNumber=4EE540A48AD973FBD831ABD02603B5FB0FB945BE
Validity
Not Before: Oct 25 12:42:28 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=671b9234-bb10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:22:87:24:ab:13:15:b4:0d:76:97:75:1f:cd:
4c:09:98:39:97:13:29:11:38:39:c0:04:9b:40:a2:
9e:24:69:81:69:c4:e0:41:fb:ab:62:7d:43:32:d9:
d8:81:64:8b:86:a4:58:45:7f:08:33:1f:b7:5d:41:
88:78:5a:0c:31:0f:7f:9c:b6:5e:76:bb:5f:69:1e:
d2:35:89:78:d3:60:97:66:16:f3:90:94:92:a9:87:
93:36:1b:a9:60:64:d6:b5:de:82:f8:69:cc:eb:cb:
8e:e2:25:67:15:20:b3:05:51:79:6f:77:45:8d:bc:
1e:fd:cd:e5:83:6b:3f:6a:e6:1a:d9:a1:bc:03:2e:
16:a2:3a:1e:e0:fa:9a:77:4a:14:4a:de:a6:0c:9b:
3b:37:16:26:13:3c:6a:12:5d:4f:a6:07:37:9e:d1:
45:33:ca:e7:7f:48:e1:fb:ee:d3:61:c3:b0:87:06:
6a:53:78:1b:0c:34:1b:a8:1b:80:92:4c:1d:40:e9:
80:8f:20:aa:24:9b:55:e9:f1:ae:7a:66:4e:f6:32:
1d:df:ab:99:c7:3f:d9:b7:dc:7a:2b:75:41:81:4f:
67:ad:14:51:7d:5c:61:38:04:b8:17:09:f3:f0:db:
29:5b:00:15:d5:83:15:c2:ea:bc:90:45:f8:1b:09:
e7:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:E4:79:CC:53:3F:AD:94:E1:79:D4:28:CE:C7:3C:22:B1:AD:4E:C5
X509v3 Authority Key Identifier:
keyid:4E:E5:40:A4:8A:D9:73:FB:D8:31:AB:D0:26:03:B5:FB:0F:B9:45:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/TuVApIrZc_vYMavQJgO1-w-5Rb4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/E8B5AACE7D6511EF824C1E16C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.224.14.0/23
122.129.64.0/19
203.128.0.0-203.128.22.255
203.128.24.0/21
IPv6:
2400:4f00::/36
Signature Algorithm: sha256WithRSAEncryption
25:7e:8d:f2:cb:71:9e:9e:9e:e4:56:2e:7c:d6:73:15:5e:82:
08:fb:9e:0d:d8:eb:a0:0f:5c:17:7d:ed:b8:1e:ab:0f:81:ee:
61:a6:94:a6:cb:83:e5:31:30:20:a2:6e:14:06:f6:39:09:ff:
44:49:0c:52:09:2f:70:d7:72:9c:26:6f:13:56:e5:76:4a:35:
41:ab:c9:e6:e0:9f:ae:34:71:e5:6a:b0:fc:1d:8c:ba:95:87:
19:c9:e3:0c:f5:46:ad:d3:2c:59:46:b9:d7:70:bf:a3:fa:8d:
11:38:1c:ce:67:e3:40:99:4b:07:53:02:03:fd:6b:28:43:1f:
68:f6:41:5f:f2:a9:7f:1f:fc:22:c8:da:c8:1e:64:85:96:53:
b9:ae:00:c6:50:fc:35:54:cc:fc:9d:06:8d:27:48:0c:5f:ec:
2c:11:2e:5e:c0:48:8a:0d:39:ff:c0:68:1f:e0:e0:3c:06:d6:
b7:13:ed:bf:b2:eb:ad:30:55:6a:35:d7:2f:50:0f:8d:9e:4a:
4c:f4:d4:28:da:04:51:64:64:9e:ba:be:e9:a0:5d:43:40:ae:
ea:cb:3a:29:31:0f:be:10:7e:fc:e5:70:47:fb:63:a2:57:9c:
a8:dd:0a:a6:de:9e:13:3b:f5:a1:8c:79:31:01:13:a2:4e:35:
2e:18:4e:cb
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Nov 4 21:29:22 2024 by rpki-client on console-fra.rpki-client.org