Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912B600/A36A626E1D9311E286175DF708B02CD2/7D5F356C26FF11EBAC6E5B50C4F9AE02.roa
File: 7D5F356C26FF11EBAC6E5B50C4F9AE02.roa (raw, json)
Hash identifier: XF7e62LJb04At7Z1RZfIrsc6mU2sqH6Rpiz7Hnn12A0=
Subject key identifier: FF:D0:52:8D:55:EE:E0:DE:7B:02:BE:2E:39:97:75:14:FD:5C:85:32
Certificate issuer: /CN=A912B600/serialNumber=2F44AEBA0A5544065889705BC2EF1CDAE1158325
Certificate serial: 3422
Authority key identifier: 2F:44:AE:BA:0A:55:44:06:58:89:70:5B:C2:EF:1C:DA:E1:15:83:25
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0SuugpVRAZYiXBbwu8c2uEVgyU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912B600/A36A626E1D9311E286175DF708B02CD2/7D5F356C26FF11EBAC6E5B50C4F9AE02.roa
Signing time: Sat 24 Aug 2024 15:01:06 +0000
ROA not before: Sat 24 Aug 2024 15:01:06 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 38466
IP address blocks: 27.125.224.0/19 maxlen: 19
27.125.224.0/24 maxlen: 24
27.125.225.0/24 maxlen: 24
27.125.226.0/24 maxlen: 24
27.125.227.0/24 maxlen: 24
27.125.228.0/24 maxlen: 24
27.125.229.0/24 maxlen: 24
27.125.230.0/24 maxlen: 24
27.125.231.0/24 maxlen: 24
27.125.232.0/24 maxlen: 24
27.125.233.0/24 maxlen: 24
27.125.234.0/24 maxlen: 24
27.125.235.0/24 maxlen: 24
27.125.236.0/24 maxlen: 24
27.125.237.0/24 maxlen: 24
27.125.238.0/24 maxlen: 24
27.125.239.0/24 maxlen: 24
27.125.240.0/24 maxlen: 24
27.125.241.0/24 maxlen: 24
27.125.242.0/24 maxlen: 24
27.125.243.0/24 maxlen: 24
27.125.244.0/24 maxlen: 24
27.125.245.0/24 maxlen: 24
27.125.246.0/24 maxlen: 24
27.125.247.0/24 maxlen: 24
27.125.248.0/24 maxlen: 24
27.125.249.0/24 maxlen: 24
27.125.250.0/24 maxlen: 24
27.125.251.0/24 maxlen: 24
27.125.252.0/24 maxlen: 24
27.125.253.0/24 maxlen: 24
27.125.254.0/24 maxlen: 24
27.125.255.0/24 maxlen: 24
103.1.144.0/22 maxlen: 22
103.1.144.0/24 maxlen: 24
103.1.145.0/24 maxlen: 24
103.1.146.0/24 maxlen: 24
103.1.147.0/24 maxlen: 24
113.30.232.0/21 maxlen: 21
113.30.232.0/24 maxlen: 24
113.30.233.0/24 maxlen: 24
113.30.234.0/23 maxlen: 24
113.30.236.0/22 maxlen: 24
123.136.96.0/19 maxlen: 19
123.136.96.0/24 maxlen: 24
123.136.97.0/24 maxlen: 24
123.136.98.0/24 maxlen: 24
123.136.99.0/24 maxlen: 24
123.136.100.0/24 maxlen: 24
123.136.101.0/24 maxlen: 24
123.136.102.0/23 maxlen: 24
123.136.104.0/22 maxlen: 22
123.136.104.0/24 maxlen: 24
123.136.105.0/24 maxlen: 24
123.136.106.0/24 maxlen: 24
123.136.107.0/24 maxlen: 24
123.136.108.0/24 maxlen: 24
123.136.109.0/24 maxlen: 24
123.136.110.0/24 maxlen: 24
123.136.111.0/24 maxlen: 24
123.136.112.0/24 maxlen: 24
123.136.113.0/24 maxlen: 24
123.136.114.0/24 maxlen: 24
123.136.115.0/24 maxlen: 24
123.136.116.0/24 maxlen: 24
123.136.117.0/24 maxlen: 24
123.136.118.0/24 maxlen: 24
123.136.119.0/24 maxlen: 24
123.136.120.0/24 maxlen: 24
123.136.121.0/24 maxlen: 24
123.136.122.0/24 maxlen: 24
123.136.123.0/24 maxlen: 24
123.136.124.0/24 maxlen: 24
123.136.125.0/24 maxlen: 24
123.136.126.0/24 maxlen: 24
123.136.127.0/24 maxlen: 24
2405:3800::/32 maxlen: 32
