Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/3CF0117A7DED11EEBBF0314EC4F9AE02.roa
File: 3CF0117A7DED11EEBBF0314EC4F9AE02.roa (raw, json)
Hash identifier: FqN+0ZRF596MgWxwB9aSJT4WKAVoLQ0PsUcZA6QEoBI=
Subject key identifier: 03:AF:C3:6F:1E:8E:81:3D:8D:10:93:BE:10:93:ED:03:EA:98:1C:CA
Certificate issuer: /CN=A9199197/serialNumber=6835DDFB8438D24BB6C5979316E54891066090A7
Certificate serial: 0841
Authority key identifier: 68:35:DD:FB:84:38:D2:4B:B6:C5:97:93:16:E5:48:91:06:60:90:A7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aDXd-4Q40ku2xZeTFuVIkQZgkKc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/3CF0117A7DED11EEBBF0314EC4F9AE02.roa
Signing time: Fri 20 Dec 2024 08:03:25 +0000
ROA not before: Fri 20 Dec 2024 08:03:25 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 24560
IP address blocks: 27.56.128.0/20 maxlen: 24
27.56.144.0/20 maxlen: 24
27.56.160.0/19 maxlen: 24
27.57.0.0/16 maxlen: 24
27.58.0.0/16 maxlen: 24
27.62.116.0/24 maxlen: 24
27.62.117.0/24 maxlen: 24
27.63.176.0/20 maxlen: 24
106.200.0.0/18 maxlen: 24
106.200.192.0/18 maxlen: 24
106.201.0.0/16 maxlen: 24
106.202.128.0/17 maxlen: 24
106.203.192.0/18 maxlen: 24
106.205.0.0/18 maxlen: 24
106.205.64.0/18 maxlen: 24
106.212.0.0/17 maxlen: 24
106.212.128.0/17 maxlen: 24
106.213.0.0/17 maxlen: 24
106.214.0.0/16 maxlen: 24
106.215.0.0/17 maxlen: 24
106.215.128.0/19 maxlen: 24
106.215.160.0/20 maxlen: 24
106.215.176.0/21 maxlen: 24
106.215.184.0/21 maxlen: 24
106.215.192.0/21 maxlen: 24
106.215.200.0/24 maxlen: 24
106.219.64.0/19 maxlen: 24
106.219.96.0/20 maxlen: 24
106.219.120.0/22 maxlen: 24
106.219.124.0/22 maxlen: 24
106.219.128.0/21 maxlen: 24
106.219.136.0/22 maxlen: 24
106.219.144.0/20 maxlen: 24
106.219.160.0/20 maxlen: 24
106.219.176.0/21 maxlen: 24
106.222.192.0/18 maxlen: 24
110.224.128.0/17 maxlen: 24
110.225.0.0/16 maxlen: 24
110.226.0.0/16 maxlen: 24
110.227.0.0/16 maxlen: 24
117.96.0.0/16 maxlen: 24
117.97.128.0/18 maxlen: 24
117.98.192.0/20 maxlen: 24
117.98.208.0/21 maxlen: 21
117.98.216.0/21 maxlen: 24
117.99.96.0/20 maxlen: 24
117.99.160.0/19 maxlen: 24
223.177.0.0/16 maxlen: 24
223.178.0.0/17 maxlen: 24
223.178.192.0/18 maxlen: 24
223.179.128.0/19 maxlen: 24
223.181.0.0/17 maxlen: 24
223.181.128.0/18 maxlen: 24
223.182.64.0/18 maxlen: 24
223.182.164.0/22 maxlen: 24
223.182.172.0/22 maxlen: 24
223.182.180.0/22 maxlen: 24
223.182.248.0/21 maxlen: 24
223.184.0.0/17 maxlen: 24
223.185.12.0/22 maxlen: 24
223.185.16.0/20 maxlen: 24
223.185.32.0/19 maxlen: 24
223.185.128.0/21 maxlen: 24
223.185.136.0/21 maxlen: 24
223.185.144.0/20 maxlen: 24
223.185.160.0/20 maxlen: 24
223.185.176.0/20 maxlen: 24
223.190.0.0/17 maxlen: 24
223.190.192.0/18 maxlen: 24
223.224.172.0/23 maxlen: 24
223.226.0.0/16 maxlen: 24
223.229.128.0/17 maxlen: 24
223.230.0.0/16 maxlen: 24
223.233.64.0/18 maxlen: 24
223.235.0.0/16 maxlen: 24
223.236.0.0/16 maxlen: 24
223.239.0.0/16 maxlen: 24
2401:4900:1c00::/41 maxlen: 48
2401:4900:1c80::/41 maxlen: 48
2401:4900:1f20::/44 maxlen: 48
2401:4900:1f30::/44 maxlen: 48
2401:4900:8800::/46 maxlen: 48
2401:4900:8804::/46 maxlen: 48
2401:4900:8808::/46 maxlen: 48
2401:4900:880c::/46 maxlen: 48
2401:4900:8814::/46 maxlen: 48
2401:4900:8818::/46 maxlen: 48
2401:4900:881c::/46 maxlen: 48
2401:4900:8820::/46 maxlen: 48
2401:4900:8824::/46 maxlen: 48
2401:4900:8828::/46 maxlen: 48
2401:4900:882c::/46 maxlen: 48
2401:4900:8830::/46 maxlen: 48
2401:4900:8834::/46 maxlen: 48
2401:4900:8838::/46 maxlen: 48
