Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/79BBB4DA289F11EFAEEAD06EC4F9AE02.roa
File: 79BBB4DA289F11EFAEEAD06EC4F9AE02.roa (raw, json)
Hash identifier: J/3Mft7TEHxuyFpgXQJtlL8FofpsmcR53IF2X4OoxeQ=
Subject key identifier: 43:8E:C7:7C:90:87:F5:87:70:CB:35:14:D1:5C:34:CA:B5:B6:1F:9A
Certificate issuer: /CN=A9120B99/serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4
Certificate serial: 3448
Authority key identifier: 86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/79BBB4DA289F11EFAEEAD06EC4F9AE02.roa
Signing time: Wed 21 Aug 2024 10:37:49 +0000
ROA not before: Wed 21 Aug 2024 10:37:49 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 7540
IP address blocks: 117.18.96.0/24 maxlen: 24
117.18.98.0/24 maxlen: 24
117.18.101.0/24 maxlen: 24
117.18.105.0/24 maxlen: 24
117.18.106.0/24 maxlen: 24
117.18.107.0/24 maxlen: 24
117.18.108.0/24 maxlen: 24
117.18.110.0/24 maxlen: 24
117.18.112.0/24 maxlen: 24
117.18.113.0/24 maxlen: 24
117.18.114.0/24 maxlen: 24
117.18.115.0/24 maxlen: 24
117.18.116.0/24 maxlen: 24
117.18.119.0/24 maxlen: 24
117.18.120.0/24 maxlen: 24
117.18.121.0/24 maxlen: 24
202.4.26.0/23 maxlen: 24
202.181.137.0/24 maxlen: 24
202.181.138.0/24 maxlen: 24
202.181.140.0/24 maxlen: 24
202.181.141.0/24 maxlen: 24
202.181.142.0/24 maxlen: 24
202.181.150.0/24 maxlen: 24
202.181.152.0/24 maxlen: 24
202.181.154.0/24 maxlen: 24
202.181.160.0/24 maxlen: 24
202.181.161.0/24 maxlen: 24
202.181.162.0/24 maxlen: 24
202.181.163.0/24 maxlen: 24
202.181.164.0/24 maxlen: 24
202.181.165.0/24 maxlen: 24
202.181.166.0/24 maxlen: 24
202.181.167.0/24 maxlen: 24
202.181.168.0/24 maxlen: 24
202.181.169.0/24 maxlen: 24
202.181.170.0/24 maxlen: 24
202.181.171.0/24 maxlen: 24
202.181.172.0/24 maxlen: 24
202.181.173.0/24 maxlen: 24
202.181.174.0/24 maxlen: 24
202.181.175.0/24 maxlen: 24
202.181.176.0/24 maxlen: 24
202.181.178.0/24 maxlen: 24
202.181.179.0/24 maxlen: 24
202.181.180.0/24 maxlen: 24
202.181.181.0/24 maxlen: 24
202.181.182.0/24 maxlen: 24
202.181.183.0/24 maxlen: 24
202.181.184.0/24 maxlen: 24
202.181.185.0/24 maxlen: 24
202.181.186.0/24 maxlen: 24
202.181.187.0/24 maxlen: 24
202.181.189.0/24 maxlen: 24
202.181.190.0/24 maxlen: 24
202.181.191.0/24 maxlen: 24
202.181.192.0/24 maxlen: 24
202.181.193.0/24 maxlen: 24
202.181.194.0/24 maxlen: 24
202.181.195.0/24 maxlen: 24
202.181.196.0/24 maxlen: 24
202.181.197.0/24 maxlen: 24
202.181.198.0/24 maxlen: 24
202.181.199.0/24 maxlen: 24
202.181.200.0/24 maxlen: 24
202.181.201.0/24 maxlen: 24
202.181.202.0/24 maxlen: 24
202.181.203.0/24 maxlen: 24
202.181.205.0/24 maxlen: 24
202.181.206.0/24 maxlen: 24
202.181.207.0/24 maxlen: 24
202.181.208.0/24 maxlen: 24
202.181.209.0/24 maxlen: 24
202.181.210.0/24 maxlen: 24
202.181.211.0/24 maxlen: 24
202.181.212.0/24 maxlen: 24
202.181.213.0/24 maxlen: 24
202.181.214.0/24 maxlen: 24
202.181.215.0/24 maxlen: 24
202.181.216.0/24 maxlen: 24
202.181.217.0/24 maxlen: 24
202.181.219.0/24 maxlen: 24
202.181.220.0/24 maxlen: 24
202.181.221.0/24 maxlen: 24
202.181.222.0/24 maxlen: 24
202.181.223.0/24 maxlen: 24
202.181.224.0/24 maxlen: 24
202.181.225.0/24 maxlen: 24
202.181.226.0/24 maxlen: 24
202.181.227.0/24 maxlen: 24
202.181.228.0/24 maxlen: 24
202.181.229.0/24 maxlen: 24
202.181.230.0/24 maxlen: 24
202.181.231.0/24 maxlen: 24
202.181.233.0/24 maxlen: 24
