Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/984BAD148A5D11EE9E6AA223C4F9AE02.roa
File: 984BAD148A5D11EE9E6AA223C4F9AE02.roa (raw, json)
Hash identifier: mTPsbjurnj2rCrlicFxIBKdZFWNpL3KPfVQXwqO80SU=
Subject key identifier: 13:45:8F:3D:C4:2F:8C:A8:DF:DD:49:E3:6A:C1:87:10:4B:AB:CB:E5
Certificate issuer: /CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63
Certificate serial: 06FA
Authority key identifier: E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/984BAD148A5D11EE9E6AA223C4F9AE02.roa
Signing time: Wed 31 Jul 2024 04:59:56 +0000
ROA not before: Wed 31 Jul 2024 04:59:56 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 135607
IP address blocks: 61.245.4.0/24 maxlen: 24
61.245.5.0/24 maxlen: 24
61.245.6.0/24 maxlen: 24
61.245.7.0/24 maxlen: 24
61.245.8.0/24 maxlen: 24
61.245.9.0/24 maxlen: 24
61.245.12.0/24 maxlen: 24
61.245.13.0/24 maxlen: 24
61.245.14.0/24 maxlen: 24
61.245.15.0/24 maxlen: 24
61.245.16.0/24 maxlen: 24
61.245.17.0/24 maxlen: 24
61.245.18.0/24 maxlen: 24
61.245.19.0/24 maxlen: 24
61.245.20.0/24 maxlen: 24
61.245.21.0/24 maxlen: 24
61.245.22.0/24 maxlen: 24
61.245.23.0/24 maxlen: 24
61.245.24.0/24 maxlen: 24
61.245.25.0/24 maxlen: 24
61.245.26.0/24 maxlen: 24
61.245.27.0/24 maxlen: 24
61.245.28.0/24 maxlen: 24
61.245.29.0/24 maxlen: 24
61.245.30.0/24 maxlen: 24
61.245.121.0/24 maxlen: 24
61.245.122.0/24 maxlen: 24
61.245.123.0/24 maxlen: 24
103.76.160.0/23 maxlen: 23
103.76.160.0/24 maxlen: 24
103.76.161.0/24 maxlen: 24
103.100.100.0/23 maxlen: 23
103.100.100.0/24 maxlen: 24
103.100.101.0/24 maxlen: 24
126.209.0.0/24 maxlen: 24
126.209.1.0/24 maxlen: 24
126.209.2.0/24 maxlen: 24
126.209.3.0/24 maxlen: 24
126.209.4.0/24 maxlen: 24
126.209.5.0/24 maxlen: 24
126.209.6.0/24 maxlen: 24
126.209.7.0/24 maxlen: 24
126.209.8.0/24 maxlen: 24
126.209.9.0/24 maxlen: 24
126.209.10.0/24 maxlen: 24
126.209.11.0/24 maxlen: 24
126.209.12.0/24 maxlen: 24
126.209.13.0/24 maxlen: 24
126.209.14.0/24 maxlen: 24
126.209.15.0/24 maxlen: 24
126.209.16.0/24 maxlen: 24
126.209.17.0/24 maxlen: 24
126.209.18.0/24 maxlen: 24
126.209.19.0/24 maxlen: 24
126.209.20.0/24 maxlen: 24
126.209.21.0/24 maxlen: 24
126.209.22.0/24 maxlen: 24
126.209.23.0/24 maxlen: 24
126.209.24.0/24 maxlen: 24
126.209.25.0/24 maxlen: 24
126.209.26.0/24 maxlen: 24
126.209.27.0/24 maxlen: 24
126.209.28.0/24 maxlen: 24
126.209.29.0/24 maxlen: 24
126.209.30.0/24 maxlen: 24
126.209.31.0/24 maxlen: 24
126.209.32.0/24 maxlen: 24
126.209.33.0/24 maxlen: 24
126.209.34.0/24 maxlen: 24
126.209.35.0/24 maxlen: 24
126.209.36.0/24 maxlen: 24
126.209.37.0/24 maxlen: 24
126.209.38.0/24 maxlen: 24
126.209.39.0/24 maxlen: 24
126.209.40.0/24 maxlen: 24
126.209.41.0/24 maxlen: 24
126.209.42.0/24 maxlen: 24
126.209.43.0/24 maxlen: 24
126.209.44.0/24 maxlen: 24
126.209.45.0/24 maxlen: 24
126.209.46.0/24 maxlen: 24
126.209.47.0/24 maxlen: 24
126.209.48.0/24 maxlen: 24
126.209.49.0/24 maxlen: 24
