Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AE5B707CFC2C11EDB0846055C4F9AE02.roa
File: AE5B707CFC2C11EDB0846055C4F9AE02.roa (raw, json)
Hash identifier: Ee/WE5ErxaVrgN+Hi/3D+wrfByMgZ/fJbjZCUzM6ogM=
Subject key identifier: E8:5E:9A:9B:FB:10:53:4A:6E:88:5C:4E:9E:6F:41:BA:88:BC:14:CB
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 4263
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AE5B707CFC2C11EDB0846055C4F9AE02.roa
Signing time: Sat 30 Mar 2024 15:03:30 +0000
ROA not before: Sat 30 Mar 2024 15:03:30 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 7552
IP address blocks: 27.64.0.0/14 maxlen: 24
27.68.0.0/15 maxlen: 24
27.70.0.0/16 maxlen: 24
27.72.0.0/13 maxlen: 24
103.84.76.0/24 maxlen: 24
115.72.0.0/13 maxlen: 24
116.101.65.0/24 maxlen: 24
117.0.0.0/16 maxlen: 24
117.1.0.0/17 maxlen: 24
117.1.128.0/20 maxlen: 24
117.1.144.0/22 maxlen: 24
117.1.152.0/21 maxlen: 24
117.1.160.0/19 maxlen: 24
117.1.192.0/18 maxlen: 24
117.2.0.0/15 maxlen: 24
117.4.0.0/14 maxlen: 24
125.212.128.0/20 maxlen: 24
125.212.144.0/23 maxlen: 24
125.212.148.0/23 maxlen: 24
125.212.150.0/23 maxlen: 24
125.212.152.0/23 maxlen: 24
125.212.154.0/23 maxlen: 24
125.212.156.0/23 maxlen: 24
125.212.158.0/23 maxlen: 24
125.212.160.0/20 maxlen: 24
125.212.176.0/20 maxlen: 24
125.214.0.0/20 maxlen: 24
125.234.0.0/17 maxlen: 24
125.234.128.0/19 maxlen: 24
125.234.176.0/20 maxlen: 24
125.234.192.0/18 maxlen: 24
125.235.0.0/20 maxlen: 24
125.235.16.0/21 maxlen: 24
125.235.24.0/22 maxlen: 24
125.235.29.0/24 maxlen: 24
125.235.30.0/23 maxlen: 24
125.235.32.0/22 maxlen: 24
125.235.36.0/23 maxlen: 24
125.235.40.0/21 maxlen: 24
125.235.48.0/20 maxlen: 24
125.235.64.0/18 maxlen: 24
125.235.128.0/17 maxlen: 24
171.224.0.0/16 maxlen: 24
171.225.0.0/16 maxlen: 24
171.226.0.0/21 maxlen: 24
171.226.16.0/20 maxlen: 24
171.226.32.0/19 maxlen: 24
171.226.64.0/18 maxlen: 24
171.226.128.0/17 maxlen: 24
171.227.0.0/16 maxlen: 24
171.228.0.0/16 maxlen: 24
171.229.0.0/16 maxlen: 24
171.230.0.0/16 maxlen: 24
171.231.0.0/16 maxlen: 24
171.232.0.0/16 maxlen: 24
171.233.0.0/16 maxlen: 24
171.234.0.0/16 maxlen: 24
171.235.0.0/16 maxlen: 24
171.236.0.0/16 maxlen: 24
171.237.0.0/22 maxlen: 24
171.237.4.0/22 maxlen: 24
171.237.8.0/22 maxlen: 24
171.237.12.0/22 maxlen: 24
171.237.16.0/22 maxlen: 24
171.237.20.0/22 maxlen: 24
171.237.24.0/22 maxlen: 24
171.237.28.0/22 maxlen: 24
171.237.32.0/22 maxlen: 24
