Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/7584425EA2FF11EEAACCC277C4F9AE02.roa
File: 7584425EA2FF11EEAACCC277C4F9AE02.roa (raw, json)
Hash identifier: 2Wg+FUwKu9q/gYbY+ZCgcGQZQTvKH+njqVosLYlZ7ZM=
Subject key identifier: 20:32:6A:E1:8A:92:1C:EA:C6:10:A5:D4:C8:11:44:2C:8E:FC:BE:90
Certificate issuer: /CN=A919536C/serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934
Certificate serial: 011E
Authority key identifier: 71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/7584425EA2FF11EEAACCC277C4F9AE02.roa
Signing time: Thu 17 Oct 2024 07:22:31 +0000
ROA not before: Thu 17 Oct 2024 07:22:31 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 132280
IP address blocks: 83.118.0.0/17 maxlen: 17
83.118.0.0/18 maxlen: 18
83.118.0.0/21 maxlen: 23
83.118.8.0/21 maxlen: 23
83.118.16.0/21 maxlen: 23
83.118.24.0/21 maxlen: 23
83.118.26.0/23 maxlen: 24
83.118.32.0/21 maxlen: 23
83.118.32.0/24 maxlen: 24
83.118.35.0/24 maxlen: 24
83.118.36.0/24 maxlen: 24
83.118.40.0/21 maxlen: 23
83.118.45.0/24 maxlen: 24
83.118.48.0/21 maxlen: 23
83.118.52.0/24 maxlen: 24
83.118.55.0/24 maxlen: 24
83.118.56.0/21 maxlen: 23
83.118.56.0/23 maxlen: 24
83.118.61.0/24 maxlen: 24
83.118.64.0/21 maxlen: 23
83.118.65.0/24 maxlen: 24
83.118.72.0/21 maxlen: 23
83.118.75.0/24 maxlen: 24
83.118.80.0/21 maxlen: 23
83.118.88.0/21 maxlen: 23
83.118.92.0/24 maxlen: 24
83.118.96.0/21 maxlen: 23
83.118.98.0/24 maxlen: 24
83.118.104.0/21 maxlen: 23
83.118.105.0/24 maxlen: 24
83.118.109.0/24 maxlen: 24
83.118.111.0/24 maxlen: 24
83.118.112.0/21 maxlen: 23
83.118.112.0/24 maxlen: 24
83.118.114.0/24 maxlen: 24
83.118.118.0/24 maxlen: 24
83.118.120.0/21 maxlen: 23
83.118.120.0/23 maxlen: 24
83.118.124.0/24 maxlen: 24
83.118.126.0/24 maxlen: 24
87.124.0.0/17 maxlen: 23
87.124.1.0/24 maxlen: 24
87.124.2.0/23 maxlen: 24
87.124.4.0/22 maxlen: 24
87.124.8.0/21 maxlen: 24
87.124.16.0/20 maxlen: 24
87.124.32.0/19 maxlen: 24
87.124.64.0/18 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Nov 2024 16:08:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 286 (0x11e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919536C, serialNumber=71F40218C1AF47C5E993A21A2B29284E4C32C934
Validity
Not Before: Oct 17 07:22:31 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=6710bb37-3b74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:85:e0:0c:9e:48:6f:71:50:eb:f2:ba:e9:1a:
8e:36:ca:10:15:87:c3:9c:b9:33:3e:ad:83:9b:ac:
81:70:da:9a:cc:17:4d:f7:3d:e6:cb:7a:3e:f8:5a:
0a:e8:65:69:f9:ea:84:9e:31:7d:2a:18:0b:e3:b7:
0a:92:67:63:48:99:38:cf:1c:9a:14:2d:70:4a:a7:
18:8c:7b:2a:6c:6b:a3:71:de:7f:7d:de:3c:79:33:
3d:27:9b:9b:5f:83:5f:db:0b:fd:09:9a:dc:7e:47:
59:d5:0e:73:ef:ff:48:a5:1b:19:db:26:9b:63:03:
7c:49:72:bd:83:bf:bc:b3:c9:47:5c:6f:76:24:08:
e3:d3:b2:97:20:ec:2c:1a:53:7b:d9:79:d5:8b:40:
a4:0a:0b:48:a7:ae:30:96:be:0a:21:68:7b:8e:c7:
a5:14:43:c8:28:0e:26:4e:c8:1f:96:df:bd:90:dc:
02:92:0a:c2:51:cc:0e:b7:f1:af:c4:26:e4:2f:58:
62:6a:50:af:d4:e1:3c:f0:96:5b:f8:63:1d:2c:28:
68:be:53:63:8d:48:ed:81:ea:63:15:e6:ce:55:f4:
fc:73:e4:c8:ba:b7:49:a6:b8:87:34:24:52:66:7b:
34:8c:95:1b:5e:b2:73:e1:65:8d:68:92:5e:02:d6:
2d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:32:6A:E1:8A:92:1C:EA:C6:10:A5:D4:C8:11:44:2C:8E:FC:BE:90
X509v3 Authority Key Identifier:
keyid:71:F4:02:18:C1:AF:47:C5:E9:93:A2:1A:2B:29:28:4E:4C:32:C9:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/cfQCGMGvR8Xpk6IaKykoTkwyyTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/6DE3CE7C366011EE88E0F530C4F9AE02/7584425EA2FF11EEAACCC277C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
83.118.0.0/17
87.124.0.0/17
Signature Algorithm: sha256WithRSAEncryption
91:a4:c7:de:e7:ee:d1:8e:19:a2:f2:89:13:d0:8f:01:84:59:
6b:62:e8:dc:44:50:bd:45:98:88:99:5f:9f:91:54:07:2c:ce:
85:d4:82:4c:a9:5d:4f:da:df:2c:92:49:4d:e4:b1:2e:d2:c5:
4f:fe:68:d6:a3:f0:21:bc:2b:8c:2d:c0:9a:4f:15:2a:c6:0e:
a9:97:ab:6f:26:1d:6d:0d:48:cf:42:1c:0c:a2:cb:a2:22:42:
40:68:e1:5f:db:36:1b:e0:32:ec:4c:3d:8e:89:28:0b:ae:23:
92:2f:02:96:06:93:ab:cb:fd:c3:a2:1f:1e:f7:a3:c8:c3:03:
d5:06:9b:11:70:b9:6b:b2:a6:30:5d:46:f9:cc:13:5f:70:ff:
59:01:5f:6e:77:c8:69:12:cc:43:32:1e:be:b4:2e:9b:da:7d:
53:97:f3:c0:2f:4f:17:f9:80:06:87:bb:ee:88:8d:11:b6:ec:
90:8e:fe:4c:a2:c7:b0:60:3e:b9:75:8b:89:bd:10:b2:be:18:
37:34:b8:1f:ac:a4:3b:68:d8:44:8d:da:8d:fe:84:f2:9e:94:
6d:2b:fa:e2:7d:ef:8a:40:b9:8b:f2:13:eb:71:22:8e:2f:bc:
63:1d:54:f9:e5:4d:eb:41:64:27:db:5e:ec:6f:9a:0b:bc:e5:
45:74:9f:00
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTUzNkMxMTAvBgNVBAUTKDcxRjQwMjE4QzFBRjQ3QzVFOTkzQTIxQTJCMjkyODRF
NEMzMkM5MzQwHhcNMjQxMDE3MDcyMjMxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzEwYmIzNy0zYjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAt4XgDJ5Ib3FQ6/K66RqONsoQFYfDnLkzPq2Dm6yBcNqazBdN9z3my3o++FoK
6GVp+eqEnjF9KhgL47cKkmdjSJk4zxyaFC1wSqcYjHsqbGujcd5/fd48eTM9J5ub
X4Nf2wv9CZrcfkdZ1Q5z7/9IpRsZ2yabYwN8SXK9g7+8s8lHXG92JAjj07KXIOws
GlN72XnVi0CkCgtIp64wlr4KIWh7jselFEPIKA4mTsgflt+9kNwCkgrCUcwOt/Gv
xCbkL1hialCv1OE88JZb+GMdLChovlNjjUjtgepjFebOVfT8c+TIurdJpriHNCRS
Zns0jJUbXrJz4WWNaJJeAtYtVwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCAyauGK
khzqxhCl1MgRRCyO/L6QMB8GA1UdIwQYMBaAFHH0AhjBr0fF6ZOiGispKE5MMsk0
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy82REUzQ0U3QzM2
NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9jZlFDR01HdlI4WHBrNklhS3lrb1Rrd3l5
VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy
RkQxRkYyL2NmUUNHTUd2UjhYcGs2SWFLeWtvVGt3eXlUUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTUzNkMvNkRFM0NFN0MzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvNzU4NDQyNUVB
MkZGMTFFRUFBQ0NDMjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E
FjAUMBIEAgABMAwDBAdTdgADBAdXfAAwDQYJKoZIhvcNAQELBQADggEBAJGkx97n
7tGOGaLyiRPQjwGEWWti6NxEUL1FmIiZX5+RVAcszoXUgkypXU/a3yySSU3ksS7S
xU/+aNaj8CG8K4wtwJpPFSrGDqmXq28mHW0NSM9CHAyiy6IiQkBo4V/bNhvgMuxM
PY6JKAuuI5IvApYGk6vL/cOiHx73o8jDA9UGmxFwuWuypjBdRvnME19w/1kBX253
yGkSzEMyHr60LpvafVOX88AvTxf5gAaHu+6IjRG27JCO/kyix7BgPrl1i4m9ELK+
GDc0uB+spDto2ESN2o3+hPKelG0r+uJ974pAuYvyE+txIo4vvGMdVPnlTetBZCfb
Xuxvmgu85UV0nwA=
-----END CERTIFICATE-----
Generated at Sat Apr 26 07:15:51 2025 by rpki-client