Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/8B0DCAFCA07811EEB25C0B54C4F9AE02.roa
File: 8B0DCAFCA07811EEB25C0B54C4F9AE02.roa (raw, json)
Hash identifier: cYIf8PsjlgIgObTLzlDJnLtOgoI8w6+oBzLnwmqZEjA=
Subject key identifier: 70:E1:97:02:7C:DB:4E:EE:50:44:67:B0:A0:27:D6:E5:9A:EB:4F:33
Certificate issuer: /CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD
Certificate serial: 094C
Authority key identifier: 39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/8B0DCAFCA07811EEB25C0B54C4F9AE02.roa
Signing time: Tue 02 Jul 2024 23:12:06 +0000
ROA not before: Tue 02 Jul 2024 23:12:06 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 132203
IP address blocks: 43.128.222.0/23 maxlen: 23
43.130.0.0/17 maxlen: 24
43.130.128.0/18 maxlen: 24
43.131.0.0/18 maxlen: 24
43.131.224.0/19 maxlen: 24
43.132.68.0/24 maxlen: 24
43.132.96.0/19 maxlen: 24
43.132.128.0/17 maxlen: 24
43.134.0.0/18 maxlen: 18
43.134.64.0/18 maxlen: 18
43.135.58.0/24 maxlen: 24
43.135.187.0/24 maxlen: 24
43.152.96.0/19 maxlen: 24
43.152.192.0/19 maxlen: 19
43.152.224.0/19 maxlen: 19
43.153.0.0/18 maxlen: 18
43.153.64.0/18 maxlen: 18
43.153.128.0/18 maxlen: 18
43.153.164.0/24 maxlen: 24
43.153.187.0/24 maxlen: 24
43.153.192.0/18 maxlen: 18
43.153.250.0/23 maxlen: 23
43.154.0.0/18 maxlen: 18
43.154.64.0/18 maxlen: 18
43.154.128.0/18 maxlen: 18
43.154.192.0/18 maxlen: 18
43.155.0.0/17 maxlen: 18
43.155.127.0/24 maxlen: 24
43.155.128.0/17 maxlen: 18
43.156.0.0/18 maxlen: 18
43.156.64.0/18 maxlen: 18
43.156.128.0/18 maxlen: 18
43.156.192.0/18 maxlen: 18
43.156.252.0/24 maxlen: 24
43.156.254.0/24 maxlen: 24
43.157.0.0/17 maxlen: 24
43.157.128.0/18 maxlen: 24
43.157.192.0/18 maxlen: 24
43.158.0.0/16 maxlen: 16
43.158.0.0/17 maxlen: 24
43.158.128.0/18 maxlen: 24
43.158.192.0/18 maxlen: 24
43.159.0.0/16 maxlen: 16
43.159.0.0/20 maxlen: 24
43.159.16.0/20 maxlen: 24
43.159.32.0/19 maxlen: 24
43.159.76.0/24 maxlen: 24
43.159.128.0/18 maxlen: 24
43.159.192.0/18 maxlen: 24
43.160.0.0/16 maxlen: 24
43.161.0.0/17 maxlen: 24
43.161.128.0/17 maxlen: 24
43.162.0.0/17 maxlen: 24
43.162.128.0/17 maxlen: 24
43.163.0.0/16 maxlen: 16
43.163.0.0/17 maxlen: 17
43.163.0.0/18 maxlen: 24
43.163.64.0/18 maxlen: 24
43.163.128.0/18 maxlen: 18
43.163.192.0/18 maxlen: 24
43.164.0.0/16 maxlen: 24
43.165.0.0/16 maxlen: 24
43.166.0.0/16 maxlen: 24
43.167.0.0/16 maxlen: 24
43.168.0.0/16 maxlen: 24
43.169.0.0/16 maxlen: 24
43.170.0.0/16 maxlen: 24
43.171.0.0/16 maxlen: 24
43.172.0.0/16 maxlen: 24
43.173.0.0/16 maxlen: 24
43.174.0.0/16 maxlen: 24
101.32.140.0/24 maxlen: 24
101.33.4.0/23 maxlen: 23
101.33.17.0/24 maxlen: 24
101.33.18.0/23 maxlen: 23
101.33.26.0/23 maxlen: 23
101.33.30.0/23 maxlen: 23
101.33.41.0/24 maxlen: 24
101.33.114.0/23 maxlen: 24
150.109.90.0/24 maxlen: 24
150.109.91.0/24 maxlen: 24
240d:c000::/24 maxlen: 32
240d:c000:1000::/36 maxlen: 36
240d:c000:2000::/36 maxlen: 36
240d:c000:3000::/36 maxlen: 36
240d:c000:6000::/36 maxlen: 36
240d:c000:6000::/44 maxlen: 48
240d:c000:7000::/44 maxlen: 44
240d:c000:f000::/36 maxlen: 36
240d:c000:f000::/44 maxlen: 44
240d:c000:f010::/44 maxlen: 44
240d:c000:f020::/44 maxlen: 44
240d:c000:f030::/44 maxlen: 44
240d:c010::/48 maxlen: 48
240d:c010::/56 maxlen: 56
240d:c010:0:100::/56 maxlen: 56
240d:c010:10::/48 maxlen: 48
240d:c010:11::/48 maxlen: 48
240d:c010:12::/48 maxlen: 48
240d:c010:14::/48 maxlen: 48
240d:c010:16::/48 maxlen: 48
240d:c010:17::/48 maxlen: 48
