Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D01/E92519FA990B11EBA355CB53C4F9AE02/2603253499F111EB80891129C4F9AE02.roa
File: 2603253499F111EB80891129C4F9AE02.roa (raw, json)
Hash identifier: XrPJaxPandWT43yuEM0cAZi+fjUrmiSXIR/w1iCwcTM=
Subject key identifier: A9:32:E7:3D:11:8D:CC:92:75:11:6B:18:66:76:55:ED:86:E7:D8:77
Certificate issuer: /CN=A9148D01/serialNumber=7E36AB1C044321B74CF678263E0524FD34179BBD
Certificate serial: 052E
Authority key identifier: 7E:36:AB:1C:04:43:21:B7:4C:F6:78:26:3E:05:24:FD:34:17:9B:BD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjarHARDIbdM9ngmPgUk_TQXm70.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9148D01/E92519FA990B11EBA355CB53C4F9AE02/2603253499F111EB80891129C4F9AE02.roa
Signing time: Thu 01 Jun 2023 02:50:16 +0000
ROA not before: Thu 01 Jun 2023 02:50:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 134540
IP address blocks: 49.248.98.0/23 maxlen: 24
49.248.100.0/22 maxlen: 24
49.248.127.0/24 maxlen: 24
49.248.128.0/24 maxlen: 24
49.248.130.0/24 maxlen: 24
49.248.131.0/24 maxlen: 24
49.248.132.0/24 maxlen: 24
49.248.133.0/24 maxlen: 24
49.248.134.0/24 maxlen: 24
49.248.136.0/24 maxlen: 24
49.248.137.0/24 maxlen: 24
49.248.150.0/24 maxlen: 24
114.143.2.0/24 maxlen: 24
114.143.4.0/23 maxlen: 23
114.143.8.0/24 maxlen: 24
114.143.10.0/24 maxlen: 24
114.143.11.0/24 maxlen: 24
114.143.12.0/24 maxlen: 24
114.143.15.0/24 maxlen: 24
114.143.18.0/24 maxlen: 24
114.143.19.0/24 maxlen: 24
114.143.21.0/24 maxlen: 24
114.143.22.0/24 maxlen: 24
114.143.24.0/24 maxlen: 24
114.143.28.0/24 maxlen: 24
114.143.29.0/24 maxlen: 24
114.143.32.0/21 maxlen: 24
114.143.80.0/20 maxlen: 20
114.143.96.0/24 maxlen: 24
114.143.97.0/24 maxlen: 24
114.143.196.0/24 maxlen: 24
123.252.128.0/24 maxlen: 24
123.252.129.0/24 maxlen: 24
123.252.130.0/24 maxlen: 24
123.252.132.0/24 maxlen: 24
123.252.133.0/24 maxlen: 24
123.252.139.0/24 maxlen: 24
123.252.141.0/24 maxlen: 24
123.252.142.0/24 maxlen: 24
123.252.143.0/24 maxlen: 24
123.252.144.0/24 maxlen: 24
123.252.145.0/24 maxlen: 24
123.252.150.0/24 maxlen: 24
123.252.152.0/24 maxlen: 24
123.252.153.0/24 maxlen: 24
123.252.154.0/24 maxlen: 24
123.252.155.0/24 maxlen: 24
123.252.156.0/24 maxlen: 24
123.252.157.0/24 maxlen: 24
123.252.158.0/24 maxlen: 24
123.252.159.0/24 maxlen: 24
123.252.160.0/24 maxlen: 24
123.252.162.0/24 maxlen: 24
123.252.164.0/24 maxlen: 24
123.252.166.0/24 maxlen: 24
123.252.167.0/24 maxlen: 24
123.252.168.0/24 maxlen: 24
123.252.169.0/24 maxlen: 24
123.252.172.0/24 maxlen: 24
123.252.177.0/24 maxlen: 24
123.252.178.0/24 maxlen: 24
123.252.179.0/24 maxlen: 24
123.252.180.0/24 maxlen: 24
