Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/D122FF96B37711EE9BD55668C4F9AE02.roa
File: D122FF96B37711EE9BD55668C4F9AE02.roa (raw, json)
Hash identifier: yGRqHgzTmBA0bZwjxKp6PtjLLVD1nQd4nK//oXs1Nec=
Subject key identifier: C5:D7:7D:D6:97:BA:60:56:34:51:BC:46:B6:42:1A:45:E4:7A:9C:EC
Certificate issuer: /CN=A9120B99/serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4
Certificate serial: 33A2
Authority key identifier: 86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/D122FF96B37711EE9BD55668C4F9AE02.roa
Signing time: Mon 15 Jan 2024 07:29:29 +0000
ROA not before: Mon 15 Jan 2024 07:29:29 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 7540
IP address blocks: 117.18.96.0/24 maxlen: 24
117.18.98.0/24 maxlen: 24
117.18.101.0/24 maxlen: 24
117.18.102.0/24 maxlen: 24
117.18.103.0/24 maxlen: 24
117.18.105.0/24 maxlen: 24
117.18.106.0/24 maxlen: 24
117.18.107.0/24 maxlen: 24
117.18.108.0/24 maxlen: 24
117.18.110.0/24 maxlen: 24
117.18.112.0/24 maxlen: 24
117.18.113.0/24 maxlen: 24
117.18.114.0/24 maxlen: 24
117.18.115.0/24 maxlen: 24
117.18.116.0/24 maxlen: 24
117.18.119.0/24 maxlen: 24
117.18.120.0/24 maxlen: 24
117.18.121.0/24 maxlen: 24
117.18.124.0/24 maxlen: 24
117.18.125.0/24 maxlen: 24
117.18.126.0/24 maxlen: 24
202.181.137.0/24 maxlen: 24
202.181.138.0/24 maxlen: 24
202.181.139.0/24 maxlen: 24
202.181.140.0/24 maxlen: 24
202.181.141.0/24 maxlen: 24
202.181.142.0/24 maxlen: 24
202.181.143.0/24 maxlen: 24
202.181.148.0/24 maxlen: 24
202.181.150.0/24 maxlen: 24
202.181.151.0/24 maxlen: 24
202.181.152.0/24 maxlen: 24
202.181.154.0/24 maxlen: 24
202.181.156.0/24 maxlen: 24
202.181.157.0/24 maxlen: 24
202.181.158.0/24 maxlen: 24
202.181.159.0/24 maxlen: 24
202.181.160.0/24 maxlen: 24
202.181.161.0/24 maxlen: 24
202.181.162.0/24 maxlen: 24
202.181.163.0/24 maxlen: 24
202.181.164.0/24 maxlen: 24
202.181.165.0/24 maxlen: 24
202.181.166.0/24 maxlen: 24
202.181.167.0/24 maxlen: 24
202.181.168.0/24 maxlen: 24
202.181.169.0/24 maxlen: 24
202.181.170.0/24 maxlen: 24
202.181.171.0/24 maxlen: 24
202.181.172.0/24 maxlen: 24
202.181.173.0/24 maxlen: 24
202.181.174.0/24 maxlen: 24
202.181.175.0/24 maxlen: 24
202.181.176.0/24 maxlen: 24
202.181.178.0/24 maxlen: 24
202.181.179.0/24 maxlen: 24
202.181.180.0/24 maxlen: 24
202.181.181.0/24 maxlen: 24
202.181.182.0/24 maxlen: 24
202.181.183.0/24 maxlen: 24
202.181.184.0/24 maxlen: 24
202.181.185.0/24 maxlen: 24
202.181.186.0/24 maxlen: 24
202.181.187.0/24 maxlen: 24
202.181.189.0/24 maxlen: 24
202.181.190.0/24 maxlen: 24
202.181.191.0/24 maxlen: 24
202.181.192.0/24 maxlen: 24
202.181.193.0/24 maxlen: 24
202.181.194.0/24 maxlen: 24
202.181.195.0/24 maxlen: 24
202.181.196.0/24 maxlen: 24
202.181.197.0/24 maxlen: 24
202.181.198.0/24 maxlen: 24
202.181.199.0/24 maxlen: 24
202.181.200.0/24 maxlen: 24
202.181.201.0/24 maxlen: 24
202.181.202.0/24 maxlen: 24
202.181.203.0/24 maxlen: 24
202.181.205.0/24 maxlen: 24
202.181.206.0/24 maxlen: 24
202.181.207.0/24 maxlen: 24
202.181.208.0/24 maxlen: 24
202.181.209.0/24 maxlen: 24
202.181.210.0/24 maxlen: 24
202.181.211.0/24 maxlen: 24
202.181.212.0/24 maxlen: 24
202.181.213.0/24 maxlen: 24
202.181.214.0/24 maxlen: 24
202.181.215.0/24 maxlen: 24
202.181.216.0/24 maxlen: 24
202.181.217.0/24 maxlen: 24
202.181.219.0/24 maxlen: 24
202.181.220.0/24 maxlen: 24
202.181.221.0/24 maxlen: 24
202.181.222.0/24 maxlen: 24
202.181.223.0/24 maxlen: 24
202.181.224.0/24 maxlen: 24
202.181.225.0/24 maxlen: 24
202.181.226.0/24 maxlen: 24
202.181.227.0/24 maxlen: 24
