Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/A206F9E04A0511EFB323A276C4F9AE02.roa
File: A206F9E04A0511EFB323A276C4F9AE02.roa (raw, json)
Hash identifier: nkh9a7aVijOvIIOQmVYI5z/9HXUkENmHghU+kA3guHc=
Subject key identifier: 2C:A0:9C:01:63:B2:3A:79:39:3B:36:15:E3:28:B1:2A:E9:31:B1:3B
Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Certificate serial: 36B3
Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/A206F9E04A0511EFB323A276C4F9AE02.roa
Signing time: Wed 24 Jul 2024 21:42:33 +0000
ROA not before: Wed 24 Jul 2024 21:42:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 38710
IP address blocks: 111.88.72.0/21 maxlen: 21
111.88.72.0/23 maxlen: 24
111.88.74.0/23 maxlen: 24
111.88.76.0/22 maxlen: 23
111.88.78.0/24 maxlen: 24
111.88.96.0/19 maxlen: 19
111.88.144.0/20 maxlen: 23
111.88.164.0/22 maxlen: 23
111.88.168.0/22 maxlen: 24
111.88.184.0/22 maxlen: 23
111.88.188.0/22 maxlen: 23
111.88.233.0/24 maxlen: 24
111.88.238.0/24 maxlen: 24
111.88.239.0/24 maxlen: 24
111.88.244.0/22 maxlen: 22
111.88.248.0/21 maxlen: 21
111.88.248.0/22 maxlen: 22
111.88.248.0/23 maxlen: 23
111.88.249.0/24 maxlen: 24
111.88.250.0/24 maxlen: 24
111.88.255.0/24 maxlen: 24
115.186.10.0/23 maxlen: 23
115.186.12.0/23 maxlen: 23
115.186.14.0/24 maxlen: 24
115.186.16.0/24 maxlen: 24
115.186.17.0/24 maxlen: 24
115.186.21.0/24 maxlen: 24
115.186.23.0/24 maxlen: 24
115.186.24.0/23 maxlen: 23
115.186.25.0/24 maxlen: 24
115.186.30.0/23 maxlen: 24
115.186.32.0/20 maxlen: 22
115.186.32.0/24 maxlen: 24
115.186.33.0/24 maxlen: 24
115.186.34.0/24 maxlen: 24
115.186.35.0/24 maxlen: 24
115.186.36.0/22 maxlen: 23
115.186.36.0/23 maxlen: 24
115.186.40.0/24 maxlen: 24
115.186.42.0/24 maxlen: 24
115.186.43.0/24 maxlen: 24
115.186.44.0/24 maxlen: 24
115.186.45.0/24 maxlen: 24
115.186.46.0/24 maxlen: 24
115.186.47.0/24 maxlen: 24
115.186.56.0/21 maxlen: 23
115.186.56.0/22 maxlen: 24
115.186.60.0/23 maxlen: 24
115.186.63.0/24 maxlen: 24
115.186.64.0/19 maxlen: 23
115.186.76.0/22 maxlen: 24
115.186.80.0/21 maxlen: 24
115.186.90.0/24 maxlen: 24
115.186.96.0/20 maxlen: 23
115.186.96.0/22 maxlen: 24
115.186.101.0/24 maxlen: 24
115.186.102.0/23 maxlen: 24
115.186.104.0/24 maxlen: 24
115.186.106.0/23 maxlen: 24
115.186.108.0/22 maxlen: 24
115.186.112.0/20 maxlen: 23
115.186.112.0/23 maxlen: 24
115.186.115.0/24 maxlen: 24
115.186.117.0/24 maxlen: 24
115.186.118.0/23 maxlen: 24
115.186.120.0/23 maxlen: 24
115.186.125.0/24 maxlen: 24
115.186.126.0/24 maxlen: 24
117.102.0.0/21 maxlen: 21
117.102.0.0/22 maxlen: 22
117.102.0.0/23 maxlen: 24
117.102.2.0/24 maxlen: 24
