Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D01/E92519FA990B11EBA355CB53C4F9AE02/A261E6E4821311EEA4AA873EC4F9AE02.roa
File: A261E6E4821311EEA4AA873EC4F9AE02.roa (raw, json)
Hash identifier: V17fcVRaDjHFbJ1Za0CAPe7TKKlikVfASVhSmXlfydU=
Subject key identifier: 4F:C6:18:FC:B1:D2:D4:FE:F0:4D:C8:3C:A8:D9:98:3F:D9:5F:A1:EA
Certificate issuer: /CN=A9148D01/serialNumber=7E36AB1C044321B74CF678263E0524FD34179BBD
Certificate serial: 0586
Authority key identifier: 7E:36:AB:1C:04:43:21:B7:4C:F6:78:26:3E:05:24:FD:34:17:9B:BD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjarHARDIbdM9ngmPgUk_TQXm70.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9148D01/E92519FA990B11EBA355CB53C4F9AE02/A261E6E4821311EEA4AA873EC4F9AE02.roa
Signing time: Mon 13 Nov 2023 10:58:54 +0000
ROA not before: Mon 13 Nov 2023 10:58:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 134540
IP address blocks: 49.248.98.0/23 maxlen: 24
49.248.100.0/22 maxlen: 24
49.248.127.0/24 maxlen: 24
49.248.128.0/24 maxlen: 24
49.248.130.0/24 maxlen: 24
49.248.131.0/24 maxlen: 24
49.248.132.0/24 maxlen: 24
49.248.133.0/24 maxlen: 24
49.248.134.0/24 maxlen: 24
49.248.136.0/24 maxlen: 24
49.248.137.0/24 maxlen: 24
49.248.150.0/24 maxlen: 24
114.143.2.0/24 maxlen: 24
114.143.4.0/23 maxlen: 23
114.143.8.0/24 maxlen: 24
114.143.10.0/24 maxlen: 24
114.143.11.0/24 maxlen: 24
114.143.12.0/24 maxlen: 24
114.143.15.0/24 maxlen: 24
114.143.18.0/24 maxlen: 24
114.143.19.0/24 maxlen: 24
114.143.21.0/24 maxlen: 24
114.143.22.0/24 maxlen: 24
114.143.24.0/24 maxlen: 24
114.143.28.0/24 maxlen: 24
114.143.29.0/24 maxlen: 24
114.143.32.0/21 maxlen: 24
114.143.80.0/20 maxlen: 20
114.143.96.0/24 maxlen: 24
114.143.97.0/24 maxlen: 24
114.143.196.0/24 maxlen: 24
123.252.128.0/24 maxlen: 24
123.252.129.0/24 maxlen: 24
123.252.130.0/24 maxlen: 24
123.252.132.0/24 maxlen: 24
123.252.139.0/24 maxlen: 24
123.252.141.0/24 maxlen: 24
123.252.142.0/24 maxlen: 24
123.252.143.0/24 maxlen: 24
123.252.144.0/24 maxlen: 24
123.252.145.0/24 maxlen: 24
123.252.150.0/24 maxlen: 24
123.252.152.0/24 maxlen: 24
123.252.153.0/24 maxlen: 24
123.252.154.0/24 maxlen: 24
123.252.155.0/24 maxlen: 24
123.252.156.0/24 maxlen: 24
123.252.157.0/24 maxlen: 24
123.252.158.0/24 maxlen: 24
123.252.159.0/24 maxlen: 24
123.252.160.0/24 maxlen: 24
123.252.162.0/24 maxlen: 24
123.252.164.0/24 maxlen: 24
123.252.166.0/24 maxlen: 24
123.252.167.0/24 maxlen: 24
123.252.168.0/24 maxlen: 24
123.252.169.0/24 maxlen: 24
123.252.172.0/24 maxlen: 24
123.252.177.0/24 maxlen: 24
123.252.178.0/24 maxlen: 24
123.252.179.0/24 maxlen: 24
123.252.180.0/24 maxlen: 24
123.252.182.0/24 maxlen: 24
123.252.183.0/24 maxlen: 24
123.252.184.0/24 maxlen: 24
123.252.185.0/24 maxlen: 24