202.181.228.0/24 maxlen: 24
202.181.229.0/24 maxlen: 24
202.181.230.0/24 maxlen: 24
202.181.231.0/24 maxlen: 24
202.181.233.0/24 maxlen: 24
202.181.234.0/24 maxlen: 24
202.181.235.0/24 maxlen: 24
202.181.236.0/24 maxlen: 24
202.181.237.0/24 maxlen: 24
202.181.238.0/24 maxlen: 24
202.181.239.0/24 maxlen: 24
202.181.240.0/24 maxlen: 24
202.181.241.0/24 maxlen: 24
202.181.242.0/24 maxlen: 24
202.181.243.0/24 maxlen: 24
202.181.244.0/24 maxlen: 24
202.181.245.0/24 maxlen: 24
202.181.246.0/24 maxlen: 24
202.181.247.0/24 maxlen: 24
202.181.248.0/23 maxlen: 24
2405:5d00::/64 maxlen: 64
Validation: Failed, certificate revoked on Wed 06 Mar 2024 07:27:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13218 (0x33a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9120B99/serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4
Validity
Not Before: Jan 15 07:29:29 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65a4ded8-5b97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ef:09:8a:6f:09:af:2c:a2:1c:84:d2:fe:61:
ca:90:67:40:74:35:48:f4:db:c6:d5:b4:16:4b:ec:
b5:9d:a6:41:2c:0e:0c:4c:e3:d9:77:e6:1d:22:8a:
88:10:ee:29:e3:bc:3f:5f:61:72:32:a6:c6:93:52:
5d:05:30:53:3a:79:42:a5:f4:1f:f7:28:93:70:b1:
32:dd:a6:0c:06:04:b5:05:0a:ad:77:eb:bb:26:98:
a4:b0:92:80:33:2d:bb:ab:ff:c0:48:45:86:13:75:
53:6f:87:68:d5:3d:1d:0b:d5:a5:30:a6:3a:ad:8e:
96:11:05:9a:3e:ae:06:c9:38:a2:90:93:a9:17:23:
31:7c:33:d1:dc:4c:69:9a:45:78:7e:fe:9a:46:f9:
68:4b:1e:14:97:f1:ed:d3:dc:5f:ff:06:68:bf:07:
bf:94:bd:8a:0a:9a:00:22:db:9e:da:c4:86:bf:b2:
8c:14:2f:0e:d8:6c:6c:92:7b:9f:07:3f:44:0a:64:
a0:3a:d0:f3:2e:85:59:9b:a5:0d:71:39:ea:cc:27:
bc:b1:76:6e:e9:8f:d2:e6:55:ee:64:c3:1e:5f:ab:
21:39:8d:40:2c:84:43:a0:c1:22:d9:76:e7:65:24:
03:b5:75:c7:1b:cd:76:73:d3:d5:4c:9b:bb:9c:29:
fc:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:D7:7D:D6:97:BA:60:56:34:51:BC:46:B6:42:1A:45:E4:7A:9C:EC
X509v3 Authority Key Identifier:
keyid:86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/D122FF96B37711EE9BD55668C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
117.18.96.0/24
117.18.98.0/24
117.18.101.0-117.18.103.255
117.18.105.0-117.18.108.255
117.18.110.0/24
117.18.112.0-117.18.116.255
117.18.119.0-117.18.121.255
117.18.124.0-117.18.126.255
202.181.137.0-202.181.143.255
202.181.148.0/24
202.181.150.0-202.181.152.255
202.181.154.0/24
202.181.156.0-202.181.176.255
202.181.178.0-202.181.187.255
202.181.189.0-202.181.203.255
202.181.205.0-202.181.217.255
202.181.219.0-202.181.231.255
202.181.233.0-202.181.249.255
IPv6:
2405:5d00::/64
Signature Algorithm: sha256WithRSAEncryption
40:5d:f3:d9:2f:ed:4d:c3:9b:e2:19:d2:6a:cc:15:85:62:58:
22:46:be:1f:b2:35:b9:ad:bd:ce:e8:3a:18:2d:72:e7:b6:e6:
a0:21:b3:b8:61:9b:f9:fa:ca:00:da:45:c2:b8:66:c1:b9:cf:
b4:ac:30:7f:75:9a:17:e8:63:28:63:ee:af:e9:70:61:32:68:
f0:fd:47:b0:90:b2:54:7d:8d:0e:d4:04:d3:0d:d7:60:d2:35:
d6:9a:ba:95:59:e0:46:93:3b:dd:84:69:ec:38:41:9b:31:23:
56:bb:58:f3:2d:7f:7f:49:98:79:b4:4b:c6:b4:de:e2:98:38:
51:07:b5:b7:df:53:7b:ee:8c:b6:9c:db:2b:fc:1e:c7:58:ed:
83:34:01:e8:07:8d:cc:fb:3f:55:d5:30:04:2a:a8:2d:91:05:
7a:1e:60:ee:e0:2c:1f:1a:eb:93:cb:f0:51:94:e1:76:3b:05:
d9:af:51:8c:eb:10:ba:6e:22:de:ef:f2:30:ca:a3:5a:47:79:
4f:56:ec:1c:58:51:aa:f9:70:30:30:07:bf:0b:08:98:c2:66:
c8:4b:35:aa:d9:39:c0:89:e0:97:ed:e3:c4:4b:de:be:b3:0e:
5f:2d:69:ca:10:7b:dc:45:95:df:d2:b3:b0:5d:b4:b4:c5:fe:
ee:2c:b3:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 6 11:26:28 2024 by rpki-client on console-ams.rpki-client.org