Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/FE324EBEE93311EEA5014D10C4F9AE02.roa
File: FE324EBEE93311EEA5014D10C4F9AE02.roa (raw, json)
Hash identifier: t2CjJh2uNxUWJT7jQJ9Mto9Ogs4xIAKgutIn0lC/cRA=
Subject key identifier: C7:A3:A9:3B:4B:1E:84:28:7A:C7:01:32:5F:C2:65:56:D3:C9:73:C9
Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264
Certificate serial: 0925
Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/FE324EBEE93311EEA5014D10C4F9AE02.roa
Signing time: Sat 23 Mar 2024 16:40:01 +0000
ROA not before: Sat 23 Mar 2024 16:40:01 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 45814
IP address blocks: 14.192.128.0/24 maxlen: 24
14.192.129.0/24 maxlen: 24
14.192.130.0/24 maxlen: 24
14.192.131.0/24 maxlen: 24
14.192.132.0/24 maxlen: 24
14.192.133.0/24 maxlen: 24
14.192.134.0/24 maxlen: 24
14.192.135.0/24 maxlen: 24
14.192.136.0/24 maxlen: 24
14.192.137.0/24 maxlen: 24
14.192.138.0/24 maxlen: 24
14.192.139.0/24 maxlen: 24
14.192.140.0/24 maxlen: 24
14.192.141.0/24 maxlen: 24
14.192.142.0/24 maxlen: 24
14.192.143.0/24 maxlen: 24
14.192.144.0/24 maxlen: 24
14.192.145.0/24 maxlen: 24
14.192.146.0/24 maxlen: 24
14.192.147.0/24 maxlen: 24
14.192.148.0/24 maxlen: 24
14.192.149.0/24 maxlen: 24
14.192.150.0/24 maxlen: 24
14.192.151.0/24 maxlen: 24
14.192.152.0/24 maxlen: 24
14.192.153.0/24 maxlen: 24
14.192.154.0/24 maxlen: 24
14.192.155.0/24 maxlen: 24
14.192.156.0/24 maxlen: 24
14.192.157.0/24 maxlen: 24
14.192.158.0/24 maxlen: 24
14.192.159.0/24 maxlen: 24
103.20.134.0/24 maxlen: 24
103.20.135.0/24 maxlen: 24
111.92.128.0/24 maxlen: 24
111.92.129.0/24 maxlen: 24
111.92.130.0/24 maxlen: 24
111.92.131.0/24 maxlen: 24
111.92.132.0/24 maxlen: 24
111.92.133.0/24 maxlen: 24
111.92.134.0/24 maxlen: 24
111.92.135.0/24 maxlen: 24
111.92.136.0/24 maxlen: 24
111.92.137.0/24 maxlen: 24
111.92.138.0/24 maxlen: 24
111.92.139.0/24 maxlen: 24
111.92.140.0/24 maxlen: 24
111.92.141.0/24 maxlen: 24
111.92.142.0/24 maxlen: 24
111.92.143.0/24 maxlen: 24
111.92.144.0/24 maxlen: 24
111.92.145.0/24 maxlen: 24
111.92.146.0/24 maxlen: 24
111.92.147.0/24 maxlen: 24
111.92.148.0/24 maxlen: 24
111.92.149.0/24 maxlen: 24
111.92.150.0/24 maxlen: 24
111.92.151.0/24 maxlen: 24
111.92.152.0/24 maxlen: 24
111.92.153.0/24 maxlen: 24
111.92.154.0/24 maxlen: 24
111.92.155.0/24 maxlen: 24
111.92.156.0/24 maxlen: 24
111.92.157.0/24 maxlen: 24
111.92.158.0/24 maxlen: 24
111.92.159.0/24 maxlen: 24
2403:7980::/32 maxlen: 32