2405:3800:80::/41 maxlen: 41
2405:3800:100::/41 maxlen: 41
2405:3800:200::/41 maxlen: 41
2405:3800:280::/41 maxlen: 41
2405:3800:380::/41 maxlen: 41
2405:3800:400::/41 maxlen: 41
2405:3800:480::/41 maxlen: 41
2405:3800:500::/41 maxlen: 41
Validation: Failed, certificate revoked on Tue 12 Nov 2024 07:26:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13346 (0x3422)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912B600/serialNumber=2F44AEBA0A5544065889705BC2EF1CDAE1158325
Validity
Not Before: Aug 24 15:01:06 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66c9f5b2-7328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d1:e9:f8:3f:eb:f1:ea:e9:b3:e0:11:88:9e:
69:1e:1c:14:f5:f9:c3:71:f2:53:d5:f7:0c:1c:9e:
44:57:10:ff:1e:e0:ba:a5:0f:ed:66:be:c8:cc:9e:
3c:5c:22:37:b5:4e:7b:f1:85:4d:2d:49:a0:49:5c:
e9:48:74:4f:8b:3b:89:92:14:c7:93:4b:a8:47:b1:
39:56:6f:c7:53:0c:8f:a7:a8:34:df:44:bf:43:53:
5e:0f:e1:44:af:16:33:9a:98:ea:8a:62:13:d1:4c:
7b:ef:3e:35:35:07:87:5b:b4:a1:ce:11:ca:96:b2:
5e:da:55:d1:7d:7d:98:8a:cf:87:bd:50:bf:be:0a:
07:5d:23:e5:3e:c2:58:67:1e:f6:17:b6:97:07:ca:
e2:51:e8:e4:51:89:90:f1:c8:7b:32:93:d3:d7:d7:
00:06:8a:cc:8e:dd:c8:43:a1:f2:11:ad:ac:95:86:
f0:5d:f9:39:8f:3e:35:2f:f3:95:4a:86:f1:6b:52:
c4:c5:d4:1d:ef:5b:b5:37:d0:09:ea:0f:1b:d1:e2:
bd:ed:59:9f:9d:6d:46:5e:95:45:ec:ec:40:b9:5a:
48:e1:9f:8c:74:85:bf:e9:ea:be:87:5b:b9:44:7e:
86:83:3f:2a:4d:a3:e7:0c:11:de:fd:22:1d:3d:40:
b7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:D0:52:8D:55:EE:E0:DE:7B:02:BE:2E:39:97:75:14:FD:5C:85:32
X509v3 Authority Key Identifier:
keyid:2F:44:AE:BA:0A:55:44:06:58:89:70:5B:C2:EF:1C:DA:E1:15:83:25
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912B600/A36A626E1D9311E286175DF708B02CD2/L0SuugpVRAZYiXBbwu8c2uEVgyU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L0SuugpVRAZYiXBbwu8c2uEVgyU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B600/A36A626E1D9311E286175DF708B02CD2/7D5F356C26FF11EBAC6E5B50C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.125.224.0/19
103.1.144.0/22
113.30.232.0/21
123.136.96.0/19
IPv6:
2405:3800::/32
Signature Algorithm: sha256WithRSAEncryption
1d:b6:9d:e7:28:87:d7:c0:6c:a1:e3:64:be:14:02:bc:6e:4a:
a6:04:eb:1d:f1:f2:02:9b:a0:87:2e:6c:39:23:ae:b8:9a:d4:
b7:f9:8e:8e:22:e3:e0:f5:34:fe:ec:4b:06:ed:71:53:6a:57:
07:df:64:f8:6d:d5:45:e4:8b:6b:84:1f:3d:b3:1e:c7:07:7d:
e2:4a:da:11:77:1d:9a:c8:b3:64:e3:fa:5b:5f:87:ec:be:a4:
c5:8d:b6:53:b0:8d:71:bd:08:19:b5:de:11:c7:87:4c:9d:6a:
35:3c:1a:02:f2:67:9e:7b:de:92:e9:6b:bc:ce:30:5e:13:e0:
5a:39:af:88:ce:ec:32:c5:fb:96:d2:5f:23:2e:d3:ba:9e:7c:
c7:a6:b7:b8:b6:80:35:ac:82:bf:55:e3:b2:1f:21:e2:42:d1:
b2:8c:d7:57:d5:7d:48:0e:93:58:57:d4:bf:22:30:bd:89:39:
db:35:1c:ef:fc:61:aa:32:dc:54:f3:37:bb:83:a8:57:84:46:
99:c0:4d:87:51:5b:35:f7:28:dc:00:72:62:d6:2c:34:11:3d:
9a:3e:9e:59:d6:80:2d:0f:b3:66:77:4a:b6:d5:a4:57:e7:42:
20:85:bf:e5:f1:6d:97:9d:63:9f:c3:91:f2:47:a6:00:87:97:
c0:3f:38:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 12 10:16:27 2024 by rpki-client on console-ams.rpki-client.org