Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/32510EE002D211EE88E55B80C4F9AE02.roa
File: 32510EE002D211EE88E55B80C4F9AE02.roa (raw, json)
Hash identifier: XSAmdXGFmQj5GY7EIzcCoPDJ6S4TVSRTjMlp9OpcFXw=
Subject key identifier: 43:07:50:44:04:5E:C7:96:BA:14:8F:F1:72:F9:65:01:01:DB:12:F3
Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Certificate serial: 3444
Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/32510EE002D211EE88E55B80C4F9AE02.roa
Signing time: Sun 04 Jun 2023 12:20:31 +0000
ROA not before: Sun 04 Jun 2023 12:20:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38616
IP address blocks: 111.88.79.0/24 maxlen: 24
111.88.138.0/24 maxlen: 24
111.88.139.0/24 maxlen: 24
111.88.144.0/20 maxlen: 23
111.88.144.0/23 maxlen: 24
111.88.146.0/24 maxlen: 24
111.88.150.0/23 maxlen: 24
111.88.152.0/23 maxlen: 24
111.88.156.0/22 maxlen: 24
111.88.164.0/22 maxlen: 24
111.88.168.0/22 maxlen: 24
111.88.184.0/22 maxlen: 23
111.88.232.0/21 maxlen: 24
115.186.0.0/24 maxlen: 24
115.186.19.0/24 maxlen: 24
115.186.48.0/21 maxlen: 24
115.186.64.0/19 maxlen: 21
115.186.64.0/21 maxlen: 24
115.186.76.0/22 maxlen: 24
115.186.80.0/20 maxlen: 24
115.186.97.0/24 maxlen: 24
115.186.99.0/24 maxlen: 24
115.186.100.0/22 maxlen: 22
115.186.100.0/24 maxlen: 24
115.186.104.0/24 maxlen: 24
115.186.105.0/24 maxlen: 24
115.186.114.0/24 maxlen: 24
115.186.116.0/22 maxlen: 22
115.186.116.0/24 maxlen: 24
115.186.122.0/23 maxlen: 23
115.186.126.0/23 maxlen: 23
115.186.127.0/24 maxlen: 24
117.102.13.0/24 maxlen: 24
117.102.29.0/24 maxlen: 24
117.102.30.0/24 maxlen: 24
117.102.31.0/24 maxlen: 24
203.81.216.0/24 maxlen: 24
203.81.219.0/24 maxlen: 24
203.81.220.0/22 maxlen: 22
203.81.220.0/24 maxlen: 24
203.81.221.0/24 maxlen: 24
203.81.222.0/24 maxlen: 24
203.81.223.0/24 maxlen: 24
203.81.224.0/22 maxlen: 22
203.81.224.0/24 maxlen: 24
203.81.225.0/24 maxlen: 24
203.81.226.0/24 maxlen: 24
203.81.227.0/24 maxlen: 24
203.81.228.0/23 maxlen: 24
203.81.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Jun 2023 07:50:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13380 (0x3444)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Validity
Not Before: Jun 4 12:20:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=647c818e-0f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:32:15:71:41:c8:88:98:19:ca:15:d7:d9:45:
08:1c:30:d1:b0:a4:00:17:74:60:35:48:7f:a8:1c:
1c:ab:21:3f:a8:51:e6:bc:21:10:b1:40:68:4b:60:
7c:89:0f:ab:cb:5f:ef:fc:12:ec:55:66:3c:94:c6:
38:33:a9:b9:a1:5b:72:f8:f8:8a:76:69:48:78:cd:
44:a3:e3:ab:94:82:dd:ac:38:f6:8b:00:81:18:90:
42:95:ea:a9:6d:ae:df:af:0d:6e:20:a6:72:d2:1c:
7a:0f:a9:fb:1c:cc:b4:7a:d0:e9:2a:da:fc:ff:e6:
6f:3e:b2:9d:ab:4e:80:2f:91:bb:32:72:5b:a9:22:
d2:05:fb:fc:b2:0e:83:9e:4e:fb:ae:6f:59:7e:8a:
db:db:1d:5b:79:58:65:5a:15:9c:02:c4:99:df:d1:
be:c3:47:85:73:d7:c2:12:72:33:49:60:56:a2:6c:
b8:7e:bf:3b:19:ae:fb:c0:9c:8f:09:b0:f7:75:27:
c5:11:a9:29:36:d4:9f:e9:2d:0e:6c:bc:2f:80:00:
cd:2a:7f:16:c9:56:24:b5:e3:6c:71:5d:65:79:57:
1e:4f:4b:b8:14:e0:5b:ed:da:07:9c:25:90:d1:f7:
c1:3c:ee:e3:9a:e4:a8:55:6a:94:73:17:1f:45:05:
1d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:07:50:44:04:5E:C7:96:BA:14:8F:F1:72:F9:65:01:01:DB:12:F3
X509v3 Authority Key Identifier:
keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/32510EE002D211EE88E55B80C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
111.88.79.0/24
111.88.138.0/23
111.88.144.0/20
111.88.164.0-111.88.171.255
111.88.184.0/22
111.88.232.0/21
115.186.0.0/24
115.186.19.0/24
115.186.48.0/21
115.186.64.0/19
115.186.97.0/24
115.186.99.0-115.186.105.255
115.186.114.0/24
115.186.116.0/22
115.186.122.0/23
115.186.126.0/23
117.102.13.0/24
117.102.29.0-117.102.31.255
203.81.216.0/24
203.81.219.0-203.81.229.255
203.81.231.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:84:ce:e9:ef:5c:a9:8a:8a:10:44:f1:38:f1:50:a9:6b:92:
c9:93:8d:ba:60:e5:74:a5:9b:77:93:91:f3:fd:db:b2:75:b1:
04:73:a5:41:d2:01:7d:bb:59:52:41:c8:b7:8c:a2:15:c6:76:
da:44:13:18:a2:c2:84:ac:df:4d:08:78:51:0d:63:0f:0b:f3:
4e:07:87:29:ec:d3:ac:5f:63:da:96:68:47:66:f1:32:7d:cc:
81:d4:a8:a5:68:2e:6e:ba:b8:07:a8:81:03:ae:3c:52:1a:ee:
17:a6:d5:ca:bc:b6:6c:42:61:5c:d8:b0:e2:48:45:e3:96:ec:
6f:93:32:37:79:61:88:5a:f5:ba:c9:b3:67:04:41:67:51:7c:
de:b4:98:60:8f:a3:93:12:e0:14:85:c7:df:ea:4b:05:f2:a8:
8a:2e:17:56:ce:8f:ae:4c:cb:f9:8d:6a:b7:f8:22:d1:c3:38:
78:a8:c0:54:aa:81:c0:c6:64:05:40:11:a8:ef:11:ca:5c:02:
96:e9:08:95:6c:da:88:29:1c:88:d5:0d:72:22:d3:65:f3:bf:
24:69:64:6a:52:3a:b7:5c:7c:a5:5c:b9:cf:3a:b3:5d:5f:4d:
ac:c1:18:9a:8f:d9:85:9b:22:b6:bd:c3:ed:79:82:d2:d8:94:
ea:5b:bb:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:20 2024 by rpki-client on console-ams.rpki-client.org