Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/87666328860F11EFB2270F39C4F9AE02.roa
File: 87666328860F11EFB2270F39C4F9AE02.roa (raw, json)
Hash identifier: sQatQALcStZEy2hEA9pg5UUlgwPEIkHlEyDCpvALC7Y=
Subject key identifier: D1:05:72:5E:91:25:85:DF:C0:4D:0D:92:89:A0:AA:B7:9D:0F:9A:BD
Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264
Certificate serial: 0B43
Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/87666328860F11EFB2270F39C4F9AE02.roa
Signing time: Fri 01 Nov 2024 21:54:11 +0000
ROA not before: Fri 01 Nov 2024 21:54:11 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 45814
IP address blocks: 14.192.128.0/24 maxlen: 24
14.192.129.0/24 maxlen: 24
14.192.131.0/24 maxlen: 24
14.192.136.0/24 maxlen: 24
14.192.143.0/24 maxlen: 24
14.192.144.0/24 maxlen: 24
14.192.147.0/24 maxlen: 24
14.192.148.0/24 maxlen: 24
14.192.149.0/24 maxlen: 24
14.192.150.0/24 maxlen: 24
14.192.153.0/24 maxlen: 24
14.192.155.0/24 maxlen: 24
14.192.156.0/24 maxlen: 24
14.192.157.0/24 maxlen: 24
14.192.158.0/24 maxlen: 24
14.192.159.0/24 maxlen: 24
43.247.120.0/24 maxlen: 24
43.247.121.0/24 maxlen: 24
43.247.122.0/24 maxlen: 24
103.20.134.0/24 maxlen: 24
111.92.128.0/19 maxlen: 19
2403:7980::/32 maxlen: 32
2403:7980::/36 maxlen: 36
Validation: Failed, certificate revoked on Sat 02 Nov 2024 16:26:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2883 (0xb43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915A0CD
Validity
Not Before: Nov 1 21:54:11 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=67254e03-0814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8b:00:c9:57:47:89:cb:30:03:46:b8:5a:80:
6e:85:69:04:42:c7:3d:38:23:24:90:83:71:81:5f:
f6:3a:ba:6b:7a:e8:60:b5:ce:aa:7c:8d:47:a7:5b:
36:6b:01:69:5f:3b:51:2a:f0:d6:a0:5d:a4:10:dd:
82:54:a9:37:b5:cf:43:cf:45:bb:58:41:88:6a:89:
a1:d6:73:b4:17:95:b2:31:47:bf:0c:2b:83:2c:af:
27:43:e7:70:30:55:30:e1:ed:e4:13:ee:cc:2f:14:
30:ed:62:70:ae:85:7e:b3:b4:f6:4a:e1:43:95:42:
0e:f9:84:74:74:e4:b2:0b:ed:52:0b:c2:c0:a7:9d:
d7:c8:e7:49:37:96:8c:9a:66:d9:80:45:d8:a7:6b:
c5:a7:57:af:c2:d3:62:05:1c:42:8d:87:d6:e5:83:
c5:f3:83:ef:e1:a7:9f:4a:fe:2b:e3:7c:1d:b2:a7:
97:cf:e0:b7:8d:55:4e:65:72:2b:c1:69:3c:bc:bb:
92:02:9d:68:5e:bb:c8:90:4d:92:bd:3c:10:18:a0:
63:4e:54:a4:8b:27:02:1a:00:ae:7e:07:50:82:71:
ba:bb:6d:bf:f1:1d:8e:41:44:91:cb:ef:13:c5:f0:
60:0c:c0:82:06:2f:c5:62:e7:c1:41:a9:1c:f4:41:
76:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:05:72:5E:91:25:85:DF:C0:4D:0D:92:89:A0:AA:B7:9D:0F:9A:BD
X509v3 Authority Key Identifier:
keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/87666328860F11EFB2270F39C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.192.128.0/23
14.192.131.0/24
14.192.136.0/24
14.192.143.0-14.192.144.255
14.192.147.0-14.192.150.255
14.192.153.0/24
14.192.155.0-14.192.159.255
43.247.120.0-43.247.122.255
103.20.134.0/24
111.92.128.0/19
IPv6:
2403:7980::/32
Signature Algorithm: sha256WithRSAEncryption
16:b8:bf:fa:f6:47:63:6a:0d:19:f5:7d:27:e5:19:1c:27:b6:
b7:3e:2b:b0:82:04:7d:80:af:2b:cf:01:dd:b6:5d:4b:63:1d:
59:0f:f6:5e:0c:3e:23:19:9f:b5:54:43:a7:99:5b:4b:2c:5e:
43:52:f8:39:44:7a:ad:61:0b:f0:4f:e2:f5:c5:5e:73:1e:3d:
2a:10:b6:dd:7d:4a:55:72:8a:62:0e:b3:08:33:89:8a:5f:c3:
f5:b0:69:65:5c:c6:f2:bf:bb:27:63:8b:e8:ff:0f:db:fe:0d:
5d:63:4c:12:84:cb:92:a8:e3:65:e9:c6:5b:95:e7:4b:5f:cd:
32:e4:87:90:ed:a2:5c:db:15:96:22:86:a7:bd:74:37:d3:81:
f2:2e:57:7f:e6:e3:a7:bc:4c:43:ff:e1:e4:8c:e2:26:09:f0:
9b:70:cc:a0:88:fe:e8:85:dc:3b:45:cc:34:b0:34:6e:83:07:
f9:6a:a9:52:eb:83:8c:6f:d5:3e:c5:14:47:ef:cb:2a:ca:85:
05:c9:79:ea:b4:d2:40:d0:bd:79:99:5e:9a:05:27:67:40:7b:
83:2f:b8:b1:77:b2:af:cd:f0:e2:ba:f8:19:f3:5a:dc:56:48:
92:85:3a:cc:fc:0d:63:16:02:19:9d:50:68:7a:b4:e7:93:25:
4d:6e:3b:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:41:28 2025 by rpki-client