Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/5F003454895D11EE9A09AA30C4F9AE02.roa
File: 5F003454895D11EE9A09AA30C4F9AE02.roa (raw, json)
Hash identifier: YPYT8g5b2MrQxPvR5vd9DkYh8efDYHCW++YsT4hJ69E=
Subject key identifier: 53:D0:CC:5A:B6:11:63:22:E5:1D:E3:82:BD:2C:F0:5A:92:71:BF:64
Certificate issuer: /CN=A918404E/serialNumber=9C7C776F6BF6003283F0CAB43E2DC61494997162
Certificate serial: 0873
Authority key identifier: 9C:7C:77:6F:6B:F6:00:32:83:F0:CA:B4:3E:2D:C6:14:94:99:71:62
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/5F003454895D11EE9A09AA30C4F9AE02.roa
Signing time: Fri 16 Aug 2024 22:10:27 +0000
ROA not before: Fri 16 Aug 2024 22:10:27 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 132115
IP address blocks: 45.117.200.0/24 maxlen: 24
45.117.201.0/24 maxlen: 24
45.117.202.0/24 maxlen: 24
45.117.203.0/24 maxlen: 24
45.117.204.0/24 maxlen: 24
45.117.205.0/24 maxlen: 24
45.117.206.0/24 maxlen: 24
45.117.207.0/24 maxlen: 24
45.126.160.0/24 maxlen: 24
45.126.161.0/24 maxlen: 24
45.126.162.0/24 maxlen: 24
45.126.163.0/24 maxlen: 24
103.24.188.0/24 maxlen: 24
103.24.189.0/24 maxlen: 24
103.24.190.0/24 maxlen: 24
103.24.191.0/24 maxlen: 24
103.57.236.0/24 maxlen: 24
103.57.237.0/24 maxlen: 24
103.57.238.0/24 maxlen: 24
103.57.239.0/24 maxlen: 24
103.57.240.0/24 maxlen: 24
103.57.241.0/24 maxlen: 24
103.57.242.0/24 maxlen: 24
103.57.243.0/24 maxlen: 24
103.57.244.0/24 maxlen: 24
103.57.245.0/24 maxlen: 24
103.57.246.0/24 maxlen: 24
103.57.247.0/24 maxlen: 24
103.70.208.0/24 maxlen: 24
103.70.209.0/24 maxlen: 24
103.70.210.0/24 maxlen: 24
103.70.211.0/24 maxlen: 24
103.75.192.0/22 maxlen: 22
103.225.176.0/24 maxlen: 24
103.225.177.0/24 maxlen: 24
103.225.178.0/24 maxlen: 24
103.225.179.0/24 maxlen: 24
103.244.4.0/24 maxlen: 24
103.244.5.0/24 maxlen: 24
103.244.6.0/24 maxlen: 24
103.244.7.0/24 maxlen: 24
150.107.10.0/24 maxlen: 24
150.107.11.0/24 maxlen: 24
150.129.124.0/24 maxlen: 24
150.129.125.0/24 maxlen: 24
150.129.126.0/24 maxlen: 24
150.129.127.0/24 maxlen: 24
202.142.64.0/24 maxlen: 24
202.142.65.0/24 maxlen: 24
202.142.66.0/24 maxlen: 24
202.142.67.0/24 maxlen: 24
202.142.68.0/24 maxlen: 24
202.142.69.0/24 maxlen: 24
202.142.70.0/24 maxlen: 24
202.142.71.0/24 maxlen: 24
202.142.72.0/24 maxlen: 24
202.142.73.0/24 maxlen: 24
202.142.74.0/24 maxlen: 24
202.142.75.0/24 maxlen: 24
202.142.76.0/24 maxlen: 24
202.142.77.0/24 maxlen: 24
202.142.78.0/24 maxlen: 24
202.142.79.0/24 maxlen: 24
202.142.81.0/24 maxlen: 24
202.142.83.0/24 maxlen: 24
202.142.85.0/24 maxlen: 24
202.142.86.0/24 maxlen: 24
202.142.87.0/24 maxlen: 24
202.142.89.0/24 maxlen: 24
202.142.90.0/24 maxlen: 24
202.142.91.0/24 maxlen: 24
202.142.92.0/24 maxlen: 24
202.142.93.0/24 maxlen: 24
202.142.95.0/24 maxlen: 24
202.142.96.0/24 maxlen: 24
202.142.97.0/24 maxlen: 24
202.142.98.0/24 maxlen: 24
202.142.99.0/24 maxlen: 24
202.142.100.0/24 maxlen: 24
