Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/13D6D398794A11EEA35FEE49C4F9AE02.roa
File: 13D6D398794A11EEA35FEE49C4F9AE02.roa (raw, json)
Hash identifier: bJ70nnueEL5FM7b9vKbuEmrpyNkeLdv4GIlSUTwAEBU=
Subject key identifier: 64:FB:72:89:3C:F7:80:06:00:C0:B6:CD:04:CB:8A:7A:D8:95:DF:D3
Certificate issuer: /CN=A913C627/serialNumber=6FFA5DB159D40A3A172DBC74F5C32B55517979AF
Certificate serial: 0789
Authority key identifier: 6F:FA:5D:B1:59:D4:0A:3A:17:2D:BC:74:F5:C3:2B:55:51:79:79:AF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_pdsVnUCjoXLbx09cMrVVF5ea8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/13D6D398794A11EEA35FEE49C4F9AE02.roa
Signing time: Tue 02 Apr 2024 22:31:50 +0000
ROA not before: Tue 02 Apr 2024 22:31:50 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 9738
IP address blocks: 61.14.96.0/19 maxlen: 19
61.14.96.0/23 maxlen: 23
61.14.98.0/23 maxlen: 24
61.14.100.0/24 maxlen: 24
61.14.101.0/24 maxlen: 24
61.14.102.0/23 maxlen: 24
61.14.104.0/24 maxlen: 24
61.14.105.0/24 maxlen: 24
61.14.106.0/24 maxlen: 24
61.14.107.0/24 maxlen: 24
61.14.108.0/24 maxlen: 24
61.14.109.0/24 maxlen: 24
61.14.112.0/24 maxlen: 24
61.14.113.0/24 maxlen: 24
61.14.114.0/24 maxlen: 24
61.14.115.0/24 maxlen: 24
61.14.116.0/24 maxlen: 24
61.14.117.0/24 maxlen: 24
61.14.118.0/24 maxlen: 24
61.14.119.0/24 maxlen: 24
61.14.121.0/24 maxlen: 24
61.14.123.0/24 maxlen: 24
61.14.127.0/24 maxlen: 24
103.28.196.0/23 maxlen: 23
103.28.198.0/23 maxlen: 23
202.148.224.0/21 maxlen: 21
202.148.224.0/24 maxlen: 24
202.148.225.0/24 maxlen: 24
202.148.226.0/24 maxlen: 24
202.148.227.0/24 maxlen: 24
202.148.228.0/24 maxlen: 24
202.148.229.0/24 maxlen: 24
202.148.231.0/24 maxlen: 24
202.148.232.0/24 maxlen: 24
202.148.233.0/24 maxlen: 24
202.148.234.0/23 maxlen: 23
202.148.234.0/24 maxlen: 24
202.148.235.0/24 maxlen: 24
202.148.236.0/22 maxlen: 22
202.148.236.0/23 maxlen: 24
202.148.238.0/24 maxlen: 24
202.148.239.0/24 maxlen: 24
203.19.157.0/24 maxlen: 24
210.18.192.0/22 maxlen: 24
210.18.196.0/24 maxlen: 24
210.18.197.0/24 maxlen: 24
210.18.198.0/24 maxlen: 24
210.18.199.0/24 maxlen: 24
210.18.200.0/24 maxlen: 24
210.18.201.0/24 maxlen: 24
210.18.202.0/23 maxlen: 23
210.18.202.0/24 maxlen: 24
210.18.203.0/24 maxlen: 24
210.18.204.0/22 maxlen: 22
210.18.207.0/24 maxlen: 24
210.18.208.0/20 maxlen: 21
210.18.208.0/23 maxlen: 24
210.18.210.0/23 maxlen: 24
210.18.212.0/23 maxlen: 24
210.18.214.0/23 maxlen: 24
210.18.216.0/21 maxlen: 24
210.18.224.0/20 maxlen: 20
210.18.224.0/21 maxlen: 21
210.18.232.0/24 maxlen: 24
210.18.233.0/24 maxlen: 24
210.18.234.0/23 maxlen: 23
210.18.236.0/22 maxlen: 22
210.18.236.0/24 maxlen: 24
210.18.237.0/24 maxlen: 24
210.18.240.0/24 maxlen: 24
210.18.241.0/24 maxlen: 24
210.18.242.0/24 maxlen: 24
210.18.243.0/24 maxlen: 24
210.18.244.0/22 maxlen: 22
210.18.248.0/23 maxlen: 23
210.18.248.0/24 maxlen: 24
210.18.250.0/23 maxlen: 23
