Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/8371A2486BDD11EEB3A58176C4F9AE02.roa
File: 8371A2486BDD11EEB3A58176C4F9AE02.roa (raw, json)
Hash identifier: Z2abuogVa1k1zh9UxW1eON34X9EPnJcq7CXuZmeuqSE=
Subject key identifier: 37:57:D4:1B:D8:54:CF:4D:01:C3:11:95:55:6A:83:28:58:89:DD:EB
Certificate issuer: /CN=A9139B49/serialNumber=4EE540A48AD973FBD831ABD02603B5FB0FB945BE
Certificate serial: 1736
Authority key identifier: 4E:E5:40:A4:8A:D9:73:FB:D8:31:AB:D0:26:03:B5:FB:0F:B9:45:BE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/8371A2486BDD11EEB3A58176C4F9AE02.roa
Signing time: Wed 28 Feb 2024 17:24:50 +0000
ROA not before: Wed 28 Feb 2024 17:24:50 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 17911
IP address blocks: 122.129.64.0/24 maxlen: 24
122.129.65.0/24 maxlen: 24
122.129.66.0/24 maxlen: 24
122.129.67.0/24 maxlen: 24
122.129.68.0/24 maxlen: 24
122.129.69.0/24 maxlen: 24
122.129.70.0/24 maxlen: 24
122.129.71.0/24 maxlen: 24
122.129.72.0/24 maxlen: 24
122.129.73.0/24 maxlen: 24
122.129.74.0/24 maxlen: 24
122.129.75.0/24 maxlen: 24
122.129.76.0/24 maxlen: 24
122.129.77.0/24 maxlen: 24
122.129.78.0/24 maxlen: 24
122.129.79.0/24 maxlen: 24
122.129.80.0/24 maxlen: 24
122.129.81.0/24 maxlen: 24
122.129.82.0/24 maxlen: 24
122.129.83.0/24 maxlen: 24
122.129.84.0/24 maxlen: 24
122.129.85.0/24 maxlen: 24
122.129.88.0/24 maxlen: 24
122.129.89.0/24 maxlen: 24
122.129.90.0/24 maxlen: 24
122.129.91.0/24 maxlen: 24
122.129.92.0/24 maxlen: 24
122.129.93.0/24 maxlen: 24
122.129.94.0/24 maxlen: 24
122.129.95.0/24 maxlen: 24
203.128.0.0/24 maxlen: 24
203.128.1.0/24 maxlen: 24
203.128.2.0/24 maxlen: 24
203.128.3.0/24 maxlen: 24
203.128.4.0/24 maxlen: 24
203.128.5.0/24 maxlen: 24
203.128.6.0/24 maxlen: 24
203.128.7.0/24 maxlen: 24
203.128.8.0/24 maxlen: 24
203.128.9.0/24 maxlen: 24
203.128.10.0/24 maxlen: 24
203.128.11.0/24 maxlen: 24
203.128.12.0/24 maxlen: 24
203.128.13.0/24 maxlen: 24
203.128.14.0/24 maxlen: 24
203.128.15.0/24 maxlen: 24
203.128.16.0/24 maxlen: 24
203.128.17.0/24 maxlen: 24
203.128.18.0/24 maxlen: 24
203.128.19.0/24 maxlen: 24
203.128.20.0/24 maxlen: 24
203.128.21.0/24 maxlen: 24
203.128.22.0/24 maxlen: 24
203.128.23.0/24 maxlen: 24
203.128.24.0/24 maxlen: 24
203.128.25.0/24 maxlen: 24
203.128.26.0/24 maxlen: 24
203.128.27.0/24 maxlen: 24
203.128.28.0/24 maxlen: 24
203.128.29.0/24 maxlen: 24
203.128.30.0/24 maxlen: 24
203.128.31.0/24 maxlen: 24
2400:4f00::/36 maxlen: 36
