Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/4191454805C811EEB36CD71FC4F9AE02.roa
File: 4191454805C811EEB36CD71FC4F9AE02.roa (raw, json)
Hash identifier: NnIyaop4KpXJintDyarY34D6eW532GfoAHsMkZqbsys=
Subject key identifier: 90:4A:FC:F7:AA:4A:9D:82:E2:D3:36:BF:FB:41:68:80:2C:61:62:18
Certificate issuer: /CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918
Certificate serial: 09AC
Authority key identifier: 7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/4191454805C811EEB36CD71FC4F9AE02.roa
Signing time: Thu 08 Jun 2023 06:46:55 +0000
ROA not before: Thu 08 Jun 2023 06:46:55 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 17819
IP address blocks: 36.255.39.0/24 maxlen: 24
119.27.0.0/19 maxlen: 19
119.27.0.0/24 maxlen: 24
119.27.1.0/24 maxlen: 24
119.27.32.0/20 maxlen: 20
119.27.50.0/23 maxlen: 23
119.27.52.0/22 maxlen: 22
119.27.56.0/22 maxlen: 22
119.27.60.0/23 maxlen: 23
122.50.64.0/19 maxlen: 19
122.50.104.0/21 maxlen: 21
122.50.112.0/24 maxlen: 24
122.50.113.0/24 maxlen: 24
122.50.114.0/24 maxlen: 24
122.50.115.0/24 maxlen: 24
122.50.120.0/22 maxlen: 22
122.50.124.0/22 maxlen: 22
122.50.124.0/23 maxlen: 23
122.50.126.0/24 maxlen: 24
180.189.0.0/21 maxlen: 21
180.189.8.0/21 maxlen: 21
180.189.32.0/21 maxlen: 21
180.189.40.0/21 maxlen: 21
180.189.48.0/22 maxlen: 22
180.189.56.0/21 maxlen: 21
183.177.0.0/20 maxlen: 20
183.177.16.0/20 maxlen: 20
183.177.32.0/20 maxlen: 20
202.167.224.0/23 maxlen: 23
202.167.226.0/24 maxlen: 24
202.167.227.0/24 maxlen: 24
202.167.230.0/23 maxlen: 23
202.167.232.0/24 maxlen: 24
202.167.234.0/23 maxlen: 23
202.167.236.0/22 maxlen: 22
202.167.240.0/22 maxlen: 22
202.167.243.0/24 maxlen: 24
202.167.244.0/22 maxlen: 22
202.167.248.0/23 maxlen: 23
202.167.252.0/23 maxlen: 23
202.167.254.0/24 maxlen: 24
202.167.255.0/24 maxlen: 24
202.177.192.0/24 maxlen: 24
202.177.193.0/24 maxlen: 24
202.177.195.0/24 maxlen: 24
202.177.196.0/23 maxlen: 23
202.177.198.0/24 maxlen: 24
202.177.199.0/24 maxlen: 24
202.177.200.0/23 maxlen: 23
202.177.201.0/24 maxlen: 24
202.177.202.0/23 maxlen: 23
202.177.204.0/23 maxlen: 23
202.177.207.0/24 maxlen: 24
203.190.224.0/23 maxlen: 23
203.190.224.0/24 maxlen: 24
203.190.226.0/24 maxlen: 24
203.190.228.0/23 maxlen: 23
203.190.232.0/22 maxlen: 22
203.190.232.0/24 maxlen: 24
203.190.236.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 04 Jan 2024 01:22:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2476 (0x9ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918
Validity
