Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/40A5D614848211EF886FB748C4F9AE02.roa
File: 40A5D614848211EF886FB748C4F9AE02.roa (raw, json)
Hash identifier: 5gWocCYr5uVDnNkXwbhKUfY63vr1EyFJ/BnvN1Uh7oQ=
Subject key identifier: 8E:98:1B:A7:F9:94:67:CC:26:D3:23:CF:82:A2:EF:A9:2F:26:08:E5
Certificate issuer: /CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918
Certificate serial: 0B51
Authority key identifier: 7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/40A5D614848211EF886FB748C4F9AE02.roa
Signing time: Mon 07 Oct 2024 08:00:44 +0000
ROA not before: Mon 07 Oct 2024 08:00:44 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 17819
IP address blocks: 119.27.0.0/19 maxlen: 19
119.27.0.0/24 maxlen: 24
119.27.1.0/24 maxlen: 24
119.27.32.0/20 maxlen: 20
119.27.52.0/22 maxlen: 22
119.27.56.0/22 maxlen: 22
119.27.60.0/23 maxlen: 23
122.50.64.0/19 maxlen: 19
122.50.104.0/21 maxlen: 21
122.50.112.0/24 maxlen: 24
122.50.113.0/24 maxlen: 24
122.50.114.0/24 maxlen: 24
122.50.115.0/24 maxlen: 24
122.50.120.0/22 maxlen: 22
122.50.124.0/22 maxlen: 22
122.50.124.0/23 maxlen: 23
122.50.126.0/24 maxlen: 24
180.189.0.0/21 maxlen: 21
180.189.8.0/21 maxlen: 21
180.189.32.0/21 maxlen: 21
180.189.40.0/21 maxlen: 21
180.189.48.0/22 maxlen: 22
183.177.0.0/20 maxlen: 20
183.177.16.0/20 maxlen: 20
183.177.32.0/20 maxlen: 20
202.167.224.0/23 maxlen: 23
202.167.226.0/24 maxlen: 24
202.167.236.0/22 maxlen: 22
202.167.240.0/22 maxlen: 22
202.167.243.0/24 maxlen: 24
202.167.254.0/24 maxlen: 24
202.167.255.0/24 maxlen: 24
202.177.193.0/24 maxlen: 24
202.177.195.0/24 maxlen: 24
202.177.198.0/24 maxlen: 24
202.177.202.0/23 maxlen: 23
203.190.224.0/23 maxlen: 23
203.190.224.0/24 maxlen: 24
203.190.226.0/24 maxlen: 24
203.190.228.0/23 maxlen: 23
203.190.236.0/22 maxlen: 22
2407:b000::/33 maxlen: 33
Validation: Failed, certificate revoked on Fri 18 Oct 2024 02:58:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2897 (0xb51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918
Validity
Not Before: Oct 7 08:00:44 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=6703952b-828d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:37:a1:9b:2e:f0:0f:3e:74:57:b2:a3:6a:2a:
2c:49:9f:1b:c0:45:5e:2c:44:50:68:e6:65:fa:e9:
0e:a5:b9:a5:4c:51:4b:21:e1:1c:6b:cd:f2:c4:c8:
f9:57:e8:69:9d:f0:b2:52:de:ee:a2:d4:33:d9:d3:
e7:8f:9c:81:6f:d2:3a:48:b2:8b:00:94:cd:77:89:
59:06:b8:d3:e2:5a:a2:f2:02:85:99:c7:e9:e6:7b:
d6:45:04:27:60:15:48:89:90:8f:a1:c1:19:1e:22:
2b:c4:95:e0:0b:6f:d6:e3:d0:29:e3:74:64:09:9a:
42:8b:31:af:d4:50:ad:e9:d6:43:67:ef:8a:50:6a:
56:6d:93:55:d8:fb:2e:75:65:34:1b:50:ac:3e:a2:
d8:d4:a0:72:2e:20:61:d2:f4:5f:3b:c1:98:53:81:
90:d5:cb:80:2e:da:8e:70:c1:3b:8d:58:e1:7c:69:
dd:6f:1d:ff:af:49:d7:db:42:36:95:23:0f:a6:9e:
ac:62:b2:c4:78:8b:89:5f:cf:63:0c:6e:40:8e:dc:
fd:c6:fa:e8:a2:fa:47:0b:c2:15:c2:67:5a:72:be:
42:d4:9e:52:4b:73:5c:63:93:f9:39:ba:57:94:e5:
ec:1e:ad:88:7a:b0:c6:68:c6:19:69:3e:d0:52:4c:
d8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:98:1B:A7:F9:94:67:CC:26:D3:23:CF:82:A2:EF:A9:2F:26:08:E5
X509v3 Authority Key Identifier:
keyid:7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/40A5D614848211EF886FB748C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
119.27.0.0-119.27.47.255
119.27.52.0-119.27.61.255
122.50.64.0/19
122.50.104.0-122.50.115.255
122.50.120.0/21
180.189.0.0/20
180.189.32.0-180.189.51.255
183.177.0.0-183.177.47.255
202.167.224.0-202.167.226.255
202.167.236.0-202.167.243.255
202.167.254.0/23
202.177.193.0/24
202.177.195.0/24
202.177.198.0/24
202.177.202.0/23
203.190.224.0-203.190.226.255
203.190.228.0/23
203.190.236.0/22
IPv6:
2407:b000::/33
Signature Algorithm: sha256WithRSAEncryption
99:64:d6:2f:85:14:03:80:c6:33:d4:25:56:62:97:41:ec:46:
a8:11:20:75:cf:6b:27:47:aa:0f:2f:39:56:27:fb:f1:ba:44:
56:d1:23:fc:fd:3c:85:d8:7f:2e:ae:f0:87:a3:a9:2d:e9:53:
39:9e:71:ec:d1:01:00:88:c2:cd:da:4e:1e:79:2c:71:f6:28:
9c:7c:67:fc:a8:8d:ef:54:e5:a4:08:bb:b1:a7:16:5c:ef:00:
6a:36:cf:ae:c9:20:cf:e1:a4:5b:f5:56:35:d9:1e:30:47:14:
af:cc:2e:e5:a7:6d:78:18:b2:2f:3b:46:3e:f3:bd:e3:db:c8:
d5:c8:a4:aa:ca:9e:40:22:e0:e4:75:b4:53:e9:8f:ec:30:2f:
25:d9:1a:2e:f1:e0:d6:39:46:e7:0c:3b:02:39:3e:e5:8e:5c:
9e:8e:8f:4c:e7:10:d2:6b:9a:db:6c:c2:e3:56:0a:62:96:f8:
6a:22:9a:af:12:f3:66:76:78:9f:a7:8b:9d:f8:88:28:74:81:
c4:1d:b5:d0:95:54:8c:c3:60:a1:19:bd:67:79:6b:cd:30:16:
45:e1:7a:99:72:f3:43:d4:85:73:97:e6:78:2f:38:1f:03:fb:
97:91:d6:dd:8d:72:82:f5:d7:2d:da:7b:47:45:ea:96:18:d9:
bb:a6:39:1d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Oct 18 05:29:01 2024 by rpki-client on console-fra.rpki-client.org