210.18.251.0/24 maxlen: 24
210.18.252.0/24 maxlen: 24
210.18.253.0/24 maxlen: 24
210.18.254.0/24 maxlen: 24
210.18.255.0/24 maxlen: 24
2403:c800::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 04 Apr 2024 06:10:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1929 (0x789)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913C627/serialNumber=6FFA5DB159D40A3A172DBC74F5C32B55517979AF
Validity
Not Before: Apr 2 22:31:50 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=660c8756-931b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fc:90:ba:43:e3:fb:17:77:9b:9b:14:1a:1d:
07:ee:a1:42:9a:a3:6b:f3:ad:5d:76:86:8f:1b:80:
1c:b9:40:05:cf:7e:8a:b8:eb:58:17:ff:47:96:96:
7b:a7:e9:62:03:df:3d:5d:bb:32:1b:2f:d0:3c:08:
f1:e4:86:05:d1:89:6e:f1:86:9f:a4:0e:e2:27:d2:
e2:a0:e4:d6:d2:62:d1:7a:fb:a4:07:61:29:d7:62:
27:c0:7e:97:b1:8f:80:cd:da:5a:b6:6b:2c:83:0d:
02:0c:bb:13:8a:65:d8:02:dd:3c:cd:7c:ce:6c:0d:
45:00:c1:70:70:08:92:82:88:31:65:2b:18:c2:54:
cf:c7:80:0c:81:8d:8e:5b:4a:56:22:76:9c:36:a2:
37:b2:6a:7e:23:54:e0:64:4e:f5:a7:dc:c0:74:d9:
b2:09:4f:da:bb:af:9c:0f:ea:2f:96:b7:35:66:eb:
73:92:a4:68:a2:13:72:a7:9e:17:45:06:3d:78:df:
ac:c8:f7:52:50:07:75:6e:c0:4d:b1:e7:6a:6d:2e:
1f:04:97:cc:f3:fe:1c:ac:c7:92:32:87:f1:14:3c:
94:11:6a:35:59:c2:96:2f:16:09:0c:5d:1c:82:6e:
1d:03:27:59:14:30:99:3e:32:2d:9d:8d:ec:20:cc:
62:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:FB:72:89:3C:F7:80:06:00:C0:B6:CD:04:CB:8A:7A:D8:95:DF:D3
X509v3 Authority Key Identifier:
keyid:6F:FA:5D:B1:59:D4:0A:3A:17:2D:BC:74:F5:C3:2B:55:51:79:79:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/b_pdsVnUCjoXLbx09cMrVVF5ea8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_pdsVnUCjoXLbx09cMrVVF5ea8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C627/C265C1A4D07D11EA8600986DC4F9AE02/13D6D398794A11EEA35FEE49C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.14.96.0/19
103.28.196.0/22
202.148.224.0/20
203.19.157.0/24
210.18.192.0/18
IPv6:
2403:c800::/32
Signature Algorithm: sha256WithRSAEncryption
99:e6:6f:8f:ed:a6:95:de:b5:30:59:09:77:2b:ed:e9:ad:3f:
16:24:e1:cb:a2:ff:7b:41:2d:c1:b4:45:ac:37:61:86:1e:ec:
de:62:1a:44:ea:bb:20:f2:12:7a:2f:2e:93:30:2e:de:4f:27:
61:4f:9f:ef:9c:36:6d:54:c3:71:4a:1e:7f:4d:ab:55:ab:d3:
23:a5:44:83:12:a0:0b:c1:a4:6f:87:88:d4:25:b2:ed:c3:f0:
42:22:c7:bb:6a:16:5d:f0:45:27:0f:4a:a3:51:78:aa:61:b8:
68:c7:bd:50:bd:41:26:bc:c6:a6:1d:4e:b9:83:6f:a9:18:dc:
46:2b:d9:0e:13:8c:55:cc:ce:69:70:10:d9:9d:d2:f4:ad:73:
a8:98:45:e4:2e:50:86:56:8a:82:01:d6:d5:b0:e4:2b:6b:6b:
50:62:a9:17:03:24:35:9e:fd:8b:a1:a2:43:4f:73:71:20:0c:
91:1a:84:9c:5b:d9:39:3e:ea:33:95:7f:3f:35:d9:2c:71:ef:
74:9d:58:7d:3f:a0:ba:cc:e1:72:ac:a4:c7:87:60:43:70:5d:
12:f7:3b:36:b8:fb:b2:64:5d:d3:3d:dc:80:37:fd:45:aa:7f:
85:52:46:85:98:6f:4b:07:3a:b2:ed:15:90:df:4f:e4:41:a6:
de:48:37:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:03 2024 by rpki-client on console-fra.rpki-client.org