202.142.101.0/24 maxlen: 24
202.142.102.0/24 maxlen: 24
202.142.103.0/24 maxlen: 24
202.142.104.0/24 maxlen: 24
202.142.105.0/24 maxlen: 24
202.142.106.0/24 maxlen: 24
202.142.107.0/24 maxlen: 24
202.142.110.0/24 maxlen: 24
202.142.112.0/24 maxlen: 24
202.142.113.0/24 maxlen: 24
202.142.114.0/24 maxlen: 24
202.142.115.0/24 maxlen: 24
202.142.118.0/24 maxlen: 24
202.142.119.0/24 maxlen: 24
202.142.120.0/24 maxlen: 24
202.142.123.0/24 maxlen: 24
202.142.124.0/24 maxlen: 24
202.142.125.0/24 maxlen: 24
202.142.126.0/24 maxlen: 24
202.142.127.0/24 maxlen: 24
2406:3c80::/48 maxlen: 48
2406:3c80:1::/48 maxlen: 48
2406:3c80:2::/48 maxlen: 48
2406:3c80:3::/48 maxlen: 48
2406:3c80:4::/48 maxlen: 48
2406:3c80:5::/48 maxlen: 48
2406:3c80:6::/48 maxlen: 48
2406:3c80:7::/48 maxlen: 48
2406:3c80:8::/48 maxlen: 48
2406:3c80:400::/48 maxlen: 48
2406:3c80:401::/48 maxlen: 48
2406:3c80:402::/48 maxlen: 48
2406:3c80:403::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 18 Oct 2024 09:15:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2163 (0x873)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918404E
Validity
Not Before: Aug 16 22:10:27 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66bfce53-13a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:63:e6:59:fe:57:8a:98:8e:03:1c:88:7d:de:
3e:82:b3:05:9d:32:67:1f:4b:d6:c4:ab:1b:1f:4f:
1a:50:f5:67:50:ef:c8:25:18:a5:f5:7a:1a:28:eb:
27:74:5b:d5:a4:6f:98:98:70:c7:74:1a:af:06:ca:
96:86:65:6f:c2:ac:22:ba:c1:f0:4e:7f:3d:78:7e:
e2:9e:a3:9a:26:fa:3d:03:a2:34:cd:42:e7:71:c5:
f9:91:62:e5:f1:cd:e9:5b:14:fc:52:90:3c:53:c7:
8c:66:92:7e:94:36:32:62:fa:0f:2c:99:2a:5f:7d:
67:13:f2:a4:f4:74:3d:05:92:ce:bb:ff:a6:d6:d1:
cb:d6:97:43:ba:28:97:a0:08:f3:38:f7:e1:dc:f1:
4d:66:07:dd:c2:2c:24:2d:20:be:e6:08:ae:83:1e:
02:27:69:0b:4c:bf:16:8f:f5:0b:66:88:7b:d7:26:
5d:4e:27:ea:d6:10:5c:7f:d2:47:07:ac:a1:35:47:
20:d9:bc:b4:3c:62:8c:47:d6:33:de:8e:64:b0:d4:
e7:3b:46:0a:ee:e6:9e:46:cc:44:0b:54:b4:24:66:
c9:62:26:8e:1b:c2:22:ab:5d:97:c4:79:13:bb:a7:
cd:91:70:da:a3:f6:e3:55:71:48:f8:a2:ac:1e:6c:
2c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D0:CC:5A:B6:11:63:22:E5:1D:E3:82:BD:2C:F0:5A:92:71:BF:64
X509v3 Authority Key Identifier:
keyid:9C:7C:77:6F:6B:F6:00:32:83:F0:CA:B4:3E:2D:C6:14:94:99:71:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nHx3b2v2ADKD8Mq0Pi3GFJSZcWI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918404E/BC030C76F1DA11EAAFC6C70AC4F9AE02/5F003454895D11EE9A09AA30C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.117.200.0/21
45.126.160.0/22
103.24.188.0/22
103.57.236.0-103.57.247.255
103.70.208.0/22
103.75.192.0/22
103.225.176.0/22
103.244.4.0/22
150.107.10.0/23
150.129.124.0/22
202.142.64.0/20
202.142.81.0/24
202.142.83.0/24
202.142.85.0-202.142.87.255
202.142.89.0-202.142.93.255
202.142.95.0-202.142.107.255
202.142.110.0/24
202.142.112.0/22
202.142.118.0-202.142.120.255
