Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/70A2F838386A11EFB1A56844C4F9AE02.roa
File: 70A2F838386A11EFB1A56844C4F9AE02.roa (raw, json)
Hash identifier: p/o0HD650rBXsHEK08v6kGbj7VVJdHgYwoKYUgkvM8E=
Subject key identifier: 06:17:D6:B3:7A:4A:B2:A3:CE:96:03:E3:DD:1A:1E:94:74:36:47:53
Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264
Certificate serial: 09E8
Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/70A2F838386A11EFB1A56844C4F9AE02.roa
Signing time: Tue 02 Jul 2024 11:58:48 +0000
ROA not before: Tue 02 Jul 2024 11:58:48 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 45814
IP address blocks: 14.192.128.0/24 maxlen: 24
14.192.129.0/24 maxlen: 24
14.192.130.0/24 maxlen: 24
14.192.131.0/24 maxlen: 24
14.192.132.0/24 maxlen: 24
14.192.134.0/24 maxlen: 24
14.192.135.0/24 maxlen: 24
14.192.136.0/24 maxlen: 24
14.192.137.0/24 maxlen: 24
14.192.138.0/24 maxlen: 24
14.192.139.0/24 maxlen: 24
14.192.141.0/24 maxlen: 24
14.192.142.0/24 maxlen: 24
14.192.143.0/24 maxlen: 24
14.192.144.0/24 maxlen: 24
14.192.145.0/24 maxlen: 24
14.192.146.0/24 maxlen: 24
14.192.147.0/24 maxlen: 24
14.192.148.0/24 maxlen: 24
14.192.149.0/24 maxlen: 24
14.192.150.0/24 maxlen: 24
14.192.151.0/24 maxlen: 24
14.192.152.0/24 maxlen: 24
14.192.153.0/24 maxlen: 24
14.192.154.0/23 maxlen: 23
14.192.154.0/24 maxlen: 24
14.192.155.0/24 maxlen: 24
14.192.156.0/23 maxlen: 23
14.192.156.0/24 maxlen: 24
14.192.157.0/24 maxlen: 24
14.192.158.0/24 maxlen: 24
14.192.159.0/24 maxlen: 24
43.247.120.0/24 maxlen: 24
43.247.121.0/24 maxlen: 24
43.247.122.0/24 maxlen: 24
43.247.123.0/24 maxlen: 24
103.20.132.0/24 maxlen: 24
103.20.133.0/24 maxlen: 24
111.92.128.0/19 maxlen: 19
111.92.128.0/24 maxlen: 24
111.92.129.0/24 maxlen: 24
111.92.130.0/24 maxlen: 24
2403:7980::/32 maxlen: 32
2403:7980::/36 maxlen: 36
Validation: Failed, certificate revoked on Tue 02 Jul 2024 17:14:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2536 (0x9e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915A0CD
Validity
Not Before: Jul 2 11:58:48 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=6683eb78-b07e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c6:7b:a1:2e:0f:08:81:bb:76:57:76:49:d1:
89:f6:94:db:ab:b3:84:be:14:ce:9c:92:71:14:b2:
ea:13:ef:51:24:45:ac:43:d2:36:03:48:d4:1a:12:
2e:86:68:05:67:09:d2:29:ea:b2:7e:45:2c:ad:73:
77:ba:ad:b4:41:dc:c8:66:2e:bf:b1:09:26:97:96:
fe:18:7b:b7:bb:73:86:ab:c0:e0:51:4f:8c:c6:28:
26:a4:c6:48:1d:e1:c3:5e:f7:d2:24:9e:c8:c6:fc:
23:35:b4:38:2e:de:79:d0:a2:69:fd:e2:39:56:7e:
22:a2:fe:86:02:a7:af:39:87:17:5d:75:7b:aa:36:
9f:9e:62:dd:a5:5e:f7:b7:ca:7f:b6:fd:ff:03:22:
fd:2c:e1:95:13:87:07:dc:e8:62:d5:80:28:8b:30:
57:fe:4e:50:12:85:ee:05:a9:f4:86:5f:99:32:88:
8f:2c:5b:9c:f3:c6:cd:6c:1e:14:1a:3c:8e:9f:a4:
34:c6:70:d4:10:bf:78:98:08:49:9f:ad:b8:2e:36:
62:1c:2b:fd:ca:0f:de:b1:6a:80:74:4f:ea:aa:8a:
55:53:5a:4d:7f:c3:0c:b5:4e:e6:de:b9:cd:bb:42:
3a:3f:5a:5d:96:87:5d:20:fd:d8:d3:e5:ac:fa:1c:
7a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:17:D6:B3:7A:4A:B2:A3:CE:96:03:E3:DD:1A:1E:94:74:36:47:53
X509v3 Authority Key Identifier:
keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/70A2F838386A11EFB1A56844C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.192.128.0-14.192.132.255
14.192.134.0-14.192.139.255
14.192.141.0-14.192.159.255
43.247.120.0/22
103.20.132.0/23
111.92.128.0/19
IPv6:
2403:7980::/32
Signature Algorithm: sha256WithRSAEncryption
6d:dd:7c:f9:5b:25:db:c9:49:c3:f3:ac:28:63:07:11:6e:33:
af:03:77:0c:4b:6c:33:82:71:74:1f:83:2e:23:5f:f7:94:83:
23:c1:2f:85:2d:ec:35:47:7f:ae:fb:b9:14:12:49:2e:1e:e1:
b9:03:11:c6:65:07:09:71:d3:f2:de:ab:9f:0a:23:60:12:d1:
c5:c0:eb:b3:d2:44:1a:d3:89:47:e6:a2:b7:5d:4b:d1:3e:bb:
3c:00:a9:c9:20:86:10:dc:5e:1f:01:b4:69:79:ff:83:88:e8:
5e:b3:53:09:0b:35:5b:c8:13:d4:e4:09:14:ad:3d:e5:81:51:
7a:97:83:8c:ee:c5:c9:22:45:03:3e:d9:8a:ab:e4:b4:67:d3:
16:d6:aa:de:ef:a2:7e:61:ee:de:62:6b:56:70:66:59:58:d0:
b2:89:a4:b5:0a:fa:cd:ee:9e:26:06:42:72:a6:9b:5a:20:a8:
9f:f5:0a:c9:83:d0:ef:18:44:37:93:35:5a:15:38:3b:14:0a:
06:0e:5b:6c:ec:cb:69:4f:37:ea:e3:31:56:e1:f3:67:a3:5a:
15:77:7d:0d:79:c6:39:3e:ee:55:0f:be:a8:cb:ad:83:6d:15:
71:26:18:01:01:ee:21:cb:d0:31:e3:97:1f:7d:91:00:86:aa:
45:a6:9e:48
-----BEGIN CERTIFICATE-----
MIIFtjCCBJ6gAwIBAgICCegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND
NjczMkUyNjQwHhcNMjQwNzAyMTE1ODQ4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjgzZWI3OC1iMDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyMZ7oS4PCIG7dld2SdGJ9pTbq7OEvhTOnJJxFLLqE+9RJEWsQ9I2A0jUGhIu
hmgFZwnSKeqyfkUsrXN3uq20QdzIZi6/sQkml5b+GHu3u3OGq8DgUU+MxigmpMZI
HeHDXvfSJJ7IxvwjNbQ4Lt550KJp/eI5Vn4iov6GAqevOYcXXXV7qjafnmLdpV73
t8p/tv3/AyL9LOGVE4cH3Ohi1YAoizBX/k5QEoXuBan0hl+ZMoiPLFuc88bNbB4U
GjyOn6Q0xnDUEL94mAhJn624LjZiHCv9yg/esWqAdE/qqopVU1pNf8MMtU7m3rnN
u0I6P1pdloddIP3Y0+Ws+hx6uwIDAQABo4IC2jCCAtYwHQYDVR0OBBYEFAYX1rN6
SrKjzpYD490aHpR0NkdTMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5
RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0
bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvNzBBMkY4Mzgz
ODZBMTFFRkIxQTU2ODQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZAYIKwYBBQUHAQcBAf8E
VTBTMEIEAgABMDwwDAMEBw7AgAMEAA7AhDAMAwQBDsCGAwQCDsCIMAwDBAAOwI0D
BAUOwIADBAIr93gDBAFnFIQDBAVvXIAwDQQCAAIwBwMFACQDeYAwDQYJKoZIhvcN
AQELBQADggEBAG3dfPlbJdvJScPzrChjBxFuM68DdwxLbDOCcXQfgy4jX/eUgyPB
L4Ut7DVHf677uRQSSS4e4bkDEcZlBwlx0/Leq58KI2AS0cXA67PSRBrTiUfmordd
S9E+uzwAqckghhDcXh8BtGl5/4OI6F6zUwkLNVvIE9TkCRStPeWBUXqXg4zuxcki
RQM+2Yqr5LRn0xbWqt7von5h7t5ia1ZwZllY0LKJpLUK+s3uniYGQnKmm1ogqJ/1
CsmD0O8YRDeTNVoVODsUCgYOW2zsy2lPN+rjMVbh82ejWhV3fQ15xjk+7lUPvqjL
rYNtFXEmGAEB7iHL0DHjlx99kQCGqkWmnkg=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:29:35 2025 by rpki-client