171.237.36.0/22 maxlen: 24
171.237.40.0/22 maxlen: 24
171.237.44.0/22 maxlen: 24
171.237.48.0/22 maxlen: 24
171.237.52.0/22 maxlen: 24
171.237.56.0/22 maxlen: 24
171.237.60.0/22 maxlen: 24
171.237.64.0/22 maxlen: 24
171.237.68.0/22 maxlen: 24
171.237.72.0/22 maxlen: 24
171.237.76.0/22 maxlen: 24
171.237.80.0/22 maxlen: 24
171.237.84.0/22 maxlen: 24
171.237.88.0/22 maxlen: 24
171.237.92.0/22 maxlen: 24
171.237.96.0/22 maxlen: 24
171.237.100.0/22 maxlen: 24
171.237.104.0/22 maxlen: 24
171.237.108.0/22 maxlen: 24
171.237.112.0/22 maxlen: 24
171.237.116.0/22 maxlen: 24
171.237.120.0/22 maxlen: 24
171.237.124.0/22 maxlen: 24
171.237.132.0/22 maxlen: 24
171.237.136.0/22 maxlen: 24
171.237.140.0/22 maxlen: 24
171.237.144.0/22 maxlen: 24
171.237.148.0/22 maxlen: 24
171.237.152.0/22 maxlen: 24
171.237.156.0/22 maxlen: 24
171.237.160.0/22 maxlen: 24
171.237.164.0/22 maxlen: 24
171.237.168.0/22 maxlen: 24
171.237.172.0/22 maxlen: 24
171.237.180.0/22 maxlen: 24
171.237.184.0/22 maxlen: 24
171.237.188.0/22 maxlen: 24
171.237.192.0/22 maxlen: 24
171.237.196.0/22 maxlen: 24
171.237.200.0/22 maxlen: 24
171.237.204.0/22 maxlen: 24
171.237.208.0/22 maxlen: 24
171.237.212.0/22 maxlen: 24
171.237.216.0/22 maxlen: 24
171.237.220.0/22 maxlen: 24
171.237.224.0/22 maxlen: 24
171.237.228.0/22 maxlen: 24
171.237.232.0/22 maxlen: 24
171.237.236.0/22 maxlen: 24
171.237.240.0/22 maxlen: 24
171.237.244.0/22 maxlen: 24
171.237.248.0/22 maxlen: 24
171.237.252.0/22 maxlen: 24
171.238.0.0/16 maxlen: 24
171.239.0.0/16 maxlen: 24
171.240.0.0/16 maxlen: 24
171.241.0.0/16 maxlen: 24
171.242.0.0/16 maxlen: 24
171.243.0.0/16 maxlen: 24
171.244.208.0/20 maxlen: 24
171.245.0.0/16 maxlen: 24
171.246.0.0/16 maxlen: 24
171.247.0.0/16 maxlen: 24
171.248.0.0/16 maxlen: 24
171.249.0.0/16 maxlen: 24
171.250.0.0/16 maxlen: 24
171.251.0.0/16 maxlen: 24
171.252.0.0/16 maxlen: 24
171.253.0.0/16 maxlen: 24
171.254.0.0/16 maxlen: 24
171.255.0.0/16 maxlen: 24
203.113.128.0/19 maxlen: 24
203.113.160.0/21 maxlen: 24
203.113.168.0/22 maxlen: 24
203.113.176.0/20 maxlen: 24
203.190.160.0/23 maxlen: 24
203.190.162.0/23 maxlen: 24
203.190.164.0/23 maxlen: 24
203.190.170.0/23 maxlen: 24
203.190.172.0/23 maxlen: 24
203.190.175.0/24 maxlen: 24
220.231.64.0/24 maxlen: 24
220.231.66.0/23 maxlen: 24
220.231.68.0/22 maxlen: 24
220.231.72.0/21 maxlen: 24
220.231.80.0/20 maxlen: 24
220.231.96.0/20 maxlen: 24
220.231.112.0/21 maxlen: 24
