Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/AC36F4D4AA9F11EEBEEB100EC4F9AE02.roa
File: AC36F4D4AA9F11EEBEEB100EC4F9AE02.roa (raw, json)
Hash identifier: +O3TcI+m9VK+2Zh3FVCqdgNHOt1AjyWRQryqaFx0rzY=
Subject key identifier: 73:93:A5:65:D8:C3:6C:67:38:02:95:D1:A1:6A:E1:A4:6B:94:8E:FF
Certificate issuer: /CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918
Certificate serial: 0B00
Authority key identifier: 7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/AC36F4D4AA9F11EEBEEB100EC4F9AE02.roa
Signing time: Fri 16 Aug 2024 20:28:25 +0000
ROA not before: Fri 16 Aug 2024 20:28:25 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 17819
IP address blocks: 36.255.39.0/24 maxlen: 24
119.27.0.0/19 maxlen: 19
119.27.0.0/24 maxlen: 24
119.27.1.0/24 maxlen: 24
119.27.32.0/20 maxlen: 20
119.27.50.0/23 maxlen: 23
119.27.52.0/22 maxlen: 22
119.27.56.0/22 maxlen: 22
119.27.60.0/23 maxlen: 23
122.50.64.0/19 maxlen: 19
122.50.104.0/21 maxlen: 21
122.50.112.0/24 maxlen: 24
122.50.113.0/24 maxlen: 24
122.50.114.0/24 maxlen: 24
122.50.115.0/24 maxlen: 24
122.50.120.0/22 maxlen: 22
122.50.124.0/22 maxlen: 22
122.50.124.0/23 maxlen: 23
122.50.126.0/24 maxlen: 24
180.189.0.0/21 maxlen: 21
180.189.8.0/21 maxlen: 21
180.189.32.0/21 maxlen: 21
180.189.40.0/21 maxlen: 21
180.189.48.0/22 maxlen: 22
183.177.0.0/20 maxlen: 20
183.177.16.0/20 maxlen: 20
183.177.32.0/20 maxlen: 20
202.167.224.0/23 maxlen: 23
202.167.226.0/24 maxlen: 24
202.167.227.0/24 maxlen: 24
202.167.230.0/23 maxlen: 23
202.167.232.0/24 maxlen: 24
202.167.234.0/23 maxlen: 23
202.167.236.0/22 maxlen: 22
202.167.240.0/22 maxlen: 22
202.167.243.0/24 maxlen: 24
202.167.244.0/22 maxlen: 22
202.167.248.0/23 maxlen: 23
202.167.252.0/23 maxlen: 23
202.167.254.0/24 maxlen: 24
202.167.255.0/24 maxlen: 24
202.177.192.0/24 maxlen: 24
202.177.193.0/24 maxlen: 24
202.177.195.0/24 maxlen: 24
202.177.196.0/23 maxlen: 23
202.177.198.0/24 maxlen: 24
202.177.199.0/24 maxlen: 24
202.177.200.0/23 maxlen: 23
202.177.201.0/24 maxlen: 24
202.177.202.0/23 maxlen: 23
202.177.204.0/23 maxlen: 23
202.177.207.0/24 maxlen: 24
203.190.224.0/23 maxlen: 23
203.190.224.0/24 maxlen: 24
203.190.226.0/24 maxlen: 24
203.190.228.0/23 maxlen: 23
203.190.232.0/22 maxlen: 22
203.190.232.0/24 maxlen: 24
203.190.236.0/22 maxlen: 22
2407:b000::/33 maxlen: 33
Validation: Failed, certificate revoked on Wed 21 Aug 2024 07:17:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2816 (0xb00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918
Validity
