Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/E4665324A18811EEAA13424FC4F9AE02.roa
File: E4665324A18811EEAA13424FC4F9AE02.roa (raw, json)
Hash identifier: 08Pz+p8TaXXxFRRwBvqw+DqiYQKyZ3MT4nMY+dgSGYU=
Subject key identifier: 2F:C9:1E:37:40:01:C0:7E:25:55:85:95:71:1C:D9:68:7F:3E:71:06
Certificate issuer: /CN=A9157D7A/serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379
Certificate serial: 0645
Authority key identifier: 40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/E4665324A18811EEAA13424FC4F9AE02.roa
Signing time: Wed 15 May 2024 01:05:10 +0000
ROA not before: Wed 15 May 2024 01:05:10 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 55441
IP address blocks: 14.194.192.0/20 maxlen: 24
14.194.224.0/20 maxlen: 24
14.195.64.0/20 maxlen: 24
14.195.80.0/20 maxlen: 24
14.195.192.0/22 maxlen: 24
14.195.200.0/21 maxlen: 24
49.200.64.0/19 maxlen: 24
49.200.112.0/20 maxlen: 24
49.200.128.0/18 maxlen: 24
49.200.240.0/21 maxlen: 24
49.200.248.0/22 maxlen: 24
49.200.252.0/22 maxlen: 24
49.202.168.0/21 maxlen: 24
49.202.176.0/20 maxlen: 24
49.202.212.0/22 maxlen: 24
49.202.224.0/22 maxlen: 24
49.202.228.0/23 maxlen: 24
49.248.224.0/20 maxlen: 24
49.248.240.0/22 maxlen: 24
182.156.96.0/23 maxlen: 24
2407:8c00:90::/44 maxlen: 44
2407:8c00:a0::/44 maxlen: 44
2407:8c00:b0::/44 maxlen: 44
2407:8c00:1b0::/44 maxlen: 44
Validation: Failed, certificate revoked on Wed 03 Jul 2024 13:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1605 (0x645)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9157D7A/serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379
Validity
Not Before: May 15 01:05:10 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=66440a45-1396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:cd:0c:78:b1:54:5d:74:46:65:2d:ce:10:77:
1f:c2:c9:ff:a2:9b:69:e2:66:4a:bc:17:f5:2f:95:
5c:dc:38:e4:23:0e:3e:9d:c0:50:b5:f8:b2:e3:69:
fe:43:2c:5e:82:68:f5:82:02:f0:36:6c:10:64:66:
89:66:5d:f2:b0:57:47:98:ba:4f:dd:2d:0f:f8:f2:
eb:cd:8d:33:06:2c:a2:e9:1e:8e:28:9c:db:ed:e7:
2b:a4:bf:90:0b:57:a3:cd:e4:2b:9a:e8:10:87:96:
2c:98:53:0e:94:1b:25:4b:5f:41:e5:7f:99:45:e7:
91:bc:93:b0:2b:60:74:fe:98:a6:98:25:9f:ff:83:
98:ed:79:94:27:be:3b:ba:05:b7:4e:1f:ec:d2:ea:
99:9f:59:eb:1d:dd:a4:d4:57:90:a7:bc:2f:16:ea:
3e:3d:f9:f5:4c:07:ac:79:b1:96:4f:a8:36:83:63:
15:a2:e9:cd:ff:1a:18:ec:4e:d6:bb:69:3f:3e:48:
b3:63:1c:ff:32:95:a5:e7:5e:3a:2c:65:dd:88:e0:
4e:30:25:2e:45:0d:e1:d1:2c:2d:e3:6a:db:dc:78:
28:fb:18:9d:4c:15:e1:3d:5e:e9:40:47:a1:2e:48:
27:f3:c4:92:c6:44:3a:55:19:27:a6:13:a6:16:54:
50:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:C9:1E:37:40:01:C0:7E:25:55:85:95:71:1C:D9:68:7F:3E:71:06
X509v3 Authority Key Identifier:
keyid:40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/E4665324A18811EEAA13424FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.194.192.0/20
14.194.224.0/20
14.195.64.0/19
14.195.192.0/22
14.195.200.0/21
49.200.64.0/19
49.200.112.0-49.200.191.255
49.200.240.0/20
49.202.168.0-49.202.191.255
49.202.212.0/22
49.202.224.0-49.202.229.255
49.248.224.0-49.248.243.255
182.156.96.0/23
IPv6:
2407:8c00:90::-2407:8c00:bf:ffff:ffff:ffff:ffff:ffff
2407:8c00:1b0::/44
Signature Algorithm: sha256WithRSAEncryption
24:89:22:26:08:84:0d:0b:93:22:3d:9e:5e:0e:8c:4f:88:ec:
5f:2b:45:44:5e:70:e1:64:e5:94:f3:29:dd:25:33:7a:3d:b6:
8f:79:ad:aa:fa:21:92:0f:ba:87:82:03:33:6d:6d:b2:58:6b:
4d:f2:c3:77:f3:d3:3f:ff:ae:fa:14:9b:1a:11:3c:69:e8:dc:
b4:bb:bb:31:7b:0d:fa:4f:0d:50:2f:3a:c4:5b:8e:79:f3:ec:
b4:7f:16:12:cb:9d:fb:20:a0:cc:fc:44:b9:25:eb:df:ad:a2:
12:8f:83:45:34:bc:a5:ca:0d:fe:2d:d8:0a:37:33:2d:c1:0e:
b8:42:5d:8b:b5:bf:20:d9:ce:9f:e4:d4:b8:88:a5:d9:2e:92:
4a:b5:a3:cd:cf:f3:e0:c7:79:b4:79:8e:4f:5a:89:74:a4:a1:
af:dc:6c:9c:15:f9:1a:07:49:64:5b:e0:d9:2e:f4:42:29:bc:
58:91:96:a1:70:1c:15:e6:d2:fc:aa:17:2e:7f:ce:73:65:a9:
60:f7:c5:fe:1c:d4:cd:61:df:a2:f1:7f:ac:52:24:54:d0:22:
be:6d:2a:fe:07:16:bb:21:bb:1c:49:1d:bd:96:5f:aa:1a:67:
c9:34:e4:7d:7f:9c:15:04:7b:21:d0:da:84:5c:18:23:74:77:
ff:19:72:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 14:35:16 2024 by rpki-client on console-ams.rpki-client.org