Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/37534B4A88E911EE9292612FC4F9AE02.roa
File: 37534B4A88E911EE9292612FC4F9AE02.roa (raw, json)
Hash identifier: czYBaurhxKj637FRx8qfAviJ/D9NwOzl0ORfiP5mci0=
Subject key identifier: C3:E0:CF:4F:C5:F5:53:41:4E:89:01:AA:C6:7E:1A:E0:75:C5:53:D8
Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD
Certificate serial: 0896
Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/37534B4A88E911EE9292612FC4F9AE02.roa
Signing time: Sun 17 Dec 2023 08:45:08 +0000
ROA not before: Sun 17 Dec 2023 08:45:08 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 132203
IP address blocks: 43.128.222.0/23 maxlen: 23
43.130.0.0/17 maxlen: 24
43.130.128.0/18 maxlen: 24
43.131.0.0/18 maxlen: 24
43.131.224.0/19 maxlen: 24
43.132.68.0/24 maxlen: 24
43.132.96.0/19 maxlen: 24
43.132.128.0/17 maxlen: 24
43.134.0.0/18 maxlen: 18
43.134.64.0/18 maxlen: 18
43.135.58.0/24 maxlen: 24
43.135.187.0/24 maxlen: 24
43.152.96.0/19 maxlen: 24
43.152.192.0/19 maxlen: 19
43.152.224.0/19 maxlen: 19
43.153.0.0/18 maxlen: 18
43.153.64.0/18 maxlen: 18
43.153.128.0/18 maxlen: 18
43.153.164.0/24 maxlen: 24
43.153.187.0/24 maxlen: 24
43.153.192.0/18 maxlen: 18
43.153.250.0/23 maxlen: 23
43.154.0.0/18 maxlen: 18
43.154.64.0/18 maxlen: 18
43.154.128.0/18 maxlen: 18
43.154.192.0/18 maxlen: 18
43.155.0.0/17 maxlen: 18
43.155.127.0/24 maxlen: 24
43.155.128.0/17 maxlen: 18
43.156.0.0/18 maxlen: 18
43.156.64.0/18 maxlen: 18
43.156.128.0/18 maxlen: 18
43.156.192.0/18 maxlen: 18
43.156.252.0/24 maxlen: 24
43.156.254.0/24 maxlen: 24
43.157.0.0/17 maxlen: 24
43.157.128.0/18 maxlen: 24
43.157.192.0/18 maxlen: 24
43.158.0.0/16 maxlen: 16
43.158.0.0/17 maxlen: 24
43.158.128.0/18 maxlen: 24
43.158.192.0/18 maxlen: 24
43.159.0.0/16 maxlen: 16
43.159.0.0/20 maxlen: 24
43.159.16.0/20 maxlen: 24
43.159.32.0/19 maxlen: 24
43.159.76.0/24 maxlen: 24
43.159.128.0/18 maxlen: 24
43.159.192.0/18 maxlen: 24
43.160.0.0/16 maxlen: 24
43.161.0.0/17 maxlen: 24
43.161.128.0/17 maxlen: 24
43.162.0.0/17 maxlen: 24
43.162.128.0/17 maxlen: 24
43.163.0.0/16 maxlen: 16
43.163.0.0/17 maxlen: 17
43.163.0.0/18 maxlen: 24
43.163.64.0/18 maxlen: 24
43.163.192.0/18 maxlen: 24
43.164.0.0/16 maxlen: 24
43.165.0.0/16 maxlen: 24
43.166.0.0/16 maxlen: 24
43.167.0.0/16 maxlen: 24
43.168.0.0/16 maxlen: 24
43.169.0.0/16 maxlen: 24
43.170.0.0/16 maxlen: 24
43.171.0.0/16 maxlen: 24
43.172.0.0/16 maxlen: 24
43.173.0.0/16 maxlen: 24
43.174.0.0/16 maxlen: 24
101.32.140.0/24 maxlen: 24
101.33.4.0/23 maxlen: 23
101.33.17.0/24 maxlen: 24
101.33.18.0/23 maxlen: 23
101.33.26.0/23 maxlen: 23
101.33.30.0/23 maxlen: 23
101.33.41.0/24 maxlen: 24
101.33.114.0/23 maxlen: 24
150.109.90.0/24 maxlen: 24
150.109.91.0/24 maxlen: 24
240d:c000::/24 maxlen: 32
240d:c000:1000::/36 maxlen: 36
240d:c000:2000::/36 maxlen: 36
240d:c000:3000::/36 maxlen: 36
240d:c000:6000::/36 maxlen: 36
240d:c000:6000::/44 maxlen: 48
240d:c000:7000::/44 maxlen: 44
240d:c000:f000::/36 maxlen: 36
240d:c000:f000::/44 maxlen: 44
240d:c010::/48 maxlen: 48
240d:c010::/56 maxlen: 56
240d:c010:0:100::/56 maxlen: 56
240d:c010:10::/48 maxlen: 48
240d:c010:11::/48 maxlen: 48
240d:c010:12::/48 maxlen: 48
240d:c010:14::/48 maxlen: 48
240d:c010:16::/48 maxlen: 48