126.209.50.0/24 maxlen: 24
126.209.51.0/24 maxlen: 24
126.209.52.0/24 maxlen: 24
126.209.53.0/24 maxlen: 24
126.209.54.0/24 maxlen: 24
126.209.55.0/24 maxlen: 24
126.209.56.0/24 maxlen: 24
126.209.57.0/24 maxlen: 24
126.209.58.0/24 maxlen: 24
126.209.59.0/24 maxlen: 24
126.209.60.0/24 maxlen: 24
126.209.61.0/24 maxlen: 24
126.209.62.0/24 maxlen: 24
126.209.63.0/24 maxlen: 24
2401:e740::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 23 Sep 2024 10:37:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1786 (0x6fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63
Validity
Not Before: Jul 31 04:59:56 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=66a9c4cc-a747
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:44:3d:6a:73:83:52:1b:63:28:87:20:62:ef:
7a:bf:a1:0d:96:9c:69:d3:af:1c:ff:7a:f9:99:4e:
5d:3a:a6:da:fe:96:7d:94:be:6b:88:93:ea:23:c1:
6f:dc:09:dd:ef:81:6a:c5:06:bc:99:6f:46:20:9d:
67:82:f0:b6:0a:58:27:ae:02:ec:cd:c2:d8:f1:46:
d6:36:63:15:b1:01:28:2f:cf:ec:83:cb:2a:3f:e7:
79:9e:d4:e7:65:e4:60:ea:81:01:8c:c4:21:7a:49:
12:f2:30:df:d6:d5:58:a6:45:c8:da:6d:67:02:11:
71:35:2c:2f:1e:a8:a9:f1:d7:99:a1:25:59:d8:d1:
64:14:71:27:20:2d:6f:2b:df:8c:7a:14:5b:89:98:
98:83:06:7e:c7:a8:b6:11:52:19:b5:59:fd:36:7a:
8a:e7:d0:b5:ef:6d:d8:40:01:7d:e2:49:fe:fb:bf:
40:5c:d3:68:27:7b:cc:f7:22:6f:a4:8c:72:c8:fb:
e5:f1:ab:44:07:37:b8:5c:a2:61:d8:9a:94:3e:cf:
a7:9f:6d:b9:ca:60:3d:6e:18:00:68:e9:74:c6:c4:
e1:87:c6:03:ef:cb:c1:ad:e5:03:ca:41:1a:a6:bc:
38:73:fa:4e:55:d9:6d:fe:68:4e:1e:ab:b0:08:56:
f4:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:45:8F:3D:C4:2F:8C:A8:DF:DD:49:E3:6A:C1:87:10:4B:AB:CB:E5
X509v3 Authority Key Identifier:
keyid:E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/984BAD148A5D11EE9E6AA223C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.245.4.0-61.245.9.255
61.245.12.0-61.245.30.255
61.245.121.0-61.245.123.255
103.76.160.0/23
103.100.100.0/23
126.209.0.0/18
IPv6:
2401:e740::/32
Signature Algorithm: sha256WithRSAEncryption
3a:09:5a:6b:a5:8a:b5:f0:91:ac:17:e1:1b:29:e8:1a:2a:47:
fe:36:23:5c:82:4d:7a:93:6e:65:91:6a:de:2e:2b:ee:c9:a8:
48:a5:d5:38:5a:2a:da:b9:a4:20:19:5a:ac:b1:18:a2:6f:96:
44:d2:f7:45:a9:7f:af:66:05:98:23:a6:88:d4:64:45:3c:f5:
4e:bf:21:de:9a:f1:21:cb:81:ca:2e:b9:5e:fb:7c:02:2c:01:
19:79:ad:22:f7:0b:1a:26:f9:73:d6:6a:62:e3:27:60:77:b3:
29:2f:3b:d3:c1:c1:d6:04:f5:c7:30:05:ea:f4:cf:e3:c5:4c:
13:7d:92:91:4a:54:fa:21:9e:c0:23:2c:05:90:85:d5:dc:c7:
16:5d:36:f3:e8:36:24:d0:bf:c1:e9:11:8a:c7:ce:b0:9e:52:
80:a1:d9:09:ac:d1:dc:b2:d9:19:94:24:13:fd:4c:3e:f2:e5:
bf:e4:0a:ce:80:93:55:7d:21:4d:e6:c6:b3:8c:9b:40:18:d9:
8a:01:19:ea:65:00:f2:ab:83:26:ba:08:cc:44:22:50:35:3c:
cf:9b:70:60:da:8d:d1:0b:27:4c:cb:7e:df:0b:e0:5d:4d:67:
c7:b1:a6:bc:de:10:57:07:e0:f3:52:90:09:df:34:3d:a7:9d:
55:c8:bb:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 23 14:19:11 2024 by rpki-client on console-ams.rpki-client.org