Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/E9F9C8421ED511EEB264DB5AC4F9AE02.roa
File: E9F9C8421ED511EEB264DB5AC4F9AE02.roa (raw, json)
Hash identifier: t4ZYMpW5wvxGThQLBdSSDhzMQNok8xWu2tfK6kV0fPM=
Subject key identifier: AA:80:0A:1E:1E:24:CD:6B:E3:95:C6:32:A5:CD:02:D9:0F:3E:B6:6D
Certificate issuer: /CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1
Certificate serial: 08B3
Authority key identifier: 74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/E9F9C8421ED511EEB264DB5AC4F9AE02.roa
Signing time: Thu 02 Nov 2023 22:10:16 +0000
ROA not before: Thu 02 Nov 2023 22:10:15 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 24093
IP address blocks: 125.63.0.0/19 maxlen: 19
125.63.9.0/24 maxlen: 24
125.63.12.0/24 maxlen: 24
125.63.15.0/24 maxlen: 24
125.63.19.0/24 maxlen: 24
125.253.0.0/18 maxlen: 18
125.253.8.0/24 maxlen: 24
125.253.11.0/24 maxlen: 24
125.253.16.0/24 maxlen: 24
125.253.25.0/24 maxlen: 24
125.253.28.0/23 maxlen: 23
125.253.28.0/24 maxlen: 24
125.253.29.0/24 maxlen: 24
125.253.32.0/24 maxlen: 24
125.253.33.0/24 maxlen: 24
125.253.34.0/24 maxlen: 24
125.253.35.0/24 maxlen: 24
125.253.41.0/24 maxlen: 24
125.253.43.0/24 maxlen: 24
125.253.44.0/24 maxlen: 24
125.253.45.0/24 maxlen: 24
125.253.46.0/24 maxlen: 24
125.253.47.0/24 maxlen: 24
125.253.48.0/24 maxlen: 24
125.253.50.0/23 maxlen: 23
125.253.50.0/24 maxlen: 24
125.253.51.0/24 maxlen: 24
125.253.60.0/24 maxlen: 24
125.253.61.0/24 maxlen: 24
125.253.96.0/20 maxlen: 20
125.253.97.0/24 maxlen: 24
125.253.98.0/24 maxlen: 24
125.253.99.0/24 maxlen: 24
125.253.101.0/24 maxlen: 24
125.253.102.0/24 maxlen: 24
125.253.103.0/24 maxlen: 24
125.253.106.0/24 maxlen: 24
125.253.107.0/24 maxlen: 24
125.253.109.0/24 maxlen: 24
125.253.110.0/24 maxlen: 24
202.171.160.0/19 maxlen: 19
202.171.160.0/24 maxlen: 24
202.171.164.0/24 maxlen: 24
202.171.165.0/24 maxlen: 24
202.171.169.0/24 maxlen: 24
202.171.170.0/24 maxlen: 24
202.171.175.0/24 maxlen: 24
202.171.177.0/24 maxlen: 24
202.171.178.0/24 maxlen: 24
202.171.179.0/24 maxlen: 24
202.171.184.0/23 maxlen: 23
202.171.186.0/23 maxlen: 23
202.171.189.0/24 maxlen: 24
202.171.190.0/24 maxlen: 24
202.171.191.0/24 maxlen: 24
203.25.102.0/24 maxlen: 24
223.27.66.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 24 May 2024 05:33:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2227 (0x8b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915E475/serialNumber=745FF4F063AB5D171E05251B31E294A4BC7973B1
Validity