117.102.3.0/24 maxlen: 24
117.102.4.0/24 maxlen: 24
117.102.5.0/24 maxlen: 24
117.102.6.0/24 maxlen: 24
117.102.7.0/24 maxlen: 24
117.102.8.0/24 maxlen: 24
117.102.9.0/24 maxlen: 24
117.102.10.0/24 maxlen: 24
117.102.12.0/23 maxlen: 24
117.102.14.0/23 maxlen: 24
117.102.16.0/24 maxlen: 24
117.102.17.0/24 maxlen: 24
117.102.18.0/23 maxlen: 24
117.102.20.0/22 maxlen: 24
117.102.24.0/22 maxlen: 22
117.102.24.0/23 maxlen: 24
117.102.26.0/24 maxlen: 24
117.102.27.0/24 maxlen: 24
117.102.28.0/24 maxlen: 24
117.102.29.0/24 maxlen: 24
117.102.30.0/24 maxlen: 24
117.102.31.0/24 maxlen: 24
117.102.32.0/24 maxlen: 24
117.102.33.0/24 maxlen: 24
117.102.34.0/24 maxlen: 24
117.102.35.0/24 maxlen: 24
117.102.36.0/24 maxlen: 24
117.102.37.0/24 maxlen: 24
117.102.38.0/24 maxlen: 24
117.102.39.0/24 maxlen: 24
117.102.40.0/24 maxlen: 24
117.102.41.0/24 maxlen: 24
117.102.42.0/24 maxlen: 24
117.102.43.0/24 maxlen: 24
117.102.44.0/24 maxlen: 24
117.102.45.0/24 maxlen: 24
117.102.46.0/24 maxlen: 24
117.102.47.0/24 maxlen: 24
203.81.192.0/21 maxlen: 22
203.81.192.0/24 maxlen: 24
203.81.193.0/24 maxlen: 24
203.81.194.0/24 maxlen: 24
203.81.195.0/24 maxlen: 24
203.81.196.0/24 maxlen: 24
203.81.197.0/24 maxlen: 24
203.81.198.0/23 maxlen: 24
203.81.208.0/20 maxlen: 24
203.81.224.0/20 maxlen: 24
2406:7000::/32 maxlen: 32
2406:7000::/48 maxlen: 48
2406:7000:1::/48 maxlen: 48
2406:7000:2::/48 maxlen: 48
2406:7000:3::/48 maxlen: 48
2406:7000:4::/48 maxlen: 48
2406:7000:5::/48 maxlen: 48
2406:7000:6::/48 maxlen: 48
2406:7000:7::/48 maxlen: 48
2406:7000:8::/48 maxlen: 48
2406:7000:9::/48 maxlen: 48
2406:7000:a::/48 maxlen: 48
2406:7000:b::/48 maxlen: 48
2406:7000:c::/48 maxlen: 48
2406:7000:d::/48 maxlen: 48
2406:7000:e::/48 maxlen: 48
2406:7000:f::/48 maxlen: 48
2406:7000:10::/48 maxlen: 48
2406:7000:11::/48 maxlen: 48
2406:7000:12::/48 maxlen: 48
2406:7000:13::/48 maxlen: 48
2406:7000:14::/48 maxlen: 48
2406:7000:15::/48 maxlen: 48
2406:7000:16::/48 maxlen: 48
2406:7000:17::/48 maxlen: 48
2406:7000:18::/48 maxlen: 48
2406:7000:19::/48 maxlen: 48
2406:7000:1a::/48 maxlen: 48
2406:7000:1b::/48 maxlen: 48
2406:7000:1c::/48 maxlen: 48
2406:7000:1d::/48 maxlen: 48
2406:7000:1e::/48 maxlen: 48
2406:7000:1f::/48 maxlen: 48
2406:7000:20::/48 maxlen: 48
2406:7000:21::/48 maxlen: 48
2406:7000:22::/48 maxlen: 48
2406:7000:23::/48 maxlen: 48
2406:7000:24::/48 maxlen: 48
2406:7000:25::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 25 Jul 2024 08:11:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14003 (0x36b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C83B