123.252.182.0/24 maxlen: 24
123.252.183.0/24 maxlen: 24
123.252.184.0/24 maxlen: 24
123.252.185.0/24 maxlen: 24
123.252.186.0/24 maxlen: 24
123.252.187.0/24 maxlen: 24
123.252.192.0/24 maxlen: 24
123.252.196.0/24 maxlen: 24
123.252.198.0/24 maxlen: 24
123.252.199.0/24 maxlen: 24
123.252.202.0/24 maxlen: 24
123.252.207.0/24 maxlen: 24
123.252.212.0/22 maxlen: 24
123.252.216.0/24 maxlen: 24
123.252.221.0/24 maxlen: 24
123.252.223.0/24 maxlen: 24
123.252.224.0/21 maxlen: 24
123.252.234.0/24 maxlen: 24
123.252.237.0/24 maxlen: 24
123.252.239.0/24 maxlen: 24
123.252.240.0/22 maxlen: 22
123.252.245.0/24 maxlen: 24
123.252.246.0/24 maxlen: 24
123.252.248.0/24 maxlen: 24
123.252.254.0/24 maxlen: 24
202.149.194.0/24 maxlen: 24
202.149.195.0/24 maxlen: 24
202.149.197.0/24 maxlen: 24
202.149.200.0/24 maxlen: 24
202.149.211.0/24 maxlen: 24
202.149.212.0/24 maxlen: 24
202.149.213.0/24 maxlen: 24
202.149.215.0/24 maxlen: 24
202.149.216.0/24 maxlen: 24
202.149.219.0/24 maxlen: 24
202.189.225.0/24 maxlen: 24
202.189.229.0/24 maxlen: 24
202.189.230.0/24 maxlen: 24
202.189.231.0/24 maxlen: 24
202.189.232.0/24 maxlen: 24
202.189.233.0/24 maxlen: 24
202.189.234.0/24 maxlen: 24
202.189.236.0/24 maxlen: 24
202.189.237.0/24 maxlen: 24
202.189.238.0/24 maxlen: 24
202.189.240.0/24 maxlen: 24
202.189.241.0/24 maxlen: 24
202.189.242.0/24 maxlen: 24
202.189.244.0/24 maxlen: 24
202.189.245.0/24 maxlen: 24
202.189.247.0/24 maxlen: 24
202.189.250.0/24 maxlen: 24
202.189.251.0/24 maxlen: 24
202.189.252.0/24 maxlen: 24
202.189.253.0/24 maxlen: 24
202.189.254.0/24 maxlen: 24
2402:d400:a1::/48 maxlen: 51
2402:d400:a2::/48 maxlen: 51
Validation: Failed, certificate revoked on Mon 13 Nov 2023 10:58:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1326 (0x52e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9148D01/serialNumber=7E36AB1C044321B74CF678263E0524FD34179BBD
Validity
Not Before: Jun 1 02:50:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64780768-4c33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b7:89:78:b5:c0:5e:4e:85:cc:38:4f:fd:5a:
fa:db:41:ee:b5:1c:58:40:6e:65:0f:fc:30:c8:d9:
08:63:20:27:2b:5e:9a:e8:33:b8:83:31:ff:5c:74:
02:3a:22:6b:90:f3:1a:a7:bb:fe:74:e8:90:6a:51:
7f:e0:54:d6:dd:5d:a6:4d:84:e7:db:c9:98:ee:05:
37:9a:98:0f:c9:e0:d2:9a:2b:af:0b:0e:7d:70:8c:
39:cc:74:b3:b4:93:75:26:0e:ed:0d:4a:c4:39:e3:
ef:cc:ff:23:b0:d9:2c:56:11:31:42:9a:4c:2c:48:
aa:1f:d2:62:ca:ee:02:f1:9c:ab:5b:df:e8:f1:de:
d7:c0:61:99:95:79:92:ef:ec:6e:1e:d4:4d:a6:77:
60:3d:12:ec:b1:cd:a0:3d:94:fd:bc:67:98:79:72:
94:13:73:b5:57:88:f9:9c:f7:26:38:9d:3e:43:2f:
2d:60:04:58:c0:cf:bc:38:2b:a0:9c:46:6b:87:db:
3f:b1:79:b4:e5:9f:c1:e0:75:aa:69:95:27:21:b5:
9a:3a:8f:c5:01:aa:a8:06:9b:e5:2c:22:54:43:3c:
a7:93:dc:de:08:32:e1:05:7f:bf:fc:cc:39:8f:38:
19:76:c8:d1:6a:d4:32:3b:f5:7e:cb:2c:8f:d3:c1:
3e:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:32:E7:3D:11:8D:CC:92:75:11:6B:18:66:76:55:ED:86:E7:D8:77
X509v3 Authority Key Identifier:
keyid:7E:36:AB:1C:04:43:21:B7:4C:F6:78:26:3E:05:24:FD:34:17:9B:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9148D01/E92519FA990B11EBA355CB53C4F9AE02/fjarHARDIbdM9ngmPgUk_TQXm70.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjarHARDIbdM9ngmPgUk_TQXm70.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D01/E92519FA990B11EBA355CB53C4F9AE02/2603253499F111EB80891129C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.248.98.0-49.248.103.255
49.248.127.0-49.248.128.255
49.248.130.0-49.248.134.255
49.248.136.0/23
49.248.150.0/24
114.143.2.0/24
114.143.4.0/23
114.143.8.0/24
114.143.10.0-114.143.12.255
114.143.15.0/24
114.143.18.0/23
114.143.21.0-114.143.22.255
114.143.24.0/24
114.143.28.0/23
114.143.32.0/21
114.143.80.0-114.143.97.255
114.143.196.0/24
123.252.128.0-123.252.130.255
123.252.132.0/23
123.252.139.0/24
123.252.141.0-123.252.145.255
123.252.150.0/24
123.252.152.0-123.252.160.255
123.252.162.0/24
123.252.164.0/24
123.252.166.0-123.252.169.255
123.252.172.0/24
123.252.177.0-123.252.180.255
123.252.182.0-123.252.187.255
123.252.192.0/24
123.252.196.0/24
123.252.198.0/23
123.252.202.0/24
123.252.207.0/24
123.252.212.0-123.252.216.255
123.252.221.0/24
123.252.223.0-123.252.231.255
123.252.234.0/24
123.252.237.0/24
123.252.239.0-123.252.243.255
123.252.245.0-123.252.246.255
123.252.248.0/24
123.252.254.0/24
202.149.194.0/23
202.149.197.0/24
202.149.200.0/24
202.149.211.0-202.149.213.255
202.149.215.0-202.149.216.255
202.149.219.0/24
202.189.225.0/24
202.189.229.0-202.189.234.255
202.189.236.0-202.189.238.255
202.189.240.0-202.189.242.255
202.189.244.0/23
202.189.247.0/24
202.189.250.0-202.189.254.255
IPv6:
2402:d400:a1::-2402:d400:a2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
63:56:d9:a2:aa:d3:83:53:62:22:df:fc:45:de:f8:72:d8:4c:
53:e4:0d:dc:0e:2a:4b:ea:7b:0b:76:d1:2f:1f:04:ec:51:7f:
0e:44:a1:1a:11:1b:ef:27:70:e5:6f:ed:86:be:79:79:4a:01:
6f:6f:e1:b2:7b:e7:81:72:7a:ec:9a:e2:6a:37:0f:6a:76:f1:
89:1b:72:ef:03:42:b6:31:f7:c0:72:43:fa:6d:7e:1d:1e:50:
d1:34:c5:ff:e2:18:7e:dc:74:36:74:f0:02:08:dd:0b:11:7d:
f2:69:2d:30:fe:47:8a:19:23:0e:fb:0b:1d:10:b4:2d:d8:4e:
52:8d:8f:c4:23:8c:a2:8e:22:d0:64:31:7a:6a:68:9a:d1:00:
39:57:95:de:9c:f5:1a:f0:2d:99:e7:6d:f6:2d:34:12:26:1e:
9e:33:73:cd:6c:bc:e8:ab:5f:a1:cc:82:43:22:0b:fb:ab:fb:
f2:bc:af:ef:66:f8:9a:c0:2c:a4:99:0b:bc:e3:1f:e4:63:79:
88:7b:6f:8d:dd:dc:4d:27:95:88:b0:54:df:29:40:5c:02:e4:
3d:45:d1:68:65:6a:2a:94:03:af:4b:27:1c:fe:e9:60:ac:cd:
b7:38:d5:41:53:ec:8c:50:61:9d:05:57:78:2d:40:7a:95:8b:
88:1c:62:80
-----BEGIN CERTIFICATE-----
MIIHkTCCBnmgAwIBAgICBS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDhEMDExMTAvBgNVBAUTKDdFMzZBQjFDMDQ0MzIxQjc0Q0Y2NzgyNjNFMDUyNEZE
MzQxNzlCQkQwHhcNMjMwNjAxMDI1MDE2WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDc4MDc2OC00YzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAr7eJeLXAXk6FzDhP/Vr620HutRxYQG5lD/wwyNkIYyAnK16a6DO4gzH/XHQC
OiJrkPMap7v+dOiQalF/4FTW3V2mTYTn28mY7gU3mpgPyeDSmiuvCw59cIw5zHSz
tJN1Jg7tDUrEOePvzP8jsNksVhExQppMLEiqH9Jiyu4C8ZyrW9/o8d7XwGGZlXmS
7+xuHtRNpndgPRLssc2gPZT9vGeYeXKUE3O1V4j5nPcmOJ0+Qy8tYARYwM+8OCug
nEZrh9s/sXm05Z/B4HWqaZUnIbWaOo/FAaqoBpvlLCJUQzynk9zeCDLhBX+//Mw5
jzgZdsjRatQyO/V+yyyP08E+aQIDAQABo4IEtTCCBLEwHQYDVR0OBBYEFKky5z0R
jcySdRFrGGZ2Ve2G59h3MB8GA1UdIwQYMBaAFH42qxwEQyG3TPZ4Jj4FJP00F5u9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQwMS9FOTI1MTlGQTk5
MEIxMUVCQTM1NUNCNTNDNEY5QUUwMi9mamFySEFSREliZE05bmdtUGdVa19UUVht
NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2ZqYXJIQVJESWJkTTluZ21QZ1VrX1RRWG03MC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDhEMDEvRTkyNTE5RkE5OTBCMTFFQkEzNTVDQjUzQzRGOUFFMDIvMjYwMzI1MzQ5
OUYxMTFFQjgwODkxMTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggI9BggrBgEFBQcBBwEB
/wSCAiwwggIoMIICCAQCAAEwggIAMAwDBAEx+GIDBAMx+GAwDAMEADH4fwMEADH4
gDAMAwQBMfiCAwQAMfiGAwQBMfiIAwQAMfiWAwQAco8CAwQBco8EAwQAco8IMAwD
BAFyjwoDBAByjwwDBAByjw8DBAFyjxIwDAMEAHKPFQMEAHKPFgMEAHKPGAMEAXKP
HAMEA3KPIDAMAwQEco9QAwQBco9gAwQAco/EMAwDBAd7/IADBAB7/IIDBAF7/IQD
BAB7/IswDAMEAHv8jQMEAXv8kAMEAHv8ljAMAwQDe/yYAwQAe/ygAwQAe/yiAwQA
e/ykMAwDBAF7/KYDBAF7/KgDBAB7/KwwDAMEAHv8sQMEAHv8tDAMAwQBe/y2AwQC
e/y4AwQAe/zAAwQAe/zEAwQBe/zGAwQAe/zKAwQAe/zPMAwDBAJ7/NQDBAB7/NgD
BAB7/N0wDAMEAHv83wMEA3v84AMEAHv86gMEAHv87TAMAwQAe/zvAwQCe/zwMAwD
BAB7/PUDBAB7/PYDBAB7/PgDBAB7/P4DBAHKlcIDBADKlcUDBADKlcgwDAMEAMqV
0wMEAcqV1DAMAwQAypXXAwQAypXYAwQAypXbAwQAyr3hMAwDBADKveUDBADKveow
DAMEAsq97AMEAMq97jAMAwQEyr3wAwQAyr3yAwQByr30AwQAyr33MAwDBAHKvfoD
BADKvf4wGgQCAAIwFDASAwcAJALUAAChAwcAJALUAACiMA0GCSqGSIb3DQEBCwUA
A4IBAQBjVtmiqtODU2Ii3/xF3vhy2ExT5A3cDipL6nsLdtEvHwTsUX8ORKEaERvv
J3Dlb+2Gvnl5SgFvb+Gye+eBcnrsmuJqNw9qdvGJG3LvA0K2MffAckP6bX4dHlDR
NMX/4hh+3HQ2dPACCN0LEX3yaS0w/keKGSMO+wsdELQt2E5SjY/EI4yijiLQZDF6
amia0QA5V5XenPUa8C2Z5232LTQSJh6eM3PNbLzoq1+hzIJDIgv7q/vyvK/vZvia
wCykmQu84x/kY3mIe2+N3dxNJ5WIsFTfKUBcAuQ9RdFoZWoqlAOvSycc/ulgrM23
ONVBU+yMUGGdBVd4LUB6lYuIHGKA
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:58 2024 by rpki-client on console-ams.rpki-client.org