Validation: Failed, certificate revoked on Thu 07 Mar 2024 13:22:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5942 (0x1736)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9139B49/serialNumber=4EE540A48AD973FBD831ABD02603B5FB0FB945BE
Validity
Not Before: Feb 28 17:24:50 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=65df6c62-cf0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e5:5b:aa:a4:a9:dd:c9:12:aa:cc:dd:60:db:
67:07:73:df:d6:e0:ae:50:f6:0f:ff:1f:f8:36:f7:
51:a7:36:2a:56:d7:f0:93:19:17:62:ce:e8:c2:8c:
ed:a8:fb:fd:01:22:cb:da:db:0e:c5:ea:71:cf:49:
33:ab:c7:73:1d:d1:a0:13:73:04:7d:17:15:e6:01:
1c:f9:ee:30:38:6a:c5:a8:ab:56:19:ea:23:dd:df:
f7:93:a6:ec:e3:2f:80:3e:9e:2c:f7:3a:a6:68:4a:
89:43:8f:31:c5:5a:03:1a:d5:30:15:79:b7:8c:2b:
c7:96:b3:96:c6:65:b4:a6:6f:75:aa:bf:59:14:a5:
34:be:0f:cc:0c:1e:2e:87:79:d4:00:d2:f4:b6:ec:
09:2f:b1:3c:05:57:29:e8:83:b6:ba:1e:4c:fe:40:
3c:b6:0f:4a:68:26:5a:6d:dd:f2:f6:1c:c5:cf:a9:
12:b2:13:d2:97:8f:d2:cc:62:76:5d:39:25:66:75:
82:1b:5c:ba:5d:92:86:26:76:34:69:10:fb:0e:09:
3f:58:b5:e1:bb:9b:6c:35:dc:5f:b3:7a:f4:cd:a1:
e9:6b:b0:a1:89:57:79:ec:7f:90:42:bd:21:8b:89:
fb:53:18:e8:e4:37:33:ba:13:d4:28:a3:a9:02:32:
aa:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:57:D4:1B:D8:54:CF:4D:01:C3:11:95:55:6A:83:28:58:89:DD:EB
X509v3 Authority Key Identifier:
keyid:4E:E5:40:A4:8A:D9:73:FB:D8:31:AB:D0:26:03:B5:FB:0F:B9:45:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/TuVApIrZc_vYMavQJgO1-w-5Rb4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/8371A2486BDD11EEB3A58176C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
122.129.64.0-122.129.85.255
122.129.88.0/21
203.128.0.0/19
IPv6:
2400:4f00::/36
Signature Algorithm: sha256WithRSAEncryption
b1:d4:00:63:8c:9e:24:ae:bc:cd:96:6c:16:b0:25:83:fa:cd:
a4:40:94:11:4c:8d:8a:a5:1a:9e:98:8b:06:cd:a3:d9:f7:21:
b5:52:b1:58:01:6f:c8:d4:c5:82:8d:9c:83:2d:e1:a8:92:d5:
e1:ba:e7:3f:17:fe:db:6d:ef:5b:37:85:bd:9e:ce:79:da:7c:
c9:7a:3e:b8:15:8a:1d:45:05:7e:cd:db:13:8a:38:4a:a0:2b:
ec:a6:19:ca:5b:c8:35:39:e2:a9:10:47:e3:ed:07:4a:aa:7e:
0f:58:59:91:58:9b:f4:d9:d5:6c:ae:6a:63:52:47:46:a9:f5:
15:a7:b3:a4:d3:93:60:5f:62:65:ec:d1:fd:e3:54:4a:ff:68:
7e:e9:5d:25:a4:fb:5b:25:59:9e:a0:9e:dc:f3:01:0e:14:cc:
d9:e3:c9:46:82:f5:40:13:fe:cf:52:4f:5b:0d:a5:05:05:8f:
22:a5:9d:b2:e7:59:55:f3:d5:01:84:48:2c:06:ce:8d:dc:3e:
02:9e:79:ac:a4:14:1e:64:6d:18:f5:80:66:26:3e:36:3c:40:
20:22:10:9b:dd:89:c3:18:83:db:03:a8:6a:93:4c:89:fe:f6:
68:f1:34:a3:69:fe:77:f4:78:16:80:d4:0a:3d:f0:52:1e:2a:
c1:85:92:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 7 16:57:42 2024 by rpki-client on console-fra.rpki-client.org