Validity
Not Before: Jul 24 21:42:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66a17548-9ddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e0:74:a2:e7:89:f6:63:b9:c4:c5:cb:95:ad:
ec:0b:c7:74:bc:4b:08:3a:a1:af:43:e0:8d:93:32:
b9:fc:6f:39:bc:c1:f3:3d:17:90:33:24:73:fa:a4:
7f:d9:18:4a:03:4b:32:e4:d1:b4:4f:6b:ae:92:66:
2e:5c:49:4c:30:d2:e2:46:55:37:c4:3c:a1:43:3d:
52:9c:5e:04:f0:bf:d7:23:e4:6c:bf:12:ab:1d:1a:
5a:3c:94:1a:13:b0:1b:b8:5d:8e:59:cf:b2:2e:0d:
6a:fe:b5:4d:36:b7:84:99:e0:d7:ba:72:86:6b:a6:
cc:ab:b7:97:ed:69:08:41:8c:97:2c:7d:16:f9:76:
93:f6:c4:14:6e:ec:b5:8c:bb:3c:e2:4b:54:22:e4:
80:b9:90:0c:f2:c1:a3:ba:19:1a:e7:1d:3a:2f:62:
8a:3f:13:88:39:b0:9e:f3:01:aa:ba:82:8a:b0:3b:
17:85:45:b6:12:9d:1d:2e:df:73:0f:71:97:a2:ca:
a9:e9:db:64:a1:78:0c:96:1b:e1:78:02:9d:35:6f:
c4:99:60:d2:57:ae:c2:3c:e9:e3:de:a7:5c:82:8e:
1d:50:98:8b:ad:7b:d3:1c:eb:89:ab:3e:54:fa:b1:
cb:d1:72:3c:ff:d5:9c:10:f7:b5:70:15:72:4d:9f:
d8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:A0:9C:01:63:B2:3A:79:39:3B:36:15:E3:28:B1:2A:E9:31:B1:3B
X509v3 Authority Key Identifier:
keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/A206F9E04A0511EFB323A276C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
111.88.72.0/21
111.88.96.0/19
111.88.144.0/20
111.88.164.0-111.88.171.255
111.88.184.0/21
111.88.233.0/24
111.88.238.0/23
111.88.244.0-111.88.255.255
115.186.10.0-115.186.14.255
115.186.16.0/23
115.186.21.0/24
115.186.23.0-115.186.25.255
115.186.30.0-115.186.47.255
115.186.56.0-115.186.127.255
117.102.0.0-117.102.10.255
117.102.12.0-117.102.47.255
203.81.192.0/21
203.81.208.0-203.81.239.255
IPv6:
2406:7000::/32
Signature Algorithm: sha256WithRSAEncryption
19:05:ff:3a:91:00:ad:da:64:b1:a5:b9:61:33:a2:32:3a:1a:
8b:9a:f5:e9:58:f3:07:fc:fb:20:da:71:f7:3a:9e:d6:8e:b9:
af:8c:cb:a3:06:71:d0:b7:da:96:06:80:a8:b2:06:48:f4:4e:
6d:ce:89:06:f8:e5:d0:8e:29:a5:81:40:74:36:07:48:3e:dc:
54:7d:f5:38:c0:40:5a:e9:e1:d3:f1:da:fa:7b:c0:89:c5:40:
10:61:0c:f4:fc:7b:a4:fc:47:0c:e5:f5:51:6b:b1:0b:f1:cc:
0c:c3:2c:ce:88:96:76:8a:e8:d4:29:ca:cd:63:5f:8d:a4:62:
f7:5b:46:f0:11:88:b4:d3:18:c1:35:90:81:06:84:6e:61:4d:
ae:b0:b4:de:03:af:6d:57:c4:1e:f4:35:c8:db:49:9e:df:b9:
56:af:89:dd:36:85:30:1c:d0:7d:1f:04:70:d6:e9:83:43:0f:
3a:0b:da:e8:5f:b9:8a:dd:ad:e2:c4:88:7c:e0:77:4c:b3:aa:
62:c8:3b:19:fe:a7:be:0c:21:4e:f2:86:38:ed:f5:5a:a3:ba:
0b:dd:e4:52:cc:a4:e1:7f:98:55:dd:98:dc:2a:a8:33:71:81:
0c:16:54:3d:0d:57:13:02:77:f2:e4:0b:2f:5a:bd:11:b6:76:
87:62:3e:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:27 2025 by rpki-client