240d:c010:17::/48 maxlen: 48
240d:c010:20::/44 maxlen: 44
240d:c010:20::/56 maxlen: 56
240d:c010:20:100::/56 maxlen: 56
240d:c010:20:200::/56 maxlen: 56
240d:c010:30::/48 maxlen: 48
240d:c010:30::/56 maxlen: 56
240d:c010:30:100::/56 maxlen: 56
240d:c010:31::/48 maxlen: 48
240d:c010:50::/48 maxlen: 48
240d:c010:57::/48 maxlen: 48
240d:c010:58::/47 maxlen: 48
240d:c010:5c::/46 maxlen: 48
240d:c010:60::/48 maxlen: 48
240d:c010:66::/47 maxlen: 48
240d:c010:68::/48 maxlen: 48
240d:c010:6c::/47 maxlen: 48
240d:c010:6e::/48 maxlen: 48
240d:c040::/44 maxlen: 44
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2198 (0x896)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD
Validity
Not Before: Dec 17 08:45:08 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=657eb514-9ddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:02:7f:15:87:c9:5d:a0:00:7b:fb:d8:f5:74:
88:cc:59:e6:6f:4a:01:56:fc:15:e0:f8:4d:4e:db:
3c:1f:55:20:8b:91:97:f3:35:40:f3:9f:e2:15:48:
19:d2:82:5a:9c:4f:2c:63:97:05:70:37:37:2b:fe:
26:1f:fa:e4:e1:59:8a:09:be:8d:ce:17:da:73:58:
5e:b3:2f:25:b7:a1:bd:67:48:ec:34:b6:37:8b:b5:
43:00:84:10:c9:5a:71:01:bd:77:95:8f:aa:25:4e:
99:fa:76:0c:e4:53:9e:23:92:c4:aa:bd:48:1d:5c:
62:f5:a4:21:f1:4b:7b:9e:c1:bf:0e:8e:fb:84:6d:
09:0c:ef:39:cc:01:7a:a9:79:19:4d:70:92:70:85:
89:d7:20:66:90:f6:a3:72:2e:3a:54:db:c0:27:cf:
c3:09:c9:51:8f:95:d8:60:b5:04:8c:9d:02:80:e1:
d3:7c:bf:d6:6a:4c:6f:e5:fa:ec:66:16:b7:88:af:
55:f1:d5:92:0b:ef:bc:d3:cf:3f:32:98:42:cb:f1:
6b:c0:97:5b:3c:63:0f:ea:de:d5:6f:ba:fb:85:44:
81:ef:48:83:4a:b9:30:35:ab:ee:4b:74:45:2e:ee:
e7:79:69:db:f3:e2:92:de:50:a3:e4:23:3f:31:d3:
c9:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:E0:CF:4F:C5:F5:53:41:4E:89:01:AA:C6:7E:1A:E0:75:C5:53:D8
X509v3 Authority Key Identifier:
keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/37534B4A88E911EE9292612FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.128.222.0/23
43.130.0.0-43.130.191.255
43.131.0.0/18
43.131.224.0/19
43.132.68.0/24
43.132.96.0-43.132.255.255
43.134.0.0/17
43.135.58.0/24
43.135.187.0/24
43.152.96.0/19
43.152.192.0-43.174.255.255
101.32.140.0/24
101.33.4.0/23
101.33.17.0-101.33.19.255
101.33.26.0/23
101.33.30.0/23
101.33.41.0/24
101.33.114.0/23
150.109.90.0/23
IPv6:
240d:c000::/24
Signature Algorithm: sha256WithRSAEncryption
c5:3e:9a:ad:55:95:e7:f8:8e:e5:11:fb:18:0c:65:74:44:fa:
a8:3a:ee:32:c7:a4:94:0a:71:32:09:6c:ab:cd:7a:c4:5c:b2:
58:a2:16:da:59:8c:4d:4e:68:54:42:2a:1a:c3:3f:e8:fc:83:
3a:24:f0:c4:00:eb:b2:bd:8c:cc:e7:ec:05:38:48:f8:6b:43:
b1:28:b2:4e:b6:26:1c:db:37:57:ea:f7:6d:58:d0:21:24:f8:
1e:ea:6e:61:23:ca:3e:40:40:c5:4d:a5:0e:bd:d1:dd:7c:f4:
ba:83:c8:46:8e:7f:42:26:72:bf:5b:f1:99:a6:73:96:75:fc:
b4:58:78:d8:54:66:e0:5f:39:a5:6a:33:ca:b9:6c:1c:77:85:
24:b0:8b:72:45:b6:fc:9c:31:37:f1:11:3d:ea:0c:85:23:db:
88:03:78:98:91:26:79:22:93:87:c6:a2:ed:95:2b:eb:83:c0:
52:c9:cf:10:8b:15:32:8c:68:44:38:d8:70:8a:71:9a:db:a7:
fc:cf:e5:6a:34:bf:64:f8:37:b5:2a:2c:dd:82:33:47:fc:c4:
ab:ff:ad:e7:03:79:3c:4f:fe:e9:fc:45:3b:be:d1:4c:77:f8:
40:78:64:a9:d4:c2:94:dd:dc:28:af:26:6d:56:db:8f:ce:f2:
ba:cc:78:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 22 03:56:16 2023 by rpki-client on console-fra.rpki-client.org