Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/1BF1AC14248611EF9F7E5974C4F9AE02.roa
File: 1BF1AC14248611EF9F7E5974C4F9AE02.roa (raw, json)
Hash identifier: ZDTzFGiuCdvuPy182nVTy4KAiRClpEYcQ/kmTCjOXbk=
Subject key identifier: 3A:A9:12:93:55:17:8F:2F:54:87:C6:D4:29:C8:32:9A:66:8B:45:14
Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Certificate serial: 3536
Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/1BF1AC14248611EF9F7E5974C4F9AE02.roa
Signing time: Thu 01 Aug 2024 12:09:49 +0000
ROA not before: Thu 01 Aug 2024 12:09:49 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 23750
IP address blocks: 103.207.84.0/24 maxlen: 24
103.207.86.0/24 maxlen: 24
103.207.87.0/24 maxlen: 24
116.90.100.0/24 maxlen: 24
116.90.101.0/24 maxlen: 24
116.90.105.0/24 maxlen: 24
116.90.106.0/24 maxlen: 24
116.90.107.0/24 maxlen: 24
116.90.108.0/24 maxlen: 24
116.90.109.0/24 maxlen: 24
116.90.110.0/24 maxlen: 24
116.90.111.0/24 maxlen: 24
116.90.115.0/24 maxlen: 24
116.90.120.0/24 maxlen: 24
116.90.123.0/24 maxlen: 24
116.90.124.0/24 maxlen: 24
116.90.125.0/24 maxlen: 24
116.90.126.0/24 maxlen: 24
116.90.127.0/24 maxlen: 24
121.46.64.0/24 maxlen: 24
121.46.66.0/24 maxlen: 24
121.46.67.0/24 maxlen: 24
202.69.32.0/24 maxlen: 24
202.69.33.0/24 maxlen: 24
202.69.34.0/24 maxlen: 24
202.69.35.0/24 maxlen: 24
202.69.36.0/24 maxlen: 24
202.69.37.0/24 maxlen: 24
202.69.38.0/24 maxlen: 24
202.69.39.0/24 maxlen: 24
202.69.40.0/24 maxlen: 24
202.69.41.0/24 maxlen: 24
202.69.42.0/24 maxlen: 24
202.69.43.0/24 maxlen: 24
202.69.44.0/24 maxlen: 24
202.69.45.0/24 maxlen: 24
202.69.46.0/24 maxlen: 24
202.69.47.0/24 maxlen: 24
202.69.48.0/24 maxlen: 24
202.69.49.0/24 maxlen: 24
202.69.50.0/24 maxlen: 24
202.69.51.0/24 maxlen: 24
202.69.52.0/24 maxlen: 24
202.69.53.0/24 maxlen: 24
202.69.54.0/24 maxlen: 24
202.69.55.0/24 maxlen: 24
202.69.56.0/24 maxlen: 24
202.69.57.0/24 maxlen: 24
202.69.58.0/24 maxlen: 24
202.69.59.0/24 maxlen: 24
202.69.60.0/24 maxlen: 24
202.69.61.0/24 maxlen: 24
202.69.62.0/24 maxlen: 24
202.69.63.0/24 maxlen: 24
202.142.144.0/24 maxlen: 24
202.142.145.0/24 maxlen: 24
202.142.146.0/24 maxlen: 24
202.142.147.0/24 maxlen: 24
202.142.148.0/24 maxlen: 24
202.142.149.0/24 maxlen: 24
202.142.150.0/24 maxlen: 24
202.142.152.0/24 maxlen: 24
202.142.153.0/24 maxlen: 24
202.142.154.0/24 maxlen: 24
202.142.156.0/24 maxlen: 24
202.142.157.0/24 maxlen: 24
202.142.158.0/24 maxlen: 24
202.142.159.0/24 maxlen: 24
2406:ac00:1::/48 maxlen: 48
2406:ac00:2::/48 maxlen: 48