220.231.120.0/22 maxlen: 24
2401:d800::/32 maxlen: 48
2402:800::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 05 Apr 2024 15:57:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16995 (0x4263)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Mar 30 15:03:30 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=660829c2-65fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:65:73:88:21:66:92:c9:c5:83:86:3e:91:19:
bc:b3:dc:98:41:5d:6f:fe:ca:09:df:5c:99:a2:10:
bc:ce:bc:65:da:46:1b:07:24:65:14:04:68:fc:75:
58:cc:e8:5b:51:8e:ae:e2:fa:79:e4:c3:f6:93:3e:
b4:5f:6a:0c:f8:8d:82:c6:21:f4:11:a5:55:16:3a:
55:c4:81:d6:d9:4f:c4:01:b4:ba:d4:e4:a9:7b:dd:
13:e0:12:38:d2:5a:a1:de:78:fe:ac:62:ca:cb:67:
03:c6:9e:87:32:06:11:df:7a:ef:d6:ff:c4:49:10:
9a:9c:07:2a:98:be:eb:f5:97:40:52:4e:27:ff:45:
44:22:8f:51:86:0b:e0:1b:33:1e:ce:5a:59:7a:69:
64:7b:d2:ec:77:f0:75:8f:02:29:c1:b9:af:4a:03:
94:90:27:ef:8a:b3:72:53:5f:43:ce:16:39:54:f6:
cd:08:ca:6a:f0:07:e2:d1:41:77:b9:f3:7b:98:6d:
1d:80:4f:28:36:d0:9f:dc:71:ad:ce:a3:d6:68:c7:
6e:e9:f3:06:07:32:55:ae:4b:ec:95:f0:c6:0e:dd:
f4:93:f4:30:86:44:22:39:66:bc:37:ce:d0:7f:59:
66:d8:cd:49:c4:db:eb:c7:b1:ad:2e:0c:42:cf:00:
55:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:5E:9A:9B:FB:10:53:4A:6E:88:5C:4E:9E:6F:41:BA:88:BC:14:CB
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AE5B707CFC2C11EDB0846055C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.64.0.0-27.70.255.255
27.72.0.0/13
103.84.76.0/24
115.72.0.0/13
116.101.65.0/24
117.0.0.0-117.1.147.255
117.1.152.0-117.7.255.255
125.212.128.0-125.212.145.255
125.212.148.0-125.212.191.255
125.214.0.0/20
125.234.0.0-125.234.159.255
125.234.176.0-125.235.27.255
125.235.29.0-125.235.37.255
125.235.40.0-125.235.255.255
171.224.0.0-171.226.7.255
171.226.16.0-171.237.127.255
171.237.132.0-171.237.175.255
171.237.180.0-171.243.255.255
171.244.208.0/20
171.245.0.0-171.255.255.255
203.113.128.0-203.113.171.255
203.113.176.0/20
203.190.160.0-203.190.165.255
203.190.170.0-203.190.173.255
203.190.175.0/24
220.231.64.0/24
220.231.66.0-220.231.123.255
IPv6:
2401:d800::/32
2402:800::/32
Signature Algorithm: sha256WithRSAEncryption
96:73:15:56:71:b2:14:ff:08:d0:28:b8:9f:d7:94:65:09:f5:
be:16:91:66:0f:a4:26:24:e7:6a:72:b8:87:4d:21:64:1d:de:
cc:64:35:95:a0:69:f9:7a:cf:c6:60:6b:fd:94:e2:8c:f4:a2:
71:e9:20:b2:2a:ba:6e:0d:6d:42:89:f3:f0:bf:37:59:a5:f4:
db:19:d9:66:68:59:c2:14:c3:6b:fc:64:d0:1f:34:93:9a:23:
a7:af:50:49:aa:39:3d:49:83:04:41:aa:fb:2e:b4:ba:9d:63:
64:5f:39:33:fc:4c:88:37:c9:62:28:29:4e:15:72:73:15:d3:
fd:06:d3:99:4c:c0:be:80:93:56:b1:9a:34:64:cb:68:b6:31:
59:e3:ac:d8:c7:19:41:62:87:e2:17:e1:f7:84:62:36:d6:3c:
5d:90:87:e5:d6:7b:5c:8a:4a:cc:7d:1e:fd:51:35:58:d1:e9:
91:25:fc:50:b7:43:e2:26:23:f4:60:05:66:21:9d:e7:8c:b5:
b1:80:d6:b8:79:5b:be:9f:ba:f1:2f:6a:92:7b:3b:b3:a3:dc:
c2:1b:48:ab:72:74:03:4f:76:78:f2:59:6c:71:6a:8e:52:c9:
70:e7:3c:5c:7d:e8:f7:53:95:cb:b1:41:35:0e:91:fb:90:ee:
c1:87:c2:fd
-----BEGIN CERTIFICATE-----
MIIGrzCCBZegAwIBAgICQmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3
NTZBQzZGMEEwHhcNMjQwMzMwMTUwMzMwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjA4MjljMi02NWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEApWVziCFmksnFg4Y+kRm8s9yYQV1v/soJ31yZohC8zrxl2kYbByRlFARo/HVY
zOhbUY6u4vp55MP2kz60X2oM+I2CxiH0EaVVFjpVxIHW2U/EAbS61OSpe90T4BI4
0lqh3nj+rGLKy2cDxp6HMgYR33rv1v/ESRCanAcqmL7r9ZdAUk4n/0VEIo9Rhgvg
GzMezlpZemlke9Lsd/B1jwIpwbmvSgOUkCfvirNyU19DzhY5VPbNCMpq8Afi0UF3
ufN7mG0dgE8oNtCf3HGtzqPWaMdu6fMGBzJVrkvslfDGDt30k/QwhkQiOWa8N87Q
f1lm2M1JxNvrx7GtLgxCzwBVswIDAQABo4ID0zCCA88wHQYDVR0OBBYEFOhempv7
EFNKbohcTp5vQbqIvBTLMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE
OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi
d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQUU1QjcwN0NG
QzJDMTFFREIwODQ2MDU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggFbBggrBgEFBQcBBwEB
/wSCAUowggFGMIIBLAQCAAEwggEkMAoDAwYbQAMDABtGAwMDG0gDBABnVEwDAwNz
SAMEAHRlQTAKAwIAdQMEAnUBkDALAwQDdQGYAwMDdQAwDAMEB33UgAMEAX3UkDAM
AwQCfdSUAwQGfdSAAwQEfdYAMAsDAwF96gMEBX3qgDAMAwQEfeqwAwQCfesYMAwD
BAB96x0DBAF96yQwCwMEA33rKAMDAn3oMAsDAwWr4AMEA6viADAMAwQEq+IQAwQH
q+0AMAwDBAKr7YQDBASr7aAwCwMEAqvttAMDAqvwAwQEq/TQMAkDAwCr9QMCAqgw
DAMEB8txgAMEAstxqAMEBMtxsDAMAwQFy76gAwQBy76kMAwDBAHLvqoDBAHLvqwD
BADLvq8DBADc50AwDAMEAdznQgMEAtzneDAUBAIAAjAOAwUAJAHYAAMFACQCCAAw
DQYJKoZIhvcNAQELBQADggEBAJZzFVZxshT/CNAouJ/XlGUJ9b4WkWYPpCYk52py
uIdNIWQd3sxkNZWgafl6z8Zga/2U4oz0onHpILIqum4NbUKJ8/C/N1ml9NsZ2WZo
WcIUw2v8ZNAfNJOaI6evUEmqOT1JgwRBqvsutLqdY2RfOTP8TIg3yWIoKU4VcnMV
0/0G05lMwL6Ak1axmjRky2i2MVnjrNjHGUFih+IX4feEYjbWPF2Qh+XWe1yKSsx9
Hv1RNVjR6ZEl/FC3Q+ImI/RgBWYhneeMtbGA1rh5W76fuvEvapJ7O7Oj3MIbSKty
dANPdnjyWWxxao5SyXDnPFx96PdTlcuxQTUOkfuQ7sGHwv0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:36 2024 by rpki-client on console-fra.rpki-client.org