Not Before: Aug 16 20:28:25 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66bfb669-ac94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5a:94:6f:eb:e6:60:93:e8:46:a8:25:e0:c7:
8f:88:8f:b3:aa:2b:9a:ff:bf:87:2a:d2:82:c8:4a:
89:0d:3d:ca:f5:f7:5c:28:b1:cc:cd:53:b8:a4:e5:
03:86:e9:41:13:9c:4e:70:79:a4:27:35:7d:c0:ce:
f6:59:68:48:0e:70:eb:ab:9d:b1:a8:4d:5a:0a:d6:
bf:36:d2:9e:33:1e:8e:00:ba:45:ef:f5:c0:59:ff:
c5:ed:fa:fd:7a:1f:4c:c3:82:15:60:8d:8a:b1:50:
12:0b:ef:b0:ce:20:0a:16:60:97:a8:68:9b:24:44:
2e:6b:85:a3:4e:2a:83:f6:53:d7:95:f2:4a:de:52:
2a:cd:13:9d:02:37:ce:62:b2:1b:d5:13:10:7b:58:
b5:13:b5:f0:39:77:df:a3:40:d3:6f:a4:0e:1c:15:
6b:c3:00:7f:3b:9b:52:57:7d:33:77:a6:c1:3b:bf:
1f:29:d4:9e:b3:cf:86:7a:a0:18:54:7d:af:44:83:
11:f1:ad:35:54:0b:f4:a8:d2:55:0e:08:23:2a:49:
b4:0e:e1:3c:77:00:27:4a:2e:73:fa:be:89:b2:32:
fb:b5:75:53:48:9d:bd:b0:be:42:fc:8e:2a:31:f8:
27:63:39:18:d1:89:99:14:dc:26:0f:a6:1b:39:b8:
ab:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:93:A5:65:D8:C3:6C:67:38:02:95:D1:A1:6A:E1:A4:6B:94:8E:FF
X509v3 Authority Key Identifier:
keyid:7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/AC36F4D4AA9F11EEBEEB100EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.255.39.0/24
119.27.0.0-119.27.47.255
119.27.50.0-119.27.61.255
122.50.64.0/19
122.50.104.0-122.50.115.255
122.50.120.0/21
180.189.0.0/20
180.189.32.0-180.189.51.255
183.177.0.0-183.177.47.255
202.167.224.0/22
202.167.230.0-202.167.232.255
202.167.234.0-202.167.249.255
202.167.252.0/22
202.177.192.0/23
202.177.195.0-202.177.205.255
202.177.207.0/24
203.190.224.0-203.190.226.255
203.190.228.0/23
203.190.232.0/21
IPv6:
2407:b000::/33
Signature Algorithm: sha256WithRSAEncryption
57:1c:16:6c:2b:a6:f4:5f:49:a4:bd:ab:d9:96:73:2a:90:a8:
7c:ba:35:81:5a:5b:ed:73:d1:58:6e:06:f4:15:80:43:48:2d:
c5:61:e7:cf:8c:b5:47:22:ac:09:08:d6:06:bd:73:15:f3:7b:
45:57:8d:62:d0:23:3a:7e:65:51:6e:39:fa:a8:4b:84:93:df:
9f:65:5b:de:91:1c:2f:ba:dd:a0:ac:80:66:fc:31:41:6f:75:
9f:50:31:a6:2a:86:fb:3d:19:49:39:e6:96:1b:98:b6:37:a5:
6c:a1:9c:af:81:1e:ec:2c:5c:47:14:bd:b6:9a:b9:b0:13:25:
a3:ce:5c:91:bf:6f:0d:8e:6d:93:28:04:13:a3:ab:4f:e8:38:
49:ea:af:58:24:b9:67:9d:dc:4f:25:78:1a:a0:f6:84:77:13:
80:74:c9:b2:cc:56:cc:a8:86:fa:0f:45:7e:bc:f3:15:1b:db:
be:74:fb:52:64:aa:3b:d4:5f:02:c1:f6:6e:2c:c5:0c:c7:1e:
df:c5:a2:79:57:e9:d6:ef:3c:7e:45:ff:05:5a:c4:62:0c:d0:
6a:35:52:8c:e1:c8:f8:76:d5:45:48:f3:20:00:24:99:e3:36:
af:8e:a2:5f:f1:1c:17:11:d9:e6:33:41:08:28:ba:24:c8:12:
d0:28:d8:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 21 09:45:54 2024 by rpki-client on console-ams.rpki-client.org