123.252.186.0/24 maxlen: 24
123.252.187.0/24 maxlen: 24
123.252.192.0/24 maxlen: 24
123.252.196.0/24 maxlen: 24
123.252.198.0/24 maxlen: 24
123.252.199.0/24 maxlen: 24
123.252.202.0/24 maxlen: 24
123.252.207.0/24 maxlen: 24
123.252.212.0/22 maxlen: 24
123.252.216.0/24 maxlen: 24
123.252.221.0/24 maxlen: 24
123.252.223.0/24 maxlen: 24
123.252.224.0/21 maxlen: 24
123.252.234.0/24 maxlen: 24
123.252.237.0/24 maxlen: 24
123.252.239.0/24 maxlen: 24
123.252.240.0/22 maxlen: 22
123.252.245.0/24 maxlen: 24
123.252.246.0/24 maxlen: 24
123.252.248.0/24 maxlen: 24
123.252.254.0/24 maxlen: 24
202.149.194.0/24 maxlen: 24
202.149.195.0/24 maxlen: 24
202.149.197.0/24 maxlen: 24
202.149.200.0/24 maxlen: 24
202.149.211.0/24 maxlen: 24
202.149.212.0/24 maxlen: 24
202.149.213.0/24 maxlen: 24
202.149.215.0/24 maxlen: 24
202.149.216.0/24 maxlen: 24
202.149.219.0/24 maxlen: 24
202.189.225.0/24 maxlen: 24
202.189.229.0/24 maxlen: 24
202.189.230.0/24 maxlen: 24
202.189.231.0/24 maxlen: 24
202.189.232.0/24 maxlen: 24
202.189.233.0/24 maxlen: 24
202.189.234.0/24 maxlen: 24
202.189.236.0/24 maxlen: 24
202.189.237.0/24 maxlen: 24
202.189.238.0/24 maxlen: 24
202.189.240.0/24 maxlen: 24
202.189.241.0/24 maxlen: 24
202.189.242.0/24 maxlen: 24
202.189.244.0/24 maxlen: 24
202.189.245.0/24 maxlen: 24
202.189.247.0/24 maxlen: 24
202.189.250.0/24 maxlen: 24
202.189.251.0/24 maxlen: 24
202.189.252.0/24 maxlen: 24
202.189.253.0/24 maxlen: 24
202.189.254.0/24 maxlen: 24
2402:d400:a1::/48 maxlen: 51
2402:d400:a2::/48 maxlen: 51
Validation: Failed, certificate revoked on Mon 13 Nov 2023 11:09:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1414 (0x586)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9148D01/serialNumber=7E36AB1C044321B74CF678263E0524FD34179BBD
Validity
Not Before: Nov 13 10:58:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6552016d-2160
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5f:74:32:69:d5:7a:a1:44:7a:f1:1a:1b:d1:
81:23:de:8e:ed:e9:ad:ae:00:75:8b:a8:3c:bb:bf:
10:b1:95:fe:4a:c4:76:40:99:4b:c5:57:3c:f8:48:
dc:8e:fc:71:27:59:0d:98:f3:fc:b4:3a:f1:e7:7b:
c7:19:cf:a0:f7:2a:2b:70:a9:77:d3:2a:83:67:cb:
ae:cc:34:80:f8:1e:7d:aa:d1:2e:f1:f8:cc:ae:7e:
17:08:5b:9d:93:e7:d4:b4:df:bd:89:93:ff:2d:24:
7a:5f:2e:f4:d1:c1:d9:7e:d2:78:4d:cb:c4:8c:5f:
7a:7a:b2:c5:8c:13:be:cb:36:bf:15:f4:61:53:62:
c9:38:f0:6f:61:ff:b5:45:50:07:12:0c:f1:25:14:
89:1f:6e:a5:cc:a1:5d:c1:aa:d4:de:36:c7:d2:85:
cd:6d:ac:df:34:b2:f4:3c:47:4a:9b:4d:db:c6:4e:
29:0d:04:1d:4b:e8:3f:e3:c7:f4:c6:5d:d1:db:83:
41:cf:6e:48:94:e9:c1:bd:e1:4e:d7:72:f4:2e:f1:
e6:7b:d4:9c:9d:d8:99:1a:0f:d9:4e:ed:12:b1:0a:
3d:76:cf:7d:c0:1f:37:55:55:59:24:3e:d7:28:6b:
2b:43:6b:4d:d3:5d:d0:3b:a1:95:5b:70:87:64:7a:
f4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:C6:18:FC:B1:D2:D4:FE:F0:4D:C8:3C:A8:D9:98:3F:D9:5F:A1:EA
X509v3 Authority Key Identifier:
keyid:7E:36:AB:1C:04:43:21:B7:4C:F6:78:26:3E:05:24:FD:34:17:9B:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9148D01/E92519FA990B11EBA355CB53C4F9AE02/fjarHARDIbdM9ngmPgUk_TQXm70.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjarHARDIbdM9ngmPgUk_TQXm70.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D01/E92519FA990B11EBA355CB53C4F9AE02/A261E6E4821311EEA4AA873EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.248.98.0-49.248.103.255
49.248.127.0-49.248.128.255
49.248.130.0-49.248.134.255
49.248.136.0/23
49.248.150.0/24
114.143.2.0/24
114.143.4.0/23
114.143.8.0/24
114.143.10.0-114.143.12.255
114.143.15.0/24
114.143.18.0/23
114.143.21.0-114.143.22.255
114.143.24.0/24
114.143.28.0/23
114.143.32.0/21
114.143.80.0-114.143.97.255
114.143.196.0/24
123.252.128.0-123.252.130.255
123.252.132.0/24
123.252.139.0/24
123.252.141.0-123.252.145.255
123.252.150.0/24
123.252.152.0-123.252.160.255
123.252.162.0/24
123.252.164.0/24
123.252.166.0-123.252.169.255
123.252.172.0/24
123.252.177.0-123.252.180.255
123.252.182.0-123.252.187.255
123.252.192.0/24
123.252.196.0/24
123.252.198.0/23
123.252.202.0/24
123.252.207.0/24
123.252.212.0-123.252.216.255
123.252.221.0/24
123.252.223.0-123.252.231.255
123.252.234.0/24
123.252.237.0/24
123.252.239.0-123.252.243.255
123.252.245.0-123.252.246.255
123.252.248.0/24
123.252.254.0/24
202.149.194.0/23
202.149.197.0/24
202.149.200.0/24
202.149.211.0-202.149.213.255
202.149.215.0-202.149.216.255
202.149.219.0/24
202.189.225.0/24
202.189.229.0-202.189.234.255
202.189.236.0-202.189.238.255
202.189.240.0-202.189.242.255
202.189.244.0/23
202.189.247.0/24
202.189.250.0-202.189.254.255
IPv6:
2402:d400:a1::-2402:d400:a2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
54:30:e3:8a:7d:46:1a:01:a4:1f:92:1a:1d:33:84:6b:f7:6e:
69:7c:7c:aa:64:6e:a7:f0:47:5a:5b:13:d0:af:2a:ae:60:0a:
43:e5:68:b1:2c:6b:c4:2f:fb:03:cd:63:fa:c0:91:4b:80:89:
4b:4b:04:5e:39:64:84:55:93:77:c3:b5:82:bc:29:aa:0d:e3:
10:d1:cd:5b:76:44:6c:59:c8:25:44:af:33:4d:dc:40:fa:5e:
cd:be:92:23:c1:d6:ef:b8:31:d1:7e:0e:be:09:6e:7c:40:92:
68:d3:0d:32:83:f6:66:6a:72:94:78:7b:61:f0:d5:86:88:37:
0d:63:fc:65:cd:1f:f8:7e:14:05:bb:4d:22:52:93:28:f9:f4:
8f:d6:0a:a3:ec:ca:50:10:ce:93:48:e1:b5:6f:00:1e:cc:43:
4c:af:e6:20:ed:b7:67:06:7c:fe:b7:22:e8:22:b8:61:cd:a0:
c3:26:6b:2a:1a:45:92:e1:97:d7:7d:d2:1a:c4:29:d2:7f:b4:
b9:d4:b1:7a:91:f3:43:57:81:6a:ae:51:fd:16:5e:c9:35:2e:
47:37:75:b0:02:03:3b:70:ed:32:70:e9:3a:1a:d1:42:a2:2c:
6b:44:cd:24:9a:b0:4e:97:7e:4e:ea:23:99:e1:35:54:2e:89:
cd:5f:ae:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:58 2024 by rpki-client on console-ams.rpki-client.org