202.142.123.0-202.142.127.255
IPv6:
2406:3c80::-2406:3c80:8:ffff:ffff:ffff:ffff:ffff
2406:3c80:400::/46
Signature Algorithm: sha256WithRSAEncryption
7f:3c:9b:fe:ef:d2:ee:d4:fb:13:05:35:b9:ff:d3:2d:ab:07:
0b:8e:04:7b:b9:ec:2a:07:1c:13:32:aa:66:82:9a:a2:c8:42:
9f:59:bc:46:b2:71:4f:69:b0:d6:bf:82:44:af:8e:72:d1:9e:
a8:7a:4e:b1:94:08:62:cc:7c:9d:fb:bd:67:b4:03:40:d2:e2:
a5:44:d6:90:2f:1d:9d:2c:74:7e:59:e2:ec:0e:b7:9e:31:f5:
ea:86:10:3a:b4:ac:15:82:85:0c:45:37:9c:39:84:1a:b6:0a:
a6:05:b9:09:5f:bb:28:ac:8c:87:c7:61:b5:3e:9c:4b:12:de:
02:13:83:21:24:ce:25:a2:77:a0:52:2b:9e:b0:05:c1:48:3d:
01:a0:98:38:f5:07:72:3b:69:c8:92:c6:13:2b:21:bb:6a:37:
64:34:29:e1:77:cf:ae:8c:e8:2f:ce:ea:d2:41:74:6e:4e:de:
1e:64:12:2a:4c:a5:dd:fa:55:f9:70:7c:f1:b1:0c:a1:c6:d0:
ae:de:0a:16:3e:a4:b9:8a:d7:a1:23:2d:16:c6:52:a5:f7:d4:
a4:14:5c:63:55:61:3b:ec:c5:2d:e2:f0:f4:22:54:b3:41:77:
8d:3f:6b:a0:98:ed:53:bf:f5:0d:14:d3:38:6e:ca:d6:cf:4b:
29:28:c4:b3
-----BEGIN CERTIFICATE-----
MIIGOzCCBSOgAwIBAgICCHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODQwNEUxMTAvBgNVBAUTKDlDN0M3NzZGNkJGNjAwMzI4M0YwQ0FCNDNFMkRDNjE0
OTQ5OTcxNjIwHhcNMjQwODE2MjIxMDI3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmJmY2U1My0xM2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA9WPmWf5XipiOAxyIfd4+grMFnTJnH0vWxKsbH08aUPVnUO/IJRil9XoaKOsn
dFvVpG+YmHDHdBqvBsqWhmVvwqwiusHwTn89eH7inqOaJvo9A6I0zULnccX5kWLl
8c3pWxT8UpA8U8eMZpJ+lDYyYvoPLJkqX31nE/Kk9HQ9BZLOu/+m1tHL1pdDuiiX
oAjzOPfh3PFNZgfdwiwkLSC+5giugx4CJ2kLTL8Wj/ULZoh71yZdTifq1hBcf9JH
B6yhNUcg2by0PGKMR9Yz3o5ksNTnO0YK7uaeRsxEC1S0JGbJYiaOG8Iiq12XxHkT
u6fNkXDao/bjVXFI+KKsHmwsXwIDAQABo4IDXzCCA1swHQYDVR0OBBYEFFPQzFq2
EWMi5R3jgr0s8FqScb9kMB8GA1UdIwQYMBaAFJx8d29r9gAyg/DKtD4txhSUmXFi
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDA0RS9CQzAzMEM3NkYx
REExMUVBQUZDNkM3MEFDNEY5QUUwMi9uSHgzYjJ2MkFES0Q4TXEwUGkzR0ZKU1pj
V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL25IeDNiMnYyQURLRDhNcTBQaTNHRkpTWmNXSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
ODQwNEUvQkMwMzBDNzZGMURBMTFFQUFGQzZDNzBBQzRGOUFFMDIvNUYwMDM0NTQ4
OTVEMTFFRTlBMDlBQTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgegGCCsGAQUFBwEHAQH/
BIHYMIHVMIGvBAIAATCBqAMEAy11yAMEAi1+oAMEAmcYvDAMAwQCZznsAwQDZznw
AwQCZ0bQAwQCZ0vAAwQCZ+GwAwQCZ/QEAwQBlmsKAwQCloF8AwQEyo5AAwQAyo5R
AwQAyo5TMAwDBADKjlUDBAPKjlAwDAMEAMqOWQMEAcqOXDAMAwQAyo5fAwQCyo5o
AwQAyo5uAwQCyo5wMAwDBAHKjnYDBADKjngwDAMEAMqOewMEB8qOADAhBAIAAjAb
MBADBQckBjyAAwcAJAY8gAAIAwcCJAY8gAQAMA0GCSqGSIb3DQEBCwUAA4IBAQB/
PJv+79Lu1PsTBTW5/9MtqwcLjgR7uewqBxwTMqpmgpqiyEKfWbxGsnFPabDWv4JE
r45y0Z6oek6xlAhizHyd+71ntANA0uKlRNaQLx2dLHR+WeLsDreeMfXqhhA6tKwV
goUMRTecOYQatgqmBbkJX7sorIyHx2G1PpxLEt4CE4MhJM4lonegUiuesAXBSD0B
oJg49QdyO2nIksYTKyG7ajdkNCnhd8+ujOgvzurSQXRuTt4eZBIqTKXd+lX5cHzx
sQyhxtCu3goWPqS5itehIy0WxlKl99SkFFxjVWE77MUt4vD0IlSzQXeNP2ugmO1T
v/UNFNM4bsrWz0spKMSz
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:04 2025 by rpki-client