Validation: Failed, certificate revoked on Fri 04 Apr 2025 10:50:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2113 (0x841)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9199197
Validity
Not Before: Dec 20 08:03:25 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=676524cd-19c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cd:f5:17:e2:64:e5:9f:cd:fb:94:61:96:b5:
f2:2b:13:d2:80:fe:ac:db:6b:ed:90:ef:c8:3a:12:
db:11:23:38:ce:8f:9a:9b:2c:33:9e:3a:cb:4e:ba:
97:23:1f:aa:ba:32:36:7a:1b:78:f2:c2:f0:09:b3:
06:f1:ba:b1:86:82:42:b6:9e:4f:61:c8:76:85:0f:
57:3b:6a:a1:7a:ea:99:90:09:e4:89:59:55:b7:2f:
b3:71:2c:c6:26:d8:3f:d0:3b:de:8c:4f:a5:02:e9:
39:f2:7b:6e:e5:4d:87:a2:88:b4:09:31:b7:6f:92:
0b:b5:e6:49:6b:56:04:15:93:78:f3:50:d9:7a:36:
a0:f2:e6:cb:0f:b5:ee:a7:df:75:5c:ec:3d:75:18:
ae:75:a8:81:49:d8:0d:7e:1f:9c:42:18:ce:77:60:
bf:48:4e:ee:e4:2c:82:3a:4e:f2:ef:86:9d:5b:4a:
c8:b2:ab:35:78:94:9f:7b:bd:2b:06:98:e8:f6:f1:
ff:42:15:aa:7a:19:48:b7:9c:6e:ca:07:71:4c:13:
a3:db:ce:ca:39:ba:e1:43:cf:32:71:43:2a:e8:4c:
14:59:d5:81:8b:35:06:9d:49:bd:fe:91:f6:75:ea:
45:f9:60:9e:fc:7b:af:87:ec:0a:7f:89:2c:95:bc:
d9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:AF:C3:6F:1E:8E:81:3D:8D:10:93:BE:10:93:ED:03:EA:98:1C:CA
X509v3 Authority Key Identifier:
keyid:68:35:DD:FB:84:38:D2:4B:B6:C5:97:93:16:E5:48:91:06:60:90:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/aDXd-4Q40ku2xZeTFuVIkQZgkKc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aDXd-4Q40ku2xZeTFuVIkQZgkKc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/3CF0117A7DED11EEBBF0314EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.56.128.0/18
27.57.0.0-27.58.255.255
27.62.116.0/23
27.63.176.0/20
106.200.0.0/18
106.200.192.0-106.201.255.255
106.202.128.0/17
106.203.192.0/18
106.205.0.0/17
106.212.0.0-106.213.127.255
106.214.0.0-106.215.200.255
106.219.64.0-106.219.111.255
106.219.120.0-106.219.139.255
106.219.144.0-106.219.183.255
106.222.192.0/18
110.224.128.0-110.227.255.255
117.96.0.0/16
117.97.128.0/18
117.98.192.0/19
117.99.96.0/20
117.99.160.0/19
223.177.0.0-223.178.127.255
223.178.192.0/18
223.179.128.0/19
223.181.0.0-223.181.191.255
223.182.64.0/18
223.182.164.0/22
223.182.172.0/22
223.182.180.0/22
223.182.248.0/21
223.184.0.0/17
223.185.12.0-223.185.63.255
223.185.128.0/18
223.190.0.0/17
223.190.192.0/18
223.224.172.0/23
223.226.0.0/16
223.229.128.0-223.230.255.255
223.233.64.0/18
223.235.0.0-223.236.255.255
223.239.0.0/16
IPv6:
2401:4900:1c00::/40
2401:4900:1f20::/43
2401:4900:8800::/44
2401:4900:8814::-2401:4900:883b:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
c2:ee:59:98:80:d5:72:56:2b:e2:03:6d:1d:6c:7c:65:cb:fc:
ce:1e:3d:34:f7:6f:80:0f:74:6e:04:78:13:b3:93:5b:e0:b9:
e5:32:e6:33:0e:f5:47:2a:57:10:90:40:ee:e0:99:6b:71:92:
92:23:a2:93:66:91:c5:de:0a:2c:31:60:69:e8:74:c2:e1:6b:
87:07:13:d0:12:e7:07:87:c8:5e:b1:36:f6:43:d2:26:34:37:
c3:36:ec:49:ba:3a:de:c5:13:e2:fe:37:3e:c0:6d:67:3a:9d:
15:6f:ae:3a:95:56:2d:c3:0a:c7:cf:ad:94:9e:c0:a6:4e:02:
35:46:05:ab:33:70:ce:48:bd:4a:d6:4c:fd:b4:83:fc:ae:66:
cb:0b:f2:9f:74:34:7b:b9:69:76:78:70:e2:3d:79:8e:3f:6c:
3e:0c:d1:ec:68:99:24:bd:a3:0f:db:34:9c:1e:6d:cf:44:fd:
d0:94:09:4e:08:75:59:49:a6:69:16:11:ae:1a:f8:bb:d4:06:
40:91:40:ce:1d:ad:f4:8f:a6:38:d3:07:e4:57:b8:bf:aa:57:
f7:82:0b:fc:0c:65:e9:83:ba:4d:64:08:3a:44:a9:e9:b2:36:
34:0f:09:0c:4e:17:ef:60:d1:73:68:b5:9a:8b:24:c5:1c:a9:
70:81:b1:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:13:36 2025 by rpki-client