Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/A717FAD6324E11EDBF710C58C4F9AE02.roa
File: A717FAD6324E11EDBF710C58C4F9AE02.roa (raw, json)
Hash identifier: t2P1JzUQlKBZQsBfMUUEaVXU7vq/26W1vnBfjirNtIk=
Subject key identifier: 77:5F:C3:48:38:25:92:D0:5F:AE:7C:C6:2B:A8:4E:E3:01:AD:D0:83
Certificate issuer: /CN=A916A983/serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F
Certificate serial: 11AC
Authority key identifier: 71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/A717FAD6324E11EDBF710C58C4F9AE02.roa
Signing time: Wed 02 Aug 2023 17:35:02 +0000
ROA not before: Wed 02 Aug 2023 17:35:02 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 1221
IP address blocks: 1.120.0.0/13 maxlen: 13
1.128.0.0/11 maxlen: 11
58.160.0.0/12 maxlen: 12
60.224.0.0/13 maxlen: 13
61.8.0.0/19 maxlen: 19
61.9.128.0/17 maxlen: 17
101.103.0.0/16 maxlen: 16
101.160.0.0/11 maxlen: 11
110.140.0.0/15 maxlen: 15
110.142.0.0/16 maxlen: 16
110.143.0.0/16 maxlen: 16
110.144.0.0/13 maxlen: 13
120.144.0.0/13 maxlen: 13
120.152.0.0/14 maxlen: 14
120.156.0.0/15 maxlen: 15
120.158.0.0/16 maxlen: 16
121.208.0.0/12 maxlen: 12
123.209.0.0/16 maxlen: 16
123.210.0.0/15 maxlen: 15
124.176.0.0/12 maxlen: 12
125.255.0.0/16 maxlen: 16
202.7.64.0/19 maxlen: 19
202.12.128.0/18 maxlen: 18
202.12.192.0/19 maxlen: 19
202.12.224.0/20 maxlen: 20
202.12.240.0/23 maxlen: 23
202.12.242.0/24 maxlen: 24
203.2.228.0/24 maxlen: 24
203.9.190.0/23 maxlen: 23
203.12.42.0/24 maxlen: 24
203.12.97.0/24 maxlen: 24
203.12.144.0/21 maxlen: 21
203.13.21.0/24 maxlen: 24
203.14.0.0/20 maxlen: 20
203.15.68.0/24 maxlen: 24
203.16.180.0/22 maxlen: 22
203.17.40.0/21 maxlen: 21
203.17.162.0/24 maxlen: 24
203.18.76.0/23 maxlen: 23
203.18.112.0/20 maxlen: 20
203.22.129.0/24 maxlen: 24
203.24.134.0/23 maxlen: 23
203.24.170.0/24 maxlen: 24
203.26.8.0/22 maxlen: 22
203.26.175.0/24 maxlen: 24
203.27.69.0/24 maxlen: 24
203.27.128.0/18 maxlen: 18
203.27.237.0/24 maxlen: 24
203.29.160.0/20 maxlen: 20
203.34.33.0/24 maxlen: 24
203.34.68.0/24 maxlen: 24
203.35.0.0/16 maxlen: 16
203.36.0.0/14 maxlen: 14
203.40.0.0/13 maxlen: 13
203.48.0.0/14 maxlen: 14
203.52.0.0/15 maxlen: 15
203.54.0.0/16 maxlen: 16
203.58.32.0/19 maxlen: 19
203.58.64.0/18 maxlen: 18
203.58.128.0/17 maxlen: 17
203.62.148.0/22 maxlen: 22
203.62.248.0/21 maxlen: 21
203.92.224.0/19 maxlen: 24
203.100.224.0/19 maxlen: 19
203.143.192.0/18 maxlen: 18
203.143.192.0/19 maxlen: 19
203.143.224.0/19 maxlen: 19
210.23.128.0/19 maxlen: 19
2001:8000::/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 29 Apr 2024 20:31:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4524 (0x11ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916A983/serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F
Validity
Not Before: Aug 2 17:35:02 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=64ca93c6-1cad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:76:67:37:9c:eb:55:df:7b:76:a6:75:9e:5c:
85:dd:28:2e:4e:09:1f:03:66:5d:3e:28:da:90:c5:
82:bd:91:41:2f:17:6f:d6:3c:c3:72:9a:52:c6:6e:
4e:62:84:14:2f:99:8d:85:6f:b9:40:b4:b3:a9:6e:
92:c9:2a:17:cd:a9:17:9e:77:df:f6:60:a4:e0:7f:
4e:70:23:07:8c:51:e9:5c:1c:ff:27:c6:56:6e:5b:
57:73:06:35:d8:1d:ca:88:3c:e5:b6:fe:04:d0:75:
c1:e8:52:21:47:f5:4b:3e:7d:68:5d:c7:b0:3d:e7:
f7:ef:e7:74:58:01:3c:37:1d:d5:5f:b8:37:f7:5a:
23:b9:65:53:72:c9:69:d9:1d:70:9a:45:43:8e:02:
0a:ae:ba:00:15:32:6c:68:87:80:8d:62:68:db:95:
ea:7c:23:36:c8:8c:00:5b:63:9d:4e:31:3d:11:5b:
ed:a6:3b:e9:61:c1:bd:9d:b9:7a:0e:b3:6b:3c:cd:
80:7c:99:fd:a5:17:c6:27:b1:af:56:44:ef:43:86:
c8:24:64:fb:2f:c6:37:93:f1:06:60:28:40:28:9d:
75:7b:23:88:07:fc:b2:d2:2c:2b:1e:bb:0b:eb:cb:
71:1d:a4:3b:ce:65:4a:5d:cc:37:44:34:64:ee:e3:
c9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:5F:C3:48:38:25:92:D0:5F:AE:7C:C6:2B:A8:4E:E3:01:AD:D0:83
X509v3 Authority Key Identifier:
keyid:71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/A717FAD6324E11EDBF710C58C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.120.0.0-1.159.255.255
58.160.0.0/12
60.224.0.0/13
61.8.0.0/19
61.9.128.0/17
101.103.0.0/16
101.160.0.0/11
110.140.0.0-110.151.255.255
120.144.0.0-120.158.255.255
121.208.0.0/12
123.209.0.0-123.211.255.255
124.176.0.0/12
125.255.0.0/16
202.7.64.0/19
202.12.128.0-202.12.242.255
203.2.228.0/24
203.9.190.0/23
203.12.42.0/24
203.12.97.0/24
203.12.144.0/21
203.13.21.0/24
203.14.0.0/20
203.15.68.0/24
203.16.180.0/22
203.17.40.0/21
203.17.162.0/24
203.18.76.0/23
203.18.112.0/20
203.22.129.0/24
203.24.134.0/23
203.24.170.0/24
203.26.8.0/22
203.26.175.0/24
203.27.69.0/24
203.27.128.0/18
203.27.237.0/24
203.29.160.0/20
203.34.33.0/24
203.34.68.0/24
203.35.0.0-203.54.255.255
203.58.32.0-203.58.255.255
203.62.148.0/22
203.62.248.0/21
203.92.224.0/19
203.100.224.0/19
203.143.192.0/18
210.23.128.0/19
IPv6:
2001:8000::/20
Signature Algorithm: sha256WithRSAEncryption
45:8a:6c:e4:5c:f7:b6:3c:f6:ed:88:20:65:dc:e3:ad:c3:86:
ab:b7:49:8a:55:3f:a3:4f:47:1e:aa:85:f2:a4:d9:e8:2b:06:
6c:9d:43:9f:50:e0:a9:38:03:09:fe:b7:cb:18:ca:82:d8:f2:
0b:d1:76:8a:8b:eb:40:1a:b9:8a:d9:f9:90:14:38:0b:b0:94:
15:eb:fb:03:83:58:b8:d6:67:d2:74:0b:6e:94:3c:be:25:c1:
23:e9:b0:70:1c:ab:ef:41:26:28:aa:2f:2c:78:fc:2c:9b:7f:
8d:d6:8c:ef:50:dc:14:19:26:8b:30:62:9a:0c:2f:77:33:a2:
dc:20:5b:06:8f:9b:1b:c8:b8:1f:db:34:e0:15:9d:5c:48:3b:
83:48:f0:1f:c6:5a:1e:c5:24:71:48:9a:84:a5:6b:b1:fc:92:
6b:b6:20:33:6e:c4:40:ad:ca:72:4c:61:9d:b5:00:91:40:7e:
b8:a9:2a:76:7d:4c:de:c9:aa:91:a5:4a:e1:35:2e:2c:a7:0b:
e7:94:28:27:4b:ce:98:eb:77:72:71:56:7f:c9:e9:36:a6:5d:
da:e7:46:76:25:d4:dd:8c:5c:d4:de:9f:bf:d7:f9:39:21:17:
96:d8:7b:88:28:86:10:32:1e:6c:02:ea:41:17:c2:a1:d6:3e:
43:0d:16:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:10 2024 by rpki-client on console-fra.rpki-client.org