Not Before: Nov 2 22:10:15 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=65441e47-bf30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8a:ac:cf:1d:f6:2f:71:24:21:21:f8:27:a3:
a3:e5:8d:96:62:fc:15:b3:6d:3a:48:e1:1e:92:68:
30:62:d3:da:bf:71:f4:b9:9b:02:25:08:fa:19:0c:
a2:68:0d:1e:af:20:ea:49:fb:22:14:9f:1c:e0:ec:
57:52:af:0c:f8:8c:99:f9:53:2f:63:53:aa:99:31:
4c:74:d6:c3:ff:86:9e:82:e4:02:eb:2a:ab:13:96:
53:29:e6:96:26:3c:a4:fe:1e:79:17:a9:28:94:fb:
ad:f8:d4:fb:79:07:fc:14:30:4e:02:85:5f:69:6b:
1b:fb:01:11:dc:b0:0f:ba:f8:8c:15:9b:bc:60:c0:
0e:52:87:68:43:d0:94:41:2a:bb:b8:03:f4:63:16:
68:f3:03:d5:d0:21:d5:f5:e5:5f:c5:ad:7e:f9:09:
a5:47:19:bb:3f:cd:99:57:3c:e5:80:99:75:8e:b3:
c5:1a:ef:d6:79:e0:d4:df:b2:44:92:c2:67:cd:3e:
b8:b1:4c:a5:55:0d:57:fc:bb:14:29:ea:f7:36:ab:
49:b8:05:53:c6:03:77:76:04:84:78:36:b4:57:b7:
96:aa:67:be:82:43:47:0d:47:03:d4:ad:81:47:04:
60:54:ee:b9:ca:fd:58:6c:ae:0a:31:c6:81:86:65:
a2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:80:0A:1E:1E:24:CD:6B:E3:95:C6:32:A5:CD:02:D9:0F:3E:B6:6D
X509v3 Authority Key Identifier:
keyid:74:5F:F4:F0:63:AB:5D:17:1E:05:25:1B:31:E2:94:A4:BC:79:73:B1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/dF_08GOrXRceBSUbMeKUpLx5c7E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dF_08GOrXRceBSUbMeKUpLx5c7E.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E475/DA83AA7ACA1111EAA479C734C4F9AE02/E9F9C8421ED511EEB264DB5AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
125.63.0.0/19
125.253.0.0/18
125.253.96.0/20
202.171.160.0/19
203.25.102.0/24
223.27.66.0/23
Signature Algorithm: sha256WithRSAEncryption
c6:f2:ab:a8:91:0b:eb:b8:d8:ea:f6:d6:aa:bc:21:a4:90:2a:
06:e6:31:11:6e:0d:f4:c3:d7:97:a5:43:21:c0:91:3e:d7:80:
e6:46:aa:5e:d6:74:47:87:53:bf:8c:49:01:77:60:19:af:5d:
1a:25:30:b6:e5:c6:a8:7d:9e:1f:47:77:68:63:5a:3f:65:1f:
fc:47:08:17:90:05:06:1f:4a:0d:1a:15:d5:9f:ba:e1:a2:e4:
2f:72:23:18:e0:5b:e6:4d:08:95:98:02:1c:b1:df:5e:e6:f4:
31:61:1f:e7:1b:85:cf:a3:d1:e1:bf:3b:ef:aa:39:21:b7:55:
0c:e3:97:2a:b0:fa:0b:69:f6:5d:fe:12:2b:8f:b3:f6:76:f2:
b8:a3:0d:78:bd:02:9f:fd:02:21:c2:c5:14:e3:79:33:41:01:
e3:34:1d:07:10:a6:aa:3f:22:7c:f9:55:0d:9d:30:7e:55:d5:
fc:48:34:03:ac:41:62:2b:80:bb:9b:1d:0e:48:e3:bd:d9:e8:
e7:7c:0f:90:b7:61:81:ff:55:57:6e:33:ee:bf:2a:e4:95:46:
05:2e:55:3b:c3:00:e9:23:e8:40:9f:47:60:4b:59:17:6b:3a:
27:18:3d:98:3c:95:16:b6:22:94:72:b8:73:f4:d1:a9:4b:96:
91:20:9d:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:08 2024 by rpki-client on console-fra.rpki-client.org