Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/0003C64C6E9411EFB4F27458C4F9AE02.roa
File: 0003C64C6E9411EFB4F27458C4F9AE02.roa (raw, json)
Hash identifier: 02Ev8Dlgt3A3vPjUvGw38YuYB7Ae8uWIBZcXq/dtOBM=
Subject key identifier: 69:D7:0C:05:89:FE:26:D8:B0:A6:4F:6C:63:69:59:9F:CC:4A:8D:F4
Certificate issuer: /CN=A9120B99/serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4
Certificate serial: 3459
Authority key identifier: 86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/0003C64C6E9411EFB4F27458C4F9AE02.roa
Signing time: Mon 09 Sep 2024 10:12:21 +0000
ROA not before: Mon 09 Sep 2024 10:12:21 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 7540
IP address blocks: 117.18.96.0/24 maxlen: 24
117.18.98.0/24 maxlen: 24
117.18.101.0/24 maxlen: 24
117.18.105.0/24 maxlen: 24
117.18.106.0/24 maxlen: 24
117.18.107.0/24 maxlen: 24
117.18.108.0/24 maxlen: 24
117.18.112.0/24 maxlen: 24
117.18.113.0/24 maxlen: 24
117.18.114.0/24 maxlen: 24
117.18.115.0/24 maxlen: 24
117.18.116.0/24 maxlen: 24
117.18.119.0/24 maxlen: 24
117.18.120.0/24 maxlen: 24
117.18.121.0/24 maxlen: 24
202.4.26.0/23 maxlen: 24
202.181.137.0/24 maxlen: 24
202.181.138.0/24 maxlen: 24
202.181.140.0/24 maxlen: 24
202.181.141.0/24 maxlen: 24
202.181.142.0/24 maxlen: 24
202.181.150.0/24 maxlen: 24
202.181.152.0/24 maxlen: 24
202.181.154.0/24 maxlen: 24
202.181.160.0/24 maxlen: 24
202.181.161.0/24 maxlen: 24
202.181.162.0/24 maxlen: 24
202.181.163.0/24 maxlen: 24
202.181.164.0/24 maxlen: 24
202.181.165.0/24 maxlen: 24
202.181.166.0/24 maxlen: 24
202.181.167.0/24 maxlen: 24
202.181.168.0/24 maxlen: 24
202.181.169.0/24 maxlen: 24
202.181.170.0/24 maxlen: 24
202.181.171.0/24 maxlen: 24
202.181.172.0/24 maxlen: 24
202.181.173.0/24 maxlen: 24
202.181.174.0/24 maxlen: 24
202.181.175.0/24 maxlen: 24
202.181.176.0/24 maxlen: 24
202.181.178.0/24 maxlen: 24
202.181.179.0/24 maxlen: 24
202.181.180.0/24 maxlen: 24
202.181.181.0/24 maxlen: 24
202.181.182.0/24 maxlen: 24
202.181.183.0/24 maxlen: 24
202.181.184.0/24 maxlen: 24
202.181.185.0/24 maxlen: 24
202.181.186.0/24 maxlen: 24
202.181.187.0/24 maxlen: 24
202.181.189.0/24 maxlen: 24
202.181.192.0/24 maxlen: 24
202.181.193.0/24 maxlen: 24
202.181.194.0/24 maxlen: 24
202.181.195.0/24 maxlen: 24
202.181.196.0/24 maxlen: 24
202.181.197.0/24 maxlen: 24
202.181.198.0/24 maxlen: 24
202.181.199.0/24 maxlen: 24
202.181.200.0/24 maxlen: 24
202.181.201.0/24 maxlen: 24
202.181.202.0/24 maxlen: 24
202.181.203.0/24 maxlen: 24
202.181.205.0/24 maxlen: 24
202.181.206.0/24 maxlen: 24
202.181.207.0/24 maxlen: 24
202.181.208.0/24 maxlen: 24
202.181.209.0/24 maxlen: 24
202.181.210.0/24 maxlen: 24
202.181.211.0/24 maxlen: 24
202.181.212.0/24 maxlen: 24
202.181.213.0/24 maxlen: 24
202.181.214.0/24 maxlen: 24
202.181.215.0/24 maxlen: 24
202.181.216.0/24 maxlen: 24
202.181.217.0/24 maxlen: 24
202.181.219.0/24 maxlen: 24
202.181.220.0/24 maxlen: 24
202.181.221.0/24 maxlen: 24
202.181.222.0/24 maxlen: 24
202.181.223.0/24 maxlen: 24
202.181.224.0/24 maxlen: 24
202.181.225.0/24 maxlen: 24
202.181.226.0/24 maxlen: 24
202.181.227.0/24 maxlen: 24
202.181.228.0/24 maxlen: 24
202.181.229.0/24 maxlen: 24
202.181.230.0/24 maxlen: 24
202.181.231.0/24 maxlen: 24
202.181.233.0/24 maxlen: 24
202.181.234.0/24 maxlen: 24