2403:7980::/36 maxlen: 36
Validation: Failed, certificate revoked on Tue 26 Mar 2024 18:28:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2341 (0x925)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264
Validity
Not Before: Mar 23 16:40:01 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=65ff05e1-04c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ec:ed:f9:84:7b:0a:c7:a8:c5:f2:d6:66:fc:
61:82:a2:a2:c9:8b:76:7e:2d:0d:6e:a2:1c:59:f1:
b3:52:a2:cc:cb:58:aa:28:11:cf:c9:ea:ef:c0:e1:
8b:4f:ea:76:b7:d6:d5:b3:5e:64:87:e7:17:ec:1a:
aa:45:ac:c6:98:d1:a6:e0:9b:ba:f0:39:46:f3:52:
f2:ae:9d:2c:17:35:3d:0a:ae:df:b2:c7:e9:b9:bc:
52:14:4e:72:7e:91:09:d0:e3:7b:f0:db:db:3e:30:
35:08:ec:ac:63:f9:a0:dc:1b:3c:dc:d2:63:b4:62:
c0:1d:77:17:e9:fa:20:d8:a3:bf:11:1f:c4:7a:cc:
f0:6a:67:22:61:ea:00:a4:7c:1f:af:6d:a5:4f:de:
6d:19:42:49:79:4e:73:37:8f:4e:21:f0:94:5a:00:
6f:54:2f:15:e6:7e:44:5e:19:1c:b1:1b:73:61:ec:
ae:da:f5:c4:af:b8:30:40:6c:d0:30:3f:50:59:8e:
7b:f0:24:8d:d3:6d:03:fb:ac:8b:f2:2e:67:e9:29:
29:f7:7f:26:c6:2d:6f:bb:f5:83:f2:28:53:d2:d0:
e9:7a:5a:03:95:2f:49:06:72:2d:c6:19:30:6f:a3:
52:05:5d:b4:54:38:7e:6b:d7:55:96:fe:82:4b:db:
28:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:A3:A9:3B:4B:1E:84:28:7A:C7:01:32:5F:C2:65:56:D3:C9:73:C9
X509v3 Authority Key Identifier:
keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/FE324EBEE93311EEA5014D10C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.192.128.0/19
103.20.134.0/23
111.92.128.0/19
IPv6:
2403:7980::/32
Signature Algorithm: sha256WithRSAEncryption
83:c2:bb:7a:cd:b9:55:94:92:c6:1f:99:df:2a:2c:8d:8f:fa:
1e:80:76:54:50:a6:bd:17:f5:55:a2:c8:a2:ec:bd:2e:ca:72:
37:7b:7f:06:14:35:27:d6:4d:a9:0f:31:35:06:0a:79:1d:96:
4c:df:71:a0:07:12:78:c5:6f:a3:8d:50:57:71:0c:b4:82:fc:
50:a3:ff:01:55:35:03:2d:80:61:66:62:bd:06:b5:0c:17:16:
29:58:77:8f:8d:4b:4e:4d:cf:f7:e1:ee:08:fa:29:ac:1e:ee:
fc:42:1b:59:03:ef:53:00:01:e8:66:d2:64:14:f2:ca:ea:00:
53:0b:2c:40:ec:06:8f:48:15:82:2c:65:99:e2:9f:0d:eb:49:
cb:9e:cb:9d:a1:62:96:13:33:df:e9:3c:8f:a4:66:cf:10:52:
9f:69:2c:a1:b0:b1:13:1a:7d:f3:9b:ef:4b:d6:2e:97:d8:39:
35:c5:7f:90:50:21:15:c9:59:1e:d1:00:b7:1c:77:95:ee:4b:
b3:3f:81:53:6e:c8:2c:31:d2:cf:fa:95:57:e6:83:d4:42:94:
6d:d7:57:4f:8c:f3:a4:d8:13:58:ce:93:85:f8:ed:b9:ab:5c:
30:31:c5:c4:d7:2f:72:43:ec:85:0b:34:4e:54:c6:60:b0:9e:
64:4d:8f:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 26 22:30:50 2024 by rpki-client on console-ams.rpki-client.org