2406:ac00:203::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Aug 2024 14:07:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13622 (0x3536)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Validity
Not Before: Aug 1 12:09:49 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=66ab7b0d-e699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f2:97:06:c9:2d:fe:79:78:02:74:83:16:74:
1c:bd:c9:27:12:c7:a2:34:bc:bc:9a:e5:29:6b:c4:
04:12:38:15:52:4d:2b:0b:15:6d:14:dd:5c:0d:48:
37:3c:b6:be:e2:c7:43:ec:84:b6:6e:40:82:77:77:
95:81:02:34:1e:db:2d:c0:53:60:44:5a:4d:ce:be:
a3:d2:28:bc:d5:ac:cc:64:bd:e4:c0:e9:19:7d:4c:
fe:e2:e1:b9:50:2d:41:c9:5d:46:56:1d:7c:80:d8:
91:74:db:86:39:e6:85:01:59:b5:50:bb:c2:da:84:
d9:ed:2d:62:ba:36:97:01:7f:9b:74:a5:3d:d8:8b:
ac:48:bc:67:48:32:0d:ab:ac:73:22:74:ff:14:19:
97:a6:0c:db:b1:d3:b1:36:2b:6a:1f:1a:20:31:6c:
90:03:17:92:c8:d6:19:96:be:ca:93:c8:53:d9:04:
ef:04:fe:42:4a:d5:8e:5f:32:a5:98:f4:53:bc:85:
ac:52:89:52:3d:96:27:78:c0:ed:77:05:12:82:04:
55:e0:27:8e:e9:64:d5:cf:eb:7d:90:33:66:b9:15:
c0:c2:21:e0:30:7b:fa:62:ee:40:a9:89:2e:2c:9c:
09:5f:76:06:62:3b:d6:9b:0e:98:bf:37:fc:e1:d0:
ed:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:A9:12:93:55:17:8F:2F:54:87:C6:D4:29:C8:32:9A:66:8B:45:14
X509v3 Authority Key Identifier:
keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/1BF1AC14248611EF9F7E5974C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.207.84.0/24
103.207.86.0/23
116.90.100.0/23
116.90.105.0-116.90.111.255
116.90.115.0/24
116.90.120.0/24
116.90.123.0-116.90.127.255
121.46.64.0/24
121.46.66.0/23
202.69.32.0/19
202.142.144.0-202.142.150.255
202.142.152.0-202.142.154.255
202.142.156.0/22
IPv6:
2406:ac00:1::-2406:ac00:2:ffff:ffff:ffff:ffff:ffff
2406:ac00:203::/48
Signature Algorithm: sha256WithRSAEncryption
17:d7:13:99:05:08:28:0f:64:d6:9f:78:74:f4:08:95:3c:97:
0c:d4:77:b0:ad:b7:68:58:0a:10:df:a4:d8:72:6a:53:90:64:
b2:e3:79:ef:df:56:6a:ca:5d:d6:4b:ab:f6:d4:23:0d:26:7c:
b6:f8:08:5b:14:63:b4:31:6b:93:ce:8b:e9:40:a7:58:e5:7c:
94:03:22:b7:ed:83:cf:5c:1c:85:a2:80:8d:d8:8f:7b:6b:3d:
a4:71:1f:1f:79:23:e1:2c:f8:21:8b:1d:6d:ef:08:72:b7:99:
67:8b:a4:9d:eb:d4:7b:cc:68:62:21:78:4b:de:30:cc:65:a6:
97:76:69:5b:2b:5a:e7:a7:1b:ab:a8:c7:56:3c:64:4a:53:54:
f2:3d:8d:92:47:d3:0e:83:49:e1:41:82:51:44:a4:aa:63:44:
af:7b:c1:f2:b3:d0:8f:01:9d:bb:bb:db:fa:40:2a:ef:e4:5a:
f5:45:56:0d:1e:e8:fc:ae:d1:af:1e:1b:10:cf:c6:f3:a2:27:
46:2a:05:ff:78:4c:00:52:cc:5d:94:b6:70:6d:22:d3:4d:2f:
4b:15:60:3c:9b:f9:01:ab:75:14:4b:86:0f:64:4b:cc:b4:f5:
03:2f:cf:2d:55:fd:13:c4:c9:34:4a:94:01:19:9e:95:0a:09:
c4:19:85:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 7 16:56:25 2024 by rpki-client on console-fra.rpki-client.org