240d:c010:20::/44 maxlen: 44
240d:c010:20::/56 maxlen: 56
240d:c010:20:100::/56 maxlen: 56
240d:c010:20:200::/56 maxlen: 56
240d:c010:30::/56 maxlen: 56
240d:c010:30:100::/56 maxlen: 56
240d:c010:50::/48 maxlen: 48
240d:c010:57::/48 maxlen: 48
240d:c010:58::/47 maxlen: 48
240d:c010:5c::/46 maxlen: 48
240d:c010:60::/48 maxlen: 48
240d:c010:66::/47 maxlen: 48
240d:c010:68::/48 maxlen: 48
240d:c010:6c::/47 maxlen: 48
240d:c010:6e::/48 maxlen: 48
240d:c040::/44 maxlen: 44
Validation: Failed, certificate revoked on Tue 20 Aug 2024 01:58:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2380 (0x94c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9157D67/serialNumber=39C43967570087F583E425A9FE9B69B9506A59BD
Validity
Not Before: Jul 2 23:12:06 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=66848946-c247
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b5:e3:64:04:00:74:a4:3c:27:01:11:6d:67:
9d:06:2c:55:a2:8c:95:ab:0b:8f:b6:7b:4d:23:0a:
c3:1a:e7:9b:ac:1a:27:7e:fa:11:07:50:c6:b6:f4:
0d:45:91:71:0a:6f:a4:dc:ca:e1:5b:f6:82:28:80:
f7:2c:16:a5:c0:68:6b:f9:fa:fa:78:2f:b5:0c:4e:
2b:5b:88:4e:07:b0:cb:fb:bc:f6:eb:67:e4:c5:d9:
7c:e3:33:c1:8b:e9:23:8c:19:6d:10:44:5e:92:14:
b5:b9:c9:96:6d:d9:e2:e6:fe:45:72:ed:4e:29:09:
1a:f2:bf:8d:37:a9:51:fb:9e:7b:4d:58:6b:a4:f1:
e4:34:43:09:f6:92:d0:e8:13:54:0a:5c:c0:ac:0a:
ed:8b:e8:eb:db:e0:f9:24:d0:e0:0d:3a:9d:8f:0e:
4e:56:bb:2c:d4:b7:f1:77:7f:21:a6:9d:5f:b9:62:
8c:86:b4:8e:46:89:eb:07:b1:b7:5c:38:16:7c:d9:
78:14:da:58:a9:41:32:46:1e:74:3b:86:ee:26:b7:
1c:86:6c:2d:37:fa:20:c2:e5:b5:e8:ea:fb:2b:a9:
a1:dd:c9:e6:16:4b:94:72:bf:c4:31:23:6c:12:78:
69:a6:52:63:35:0e:6f:3f:2c:a0:0a:29:b4:09:86:
43:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E1:97:02:7C:DB:4E:EE:50:44:67:B0:A0:27:D6:E5:9A:EB:4F:33
X509v3 Authority Key Identifier:
keyid:39:C4:39:67:57:00:87:F5:83:E4:25:A9:FE:9B:69:B9:50:6A:59:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OcQ5Z1cAh_WD5CWp_ptpuVBqWb0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D67/69E6C16A442A11EB9599AD38C4F9AE02/8B0DCAFCA07811EEB25C0B54C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.128.222.0/23
43.130.0.0-43.130.191.255
43.131.0.0/18
43.131.224.0/19
43.132.68.0/24
43.132.96.0-43.132.255.255
43.134.0.0/17
43.135.58.0/24
43.135.187.0/24
43.152.96.0/19
43.152.192.0-43.174.255.255
101.32.140.0/24
101.33.4.0/23
101.33.17.0-101.33.19.255
101.33.26.0/23
101.33.30.0/23
101.33.41.0/24
101.33.114.0/23
150.109.90.0/23
IPv6:
240d:c000::/24
Signature Algorithm: sha256WithRSAEncryption
9b:62:81:ef:67:0c:5f:27:80:0f:7c:f6:ab:c9:be:08:9d:9b:
3e:7c:3e:a8:64:55:a6:a2:83:a1:84:62:6d:97:47:fb:9e:76:
4c:7e:6c:d0:ab:3b:41:38:ae:cf:21:86:f5:70:dc:79:6b:41:
43:89:69:60:3c:42:c4:f2:4d:af:28:21:4e:42:d3:81:b9:44:
98:4b:80:80:10:1b:18:a3:f8:f2:81:d6:fb:aa:ae:60:56:d3:
da:d1:8a:40:9a:bb:19:47:10:8d:90:c7:2a:bc:e9:82:c3:f0:
8d:16:22:ce:4c:85:3e:0a:48:35:4a:ea:e2:4d:a4:7c:82:6a:
ba:43:52:4d:12:2f:01:94:d8:0e:80:8b:ba:f9:69:79:02:93:
be:72:79:52:c2:ab:0a:0e:52:99:c4:19:85:4a:cf:10:69:c2:
89:61:84:0d:50:c5:44:f7:8b:1c:66:7c:67:cb:ca:56:bc:0b:
c9:01:3d:2c:ad:87:5b:73:81:5e:9a:be:7d:3c:c7:93:1c:6d:
0b:c3:44:5c:53:af:7f:1c:74:11:b5:79:bb:fe:99:84:ec:42:
11:2b:44:13:44:04:c3:4c:07:3c:c8:dd:16:5a:a4:9e:22:6e:
28:af:e6:fa:57:cf:a3:29:45:a4:58:a0:3f:39:9f:ab:c9:48:
a0:f3:47:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 20 06:00:09 2024 by rpki-client on console-ams.rpki-client.org