Not Before: Jun 8 06:46:55 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=6481795f-7dd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:15:f1:46:8f:d9:6c:fa:39:42:c8:c7:0f:58:
11:41:bb:ab:42:96:ba:5f:39:6b:cb:ee:62:d8:3c:
46:b3:a9:27:c9:65:81:2d:c6:05:bc:b1:ca:ce:8c:
20:ee:25:95:03:f7:bc:ec:28:d1:5f:1c:28:a6:e7:
66:9a:af:85:6a:02:a1:41:39:16:38:e9:b7:d8:2f:
b3:c4:b1:aa:52:49:c5:0e:2b:e5:64:bc:55:22:0b:
37:dd:81:a4:2b:af:3c:98:3f:59:87:dd:3c:7f:e1:
dc:f1:29:e0:91:58:03:34:1f:65:d5:31:1e:28:96:
f4:05:c7:87:91:ff:f5:78:63:c0:3f:e1:bb:0f:e2:
5e:d3:29:ee:fa:ce:de:f9:1f:29:25:e5:79:85:29:
95:fd:c2:59:a3:07:4d:79:e9:d6:9d:6c:14:13:d6:
47:a4:9d:70:e7:c8:93:7a:ff:69:54:91:62:ac:b8:
7f:7e:92:cc:f6:75:ab:5b:63:84:01:bd:9c:54:83:
3e:f2:37:82:8a:b1:a9:31:db:76:37:db:64:32:51:
66:ba:79:24:d9:cd:90:3c:91:a2:b3:8a:80:1f:24:
51:fa:ec:45:f8:6e:2d:40:63:b5:be:d7:73:06:bf:
7b:03:94:c0:33:ef:f6:01:28:fc:b2:b7:d0:71:ad:
05:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:4A:FC:F7:AA:4A:9D:82:E2:D3:36:BF:FB:41:68:80:2C:61:62:18
X509v3 Authority Key Identifier:
keyid:7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/4191454805C811EEB36CD71FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.255.39.0/24
119.27.0.0-119.27.47.255
119.27.50.0-119.27.61.255
122.50.64.0/19
122.50.104.0-122.50.115.255
122.50.120.0/21
180.189.0.0/20
180.189.32.0-180.189.51.255
180.189.56.0/21
183.177.0.0-183.177.47.255
202.167.224.0/22
202.167.230.0-202.167.232.255
202.167.234.0-202.167.249.255
202.167.252.0/22
202.177.192.0/23
202.177.195.0-202.177.205.255
202.177.207.0/24
203.190.224.0-203.190.226.255
203.190.228.0/23
203.190.232.0/21
Signature Algorithm: sha256WithRSAEncryption
56:d3:f9:fe:fa:6b:ce:b6:c3:86:5e:1f:f1:dd:f2:fb:78:2e:
22:47:16:12:c5:1b:0e:61:8d:63:18:eb:a4:62:cd:74:5d:0e:
db:09:49:d2:d0:7b:8f:34:fa:0b:2c:4e:fa:31:5b:e2:c8:54:
bf:64:bc:90:4f:d4:89:4c:5e:cf:4a:14:1a:01:22:a3:10:a5:
be:f6:dd:3a:33:53:93:34:d4:84:c0:43:04:21:40:0b:a2:8d:
27:35:ef:01:3e:50:56:e2:43:f0:aa:2f:60:e6:d0:77:ed:44:
80:8c:92:60:b2:28:d3:20:af:84:f1:53:cf:67:83:3d:9f:43:
fb:a8:51:ed:8c:64:ba:95:f7:1b:87:b9:cc:c0:a1:c7:3a:79:
b5:6d:4d:2c:e1:af:7c:33:78:24:23:78:49:7d:8f:39:e5:c8:
41:68:61:f4:d0:2b:2b:b9:d6:d8:34:ed:93:d6:c9:fd:1b:b1:
32:9d:a2:b1:f0:7e:55:0b:b1:f7:f1:f4:0e:4e:32:7f:8e:a2:
0a:8a:88:06:c9:7f:14:37:ba:d4:c2:0a:43:0d:d9:2a:90:9a:
9e:90:f7:19:ee:f3:c5:c7:bf:92:f3:3c:ef:73:87:72:d7:89:
82:08:8d:c4:6d:1d:81:dd:e8:ae:63:9a:93:60:09:16:7c:07:
45:3d:dd:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:07 2024 by rpki-client on console-fra.rpki-client.org