Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/44AB063AC49611EBBC737E74C4F9AE02.roa
File: 44AB063AC49611EBBC737E74C4F9AE02.roa (raw, json)
Hash identifier: OqvbYP29+sJDyFrAGa0oMH2oGXGVa/ZLsqLoL0iMjBk=
Subject key identifier: 15:5B:76:24:BF:D5:24:4D:21:3F:B6:4B:16:C4:56:9B:B4:E5:2A:57
Certificate issuer: /CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653
Certificate serial: 105F
Authority key identifier: C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/44AB063AC49611EBBC737E74C4F9AE02.roa
Signing time: Tue 16 Aug 2022 06:36:40 +0000
ROA not before: Tue 16 Aug 2022 06:36:40 +0000
ROA not after: Sat 30 Sep 2023 00:00:00 +0000
asID: 9874
IP address blocks: 27.54.0.0/18 maxlen: 24
61.8.235.0/24 maxlen: 24
61.8.236.0/24 maxlen: 24
101.127.200.0/22 maxlen: 24
101.127.204.0/23 maxlen: 24
113.10.64.0/18 maxlen: 24
117.20.128.0/18 maxlen: 24
122.11.150.0/23 maxlen: 24
122.11.152.0/21 maxlen: 24
122.11.169.0/24 maxlen: 24
122.11.170.0/23 maxlen: 24
122.11.172.0/24 maxlen: 24
122.11.216.0/24 maxlen: 24
122.11.217.0/24 maxlen: 24
122.11.218.0/24 maxlen: 24
122.11.219.0/24 maxlen: 24
124.155.192.0/19 maxlen: 24
171.0.0.0/15 maxlen: 15
171.0.0.0/16 maxlen: 24
171.1.0.0/16 maxlen: 24
171.207.0.0/16 maxlen: 24
183.90.0.0/19 maxlen: 24
183.90.32.0/21 maxlen: 24
183.90.32.0/24 maxlen: 24
183.90.33.0/24 maxlen: 24
183.90.34.0/24 maxlen: 24
183.90.36.0/24 maxlen: 24
183.90.37.0/24 maxlen: 24
183.90.38.0/24 maxlen: 24
183.90.40.0/24 maxlen: 24
203.116.22.0/24 maxlen: 24
203.116.107.0/24 maxlen: 24
203.116.116.0/24 maxlen: 24
203.116.119.0/24 maxlen: 24
203.116.133.0/24 maxlen: 24
203.116.149.0/24 maxlen: 24
203.116.150.0/24 maxlen: 24
203.116.181.0/24 maxlen: 24
203.116.211.0/24 maxlen: 24
203.116.222.0/24 maxlen: 24
203.117.40.0/23 maxlen: 24
203.117.56.0/21 maxlen: 24
203.117.246.0/24 maxlen: 24
203.117.247.0/24 maxlen: 24
203.117.248.0/22 maxlen: 24
203.117.252.0/23 maxlen: 24
2406:3000:8:4030::/60 maxlen: 60
2406:3002:20::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4191 (0x105f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653
Validity
Not Before: Aug 16 06:36:40 2022 GMT
Not After : Sep 30 00:00:00 2023 GMT
Subject: CN=62fb3af7-265b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:19:70:0e:5f:5b:00:96:48:89:f6:80:38:4f:
98:40:73:88:12:82:99:f1:3d:00:21:cc:a1:e3:d3:
b1:64:6f:be:fe:ce:e5:50:09:f6:82:9b:f6:41:99:
04:18:2d:09:a4:a0:b5:57:bc:64:36:49:fd:37:81:
d9:d6:03:d6:ff:4b:5f:ec:64:ab:74:13:e0:dc:25:
e4:e3:19:3f:01:44:f8:2f:69:3d:ca:64:4b:a9:8a:
3f:5b:ab:39:6d:7a:78:63:a6:b2:d5:af:c4:51:f7:
b0:d6:46:f7:4a:07:7a:23:73:f3:c7:df:f1:f0:31:
51:c8:f0:ab:12:28:10:c4:d7:62:48:c9:f0:68:94:
65:6a:f0:14:b5:8d:e9:57:35:ce:93:e4:15:15:dd:
f0:22:fa:bf:a9:41:5b:c7:86:37:83:ee:a5:01:2b:
4f:c3:21:c2:89:c1:0b:75:3e:e4:d5:42:59:b8:99:
77:40:fe:ff:91:d3:01:c6:4f:6e:05:f4:a7:11:9f:
df:b9:51:9d:f2:8c:95:48:7e:58:86:75:f0:60:b6:
fe:21:0f:06:e2:a6:d1:28:1b:b0:38:46:00:e9:c2:
4f:ed:35:6e:e4:c6:8c:c8:35:89:d5:9a:e5:42:7b:
23:de:e3:f2:99:b5:a1:ba:9b:c8:fb:1c:2d:ee:63:
df:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:5B:76:24:BF:D5:24:4D:21:3F:B6:4B:16:C4:56:9B:B4:E5:2A:57
X509v3 Authority Key Identifier:
keyid:C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/44AB063AC49611EBBC737E74C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.54.0.0/18
61.8.235.0-61.8.236.255
101.127.200.0-101.127.205.255
113.10.64.0/18
117.20.128.0/18
122.11.150.0-122.11.159.255
122.11.169.0-122.11.172.255
122.11.216.0/22
124.155.192.0/19
171.0.0.0/15
171.207.0.0/16
183.90.0.0-183.90.40.255
203.116.22.0/24
203.116.107.0/24
203.116.116.0/24
203.116.119.0/24
203.116.133.0/24
203.116.149.0-203.116.150.255
203.116.181.0/24
203.116.211.0/24
203.116.222.0/24
203.117.40.0/23
203.117.56.0/21
203.117.246.0-203.117.253.255
IPv6:
2406:3000:8:4030::/60
2406:3002:20::/48
Signature Algorithm: sha256WithRSAEncryption
76:29:ea:ac:1f:4f:1c:d0:57:1e:34:bc:64:34:50:13:63:c7:
6d:00:04:ec:fe:f1:30:68:66:f8:16:49:60:ee:f7:ac:07:76:
80:05:c9:5d:df:58:73:fe:a0:6c:44:b7:bd:53:47:91:2b:24:
60:ab:8f:63:d6:48:8e:16:79:bd:05:ba:d0:49:14:2b:53:32:
10:72:80:a9:3d:69:3d:ee:9f:48:3b:c7:89:9d:c2:45:42:88:
b8:fa:3e:32:af:d5:43:af:23:58:78:1c:ae:22:73:c6:67:b1:
0e:87:79:a3:f9:e5:a4:01:45:14:60:c0:93:01:72:88:cd:8f:
dc:cd:85:1b:b0:e3:c5:cb:f4:3e:35:0f:f0:ad:67:dd:f9:23:
f5:b2:94:b1:f2:75:8b:d7:f9:dd:0f:52:f0:67:d1:bc:cb:07:
56:b3:c3:f3:ef:6e:3f:d2:78:5c:bf:6f:a6:c5:1b:d6:7b:f3:
e1:b2:39:0f:31:b5:d1:3a:18:79:47:21:ce:3e:90:f6:66:db:
58:4b:6c:7d:81:3a:bb:2c:ed:27:4e:58:24:81:39:60:47:22:
41:ed:b0:cb:0e:96:bc:63:16:30:be:0b:5e:4d:3d:36:4c:1a:
35:ef:2e:cb:09:3f:b8:82:e9:b4:f2:a4:1c:f7:19:2a:1c:d3:
5d:57:f6:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:39 2023 by rpki-client on console-fra.rpki-client.org