Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/185F5D14198F11EFB994C277C4F9AE02.roa
File: 185F5D14198F11EFB994C277C4F9AE02.roa (raw, json)
Hash identifier: SoSUWV2/vMpSur/ck1vptcZcf6ILlW2T0UeMKMzthO8=
Subject key identifier: F8:C4:76:1E:FA:7E:4F:96:F7:57:9B:49:99:17:EB:29:AA:69:3B:26
Certificate issuer: /CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1
Certificate serial: 0932
Authority key identifier: 74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/185F5D14198F11EFB994C277C4F9AE02.roa
Signing time: Fri 24 May 2024 05:33:05 +0000
ROA not before: Fri 24 May 2024 05:33:05 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 24093
IP address blocks: 125.63.0.0/19 maxlen: 19
125.63.12.0/24 maxlen: 24
125.63.15.0/24 maxlen: 24
125.63.19.0/24 maxlen: 24
125.253.0.0/18 maxlen: 18
125.253.8.0/24 maxlen: 24
125.253.11.0/24 maxlen: 24
125.253.16.0/24 maxlen: 24
125.253.25.0/24 maxlen: 24
125.253.28.0/23 maxlen: 23
125.253.28.0/24 maxlen: 24
125.253.29.0/24 maxlen: 24
125.253.32.0/24 maxlen: 24
125.253.33.0/24 maxlen: 24
125.253.34.0/24 maxlen: 24
125.253.35.0/24 maxlen: 24
125.253.41.0/24 maxlen: 24
125.253.43.0/24 maxlen: 24
125.253.44.0/24 maxlen: 24
125.253.45.0/24 maxlen: 24
125.253.46.0/24 maxlen: 24
125.253.47.0/24 maxlen: 24
125.253.48.0/24 maxlen: 24
125.253.50.0/23 maxlen: 23
125.253.50.0/24 maxlen: 24
125.253.51.0/24 maxlen: 24
125.253.60.0/24 maxlen: 24
125.253.61.0/24 maxlen: 24
125.253.96.0/20 maxlen: 20
125.253.97.0/24 maxlen: 24
125.253.98.0/24 maxlen: 24
125.253.99.0/24 maxlen: 24
125.253.101.0/24 maxlen: 24
125.253.102.0/24 maxlen: 24
125.253.103.0/24 maxlen: 24
125.253.106.0/24 maxlen: 24
125.253.107.0/24 maxlen: 24
125.253.109.0/24 maxlen: 24
125.253.110.0/24 maxlen: 24
202.171.160.0/19 maxlen: 19
202.171.160.0/24 maxlen: 24
202.171.164.0/24 maxlen: 24
202.171.165.0/24 maxlen: 24
202.171.169.0/24 maxlen: 24
202.171.170.0/24 maxlen: 24
202.171.175.0/24 maxlen: 24
202.171.177.0/24 maxlen: 24
202.171.178.0/24 maxlen: 24
202.171.179.0/24 maxlen: 24
202.171.184.0/23 maxlen: 23
202.171.186.0/23 maxlen: 23
202.171.189.0/24 maxlen: 24
202.171.190.0/24 maxlen: 24
202.171.191.0/24 maxlen: 24
203.25.102.0/24 maxlen: 24
223.27.66.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 30 May 2024 04:57:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2354 (0x932)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1
Validity
Not Before: May 24 05:33:05 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=66502691-6079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4e:5e:33:64:6d:63:dd:cf:0b:6b:2e:a9:b2:
af:50:a5:7f:cf:68:98:f7:cf:8f:06:c6:ea:d3:d2:
f8:10:ee:11:d5:e2:59:6b:ac:c4:84:7d:af:0e:ae:
d7:dd:9c:3c:df:f6:30:a5:d1:79:47:51:20:52:44:
a7:aa:38:b2:67:4a:ea:29:40:bc:b5:d2:66:9c:6f:
0a:69:5e:0c:8c:5f:b9:f7:98:4a:8f:4b:74:6e:cd:
6d:86:22:b4:8c:c1:92:bc:b0:7f:04:d3:24:af:b4:
6e:11:dd:a0:23:77:56:bc:f5:6c:97:83:4b:30:4a:
90:64:84:eb:af:07:75:d4:f4:0a:75:1e:50:85:5e:
bf:d4:39:95:4c:8f:ef:db:37:0d:a9:7a:19:fd:ec:
c6:47:21:b6:22:1a:c9:65:32:d9:ed:1b:06:b6:db:
81:6c:45:4b:7e:18:c0:4d:59:05:5e:20:04:3d:a6:
59:41:34:53:2f:bd:25:dd:98:51:49:5c:52:29:7f:
52:b9:da:1e:0b:d0:b8:1f:95:b0:3e:12:96:39:ec:
2f:5b:50:31:6e:23:d1:6c:76:d1:61:dd:1c:e8:8c:
7e:b3:2d:c3:d8:cc:94:dc:e3:72:2f:79:f9:92:d7:
e2:90:6b:7a:89:65:68:2c:18:a5:3a:14:13:59:3e:
88:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:C4:76:1E:FA:7E:4F:96:F7:57:9B:49:99:17:EB:29:AA:69:3B:26
X509v3 Authority Key Identifier:
keyid:74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/185F5D14198F11EFB994C277C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
125.63.0.0/19
125.253.0.0/18
125.253.96.0/20
202.171.160.0/19
203.25.102.0/24
223.27.66.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:7b:6e:ab:57:78:a4:ca:fa:02:7c:7c:49:fa:c5:b4:20:fe:
0f:74:c6:29:3a:e7:7c:84:e0:3d:f2:cc:41:71:15:5b:94:5c:
a5:30:13:85:bf:25:d7:18:c7:2c:ee:52:63:3a:60:3e:73:3c:
43:c7:33:de:8c:6a:91:0b:ec:19:e3:4f:d3:cb:82:fc:69:8d:
48:74:08:d2:5e:7d:37:45:b1:07:45:d3:29:56:85:ef:63:40:
eb:7a:5c:0d:4b:96:8e:0b:6d:f7:44:f5:05:d5:84:48:9d:a4:
1e:5a:e2:bd:7b:06:6a:e5:72:52:20:18:dc:6d:08:9a:ad:07:
fd:e8:4b:c2:25:11:b8:9c:6d:db:10:d1:8e:10:98:cc:ca:50:
7a:06:17:a8:64:12:e8:17:c1:df:fa:b6:2f:15:2d:6b:32:5b:
4a:86:04:12:31:73:36:3d:14:83:f3:ef:e5:57:0c:a3:24:1f:
0e:c8:43:a9:01:f6:53:89:1d:aa:0e:87:66:07:74:2a:51:22:
4e:97:21:13:02:bd:03:51:99:f1:58:8b:f3:c1:36:29:85:47:
f1:0b:31:31:c9:bd:fc:76:70:3e:43:51:5e:41:c4:a7:74:50:
07:48:dd:dc:33:f7:93:47:f3:13:7c:86:87:9f:d6:41:f4:05:
df:1f:69:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:08 2024 by rpki-client on console-fra.rpki-client.org