202.181.235.0/24 maxlen: 24
202.181.236.0/24 maxlen: 24
202.181.237.0/24 maxlen: 24
202.181.238.0/24 maxlen: 24
202.181.239.0/24 maxlen: 24
202.181.240.0/24 maxlen: 24
202.181.241.0/24 maxlen: 24
202.181.242.0/24 maxlen: 24
202.181.243.0/24 maxlen: 24
202.181.244.0/24 maxlen: 24
202.181.245.0/24 maxlen: 24
202.181.246.0/24 maxlen: 24
202.181.247.0/24 maxlen: 24
2405:5d00::/64 maxlen: 64
Validation: Failed, certificate revoked on Fri 20 Sep 2024 00:57:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13401 (0x3459)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9120B99/serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4
Validity
Not Before: Sep 9 10:12:21 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66deca04-c9c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:17:ea:d6:90:75:34:c6:43:43:a8:9a:68:56:
56:3f:b4:81:71:1e:42:77:b6:8c:0f:56:aa:c7:b3:
4f:73:74:ad:d0:f2:5d:d3:a0:87:09:9c:5b:03:62:
13:be:df:3e:3c:aa:72:0f:54:c4:68:11:34:91:a7:
2c:ba:51:2c:5a:c4:65:23:67:f4:1f:28:51:92:c2:
2f:41:00:cb:cd:83:16:11:7c:b4:d6:4a:45:8d:88:
a4:e7:f2:3b:f4:28:d7:a0:3b:ce:b7:a0:34:b9:33:
d5:9c:df:b3:01:25:04:bc:0b:4b:37:ae:cc:ee:02:
95:3d:04:19:ff:af:25:fd:41:6d:39:ed:b1:d0:9d:
63:b1:a4:d1:5e:61:98:34:1d:71:e1:ed:02:c2:f8:
06:86:45:ca:bf:d2:d4:6a:e9:a9:c5:f0:f8:1b:f9:
0c:66:94:92:43:94:25:ec:e9:36:0b:d8:24:1f:6b:
72:8b:ce:5d:92:37:d6:9a:12:f1:70:2d:f1:70:7a:
40:9f:38:6c:e0:0d:ea:37:bd:12:2c:32:3d:1a:10:
dc:19:61:29:be:0a:8f:14:19:2a:31:47:9e:f6:51:
5c:ca:98:eb:8e:ce:d0:97:5a:57:e9:ab:7e:9f:e0:
c0:f1:3b:0a:93:ac:18:4e:54:97:ec:80:0a:72:f8:
f2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:D7:0C:05:89:FE:26:D8:B0:A6:4F:6C:63:69:59:9F:CC:4A:8D:F4
X509v3 Authority Key Identifier:
keyid:86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/0003C64C6E9411EFB4F27458C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
117.18.96.0/24
117.18.98.0/24
117.18.101.0/24
117.18.105.0-117.18.108.255
117.18.112.0-117.18.116.255
117.18.119.0-117.18.121.255
202.4.26.0/23
202.181.137.0-202.181.138.255
202.181.140.0-202.181.142.255
202.181.150.0/24
202.181.152.0/24
202.181.154.0/24
202.181.160.0-202.181.176.255
202.181.178.0-202.181.187.255
202.181.189.0/24
202.181.192.0-202.181.203.255
202.181.205.0-202.181.217.255
202.181.219.0-202.181.231.255
202.181.233.0-202.181.247.255
IPv6:
2405:5d00::/64
Signature Algorithm: sha256WithRSAEncryption
9e:05:56:ea:c2:2e:c8:93:10:1a:97:34:61:91:0b:c7:b6:9a:
06:4a:09:e7:ee:7f:56:37:fe:58:f0:0d:b6:50:45:fd:ad:7a:
fb:89:81:6b:3d:70:44:ba:48:63:6f:11:da:c4:79:82:66:bd:
6d:10:7f:63:54:48:e3:86:4d:23:a4:40:f0:bd:05:ab:8c:3f:
f1:6a:c1:0b:7c:5d:f4:c1:ff:f4:ab:9b:ee:33:a5:22:bf:dc:
81:c6:46:6f:a2:f0:10:ae:76:33:da:74:35:9a:6a:60:20:a0:
16:e7:14:0d:08:84:ca:90:59:b6:b3:2f:0f:79:56:86:19:30:
2f:26:93:83:fc:c1:f9:ad:e8:2d:bc:d2:da:71:79:c9:40:87:
23:28:cf:41:67:52:27:76:b8:5a:2c:b7:f7:5f:c5:7e:2b:ec:
10:25:b9:bb:5e:1a:d0:d4:47:b4:2e:57:2c:f1:04:b1:ff:2c:
0f:84:12:c5:a1:5f:55:a0:66:25:76:7b:d6:9b:92:2e:04:29:
95:72:1d:c4:dc:c7:9b:15:b6:bc:39:9c:b6:1c:c8:9d:cb:fe:
0e:6f:c4:8d:82:6b:9a:6e:c9:18:e6:69:43:fe:8e:10:54:a1:
84:df:2f:37:c9:0a:9c:d0:5d:bc:63:80:11:17:9d:a1:6f:8e:
89:8e:ef:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 20 06:32:04 2024 by rpki-client on console-fra.rpki-client.org