202.181.234.0/24 maxlen: 24
202.181.235.0/24 maxlen: 24
202.181.236.0/24 maxlen: 24
202.181.237.0/24 maxlen: 24
202.181.238.0/24 maxlen: 24
202.181.239.0/24 maxlen: 24
202.181.240.0/24 maxlen: 24
202.181.241.0/24 maxlen: 24
202.181.242.0/24 maxlen: 24
202.181.243.0/24 maxlen: 24
202.181.244.0/24 maxlen: 24
202.181.245.0/24 maxlen: 24
202.181.246.0/24 maxlen: 24
202.181.247.0/24 maxlen: 24
202.181.248.0/23 maxlen: 24
2405:5d00::/64 maxlen: 64
Validation: Failed, certificate revoked on Mon 09 Sep 2024 10:11:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13384 (0x3448)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9120B99/serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4
Validity
Not Before: Aug 21 10:37:49 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66c5c37d-17a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:37:8f:ce:42:b2:7f:90:e1:7e:bf:93:5d:2f:
2e:28:7e:4f:62:af:a5:02:9e:0e:a6:71:c3:fd:84:
ab:8b:48:78:c9:cd:f3:bf:ab:cd:db:cd:7a:32:5b:
78:8e:bf:e0:f8:0b:b8:7c:68:14:bf:e3:16:a8:8c:
0e:ee:ef:bc:2c:38:8c:fb:1b:8e:95:8f:48:73:83:
e5:d0:46:ee:7a:77:1b:31:ef:6c:b6:ac:76:2e:c9:
63:8d:18:22:91:55:db:81:5d:df:6c:ab:5c:3b:ae:
04:4d:2d:d1:57:11:92:19:57:93:4e:d3:d7:7f:37:
6b:e3:24:bf:95:a4:ef:77:dc:61:3a:5a:c2:e8:40:
6e:0c:64:f1:62:88:ad:7a:f2:8d:28:e0:96:df:68:
e6:b9:0b:31:ce:ac:a3:be:ff:eb:90:13:6c:ee:07:
6e:7b:66:6a:b9:99:cb:e6:55:42:b9:d8:77:9f:5c:
6a:86:0d:fb:30:74:1d:e4:e9:d4:69:d5:4d:bc:f9:
3b:85:db:f1:30:40:70:1d:34:a3:b1:71:c5:3a:30:
75:86:59:f4:d7:70:37:b2:fb:3f:64:c3:ad:2c:37:
af:eb:c7:6b:43:41:2a:9b:42:ac:e6:17:b5:82:de:
41:52:93:d5:7c:1b:7e:a3:d1:45:59:34:b4:59:61:
f7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:8E:C7:7C:90:87:F5:87:70:CB:35:14:D1:5C:34:CA:B5:B6:1F:9A
X509v3 Authority Key Identifier:
keyid:86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/79BBB4DA289F11EFAEEAD06EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
117.18.96.0/24
117.18.98.0/24
117.18.101.0/24
117.18.105.0-117.18.108.255
117.18.110.0/24
117.18.112.0-117.18.116.255
117.18.119.0-117.18.121.255
202.4.26.0/23
202.181.137.0-202.181.138.255
202.181.140.0-202.181.142.255
202.181.150.0/24
202.181.152.0/24
202.181.154.0/24
202.181.160.0-202.181.176.255
202.181.178.0-202.181.187.255
202.181.189.0-202.181.203.255
202.181.205.0-202.181.217.255
202.181.219.0-202.181.231.255
202.181.233.0-202.181.249.255
IPv6:
2405:5d00::/64
Signature Algorithm: sha256WithRSAEncryption
7a:66:43:4c:c7:e5:59:d1:00:3d:b3:dd:67:c2:74:03:a6:fd:
2c:ca:30:c5:91:55:db:1d:cd:72:cb:c3:7b:ba:f5:a7:00:73:
41:06:fa:35:61:5f:38:17:9f:81:43:24:13:cf:96:fc:31:d0:
14:dd:07:ce:e6:b8:55:15:2e:5e:c6:b6:59:44:d4:01:7f:e8:
5e:bb:db:9e:74:cf:cc:fb:f3:82:f9:59:f1:27:f4:21:f5:65:
0f:17:c1:e4:12:ac:69:31:45:19:d9:2d:c8:6c:63:bf:39:51:
58:ab:dc:6c:3b:06:6d:20:20:85:1b:1e:65:ba:fb:b4:44:83:
b8:64:1b:6a:a6:1e:6b:ba:98:28:3a:5e:1a:0e:32:d0:41:80:
79:f1:25:a9:82:2a:5c:23:71:68:d5:e9:2f:20:26:d2:20:ae:
cf:38:a8:20:83:7d:12:ba:c2:61:2c:ed:5d:e9:fb:21:8f:04:
52:1a:ef:d6:29:39:0c:dc:04:7e:f0:40:52:78:2f:5a:b8:c8:
ee:a0:f9:78:a9:97:f4:4e:ea:ad:29:f0:a1:eb:e9:08:96:4b:
7a:77:6a:b3:81:55:f2:53:10:61:9f:03:3e:85:6e:aa:7f:31:
be:7d:7f:d4:10:ba:82:1b:8c:34:16:2d:8c:9f:49:92:a1:d2:
b5:39:a3:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 12:52:54 2024 by rpki-client on console-ams.rpki-client.org