Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/CE65694C08F511EE8E3D9231C4F9AE02.roa
File: CE65694C08F511EE8E3D9231C4F9AE02.roa (raw, json)
Hash identifier: 73Le6eStH7PMaxBIM3J9VDFz5HNNOwBCIXpnIfqDNrQ=
Subject key identifier: 6D:B4:2D:2F:F6:FD:B9:57:DC:94:23:49:D6:00:44:4C:15:A1:DC:3E
Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Certificate serial: 344E
Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/CE65694C08F511EE8E3D9231C4F9AE02.roa
Signing time: Mon 12 Jun 2023 08:20:31 +0000
ROA not before: Mon 12 Jun 2023 08:20:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38616
IP address blocks: 111.88.79.0/24 maxlen: 24
111.88.138.0/24 maxlen: 24
111.88.139.0/24 maxlen: 24
111.88.144.0/20 maxlen: 23
111.88.144.0/23 maxlen: 24
111.88.146.0/24 maxlen: 24
111.88.150.0/23 maxlen: 24
111.88.152.0/23 maxlen: 24
111.88.156.0/22 maxlen: 24
111.88.164.0/22 maxlen: 24
111.88.168.0/22 maxlen: 24
111.88.184.0/22 maxlen: 23
111.88.232.0/21 maxlen: 24
115.186.0.0/24 maxlen: 24
115.186.19.0/24 maxlen: 24
115.186.48.0/21 maxlen: 24
115.186.64.0/19 maxlen: 21
115.186.64.0/21 maxlen: 24
115.186.76.0/22 maxlen: 24
115.186.80.0/20 maxlen: 24
115.186.97.0/24 maxlen: 24
115.186.99.0/24 maxlen: 24
115.186.100.0/22 maxlen: 22
115.186.100.0/24 maxlen: 24
115.186.104.0/24 maxlen: 24
115.186.105.0/24 maxlen: 24
115.186.114.0/24 maxlen: 24
115.186.116.0/22 maxlen: 22
115.186.116.0/24 maxlen: 24
115.186.122.0/23 maxlen: 23
115.186.126.0/23 maxlen: 23
115.186.127.0/24 maxlen: 24
117.102.12.0/22 maxlen: 24
117.102.29.0/24 maxlen: 24
117.102.30.0/24 maxlen: 24
117.102.31.0/24 maxlen: 24
203.81.216.0/24 maxlen: 24
203.81.219.0/24 maxlen: 24
203.81.220.0/22 maxlen: 22
203.81.220.0/24 maxlen: 24
203.81.221.0/24 maxlen: 24
203.81.222.0/24 maxlen: 24
203.81.223.0/24 maxlen: 24
203.81.224.0/22 maxlen: 22
203.81.224.0/24 maxlen: 24
203.81.225.0/24 maxlen: 24
203.81.226.0/24 maxlen: 24
203.81.227.0/24 maxlen: 24
203.81.228.0/23 maxlen: 24
203.81.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Aug 2023 12:51:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13390 (0x344e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Validity
Not Before: Jun 12 08:20:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6486d54e-fb63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:28:d7:59:e1:60:10:43:61:48:a6:ef:aa:f7:
e4:a5:ab:ee:6d:94:aa:a3:b6:b1:9f:71:9d:79:6d:
e2:06:9f:cd:21:11:62:76:04:dc:f8:e6:07:5c:c7:
45:c3:ab:88:40:5e:a2:72:00:0d:e5:f6:8c:0e:55:
f9:ad:75:ef:59:7f:c6:5a:35:4c:3e:6e:42:2a:5b:
52:30:1c:bb:52:3b:35:5e:9a:17:2b:9c:e4:bc:cf:
c1:d2:e8:61:a9:cd:35:62:97:59:9c:9f:a8:52:f9:
91:d9:dc:67:b2:75:b4:0e:23:20:63:52:35:b8:fd:
9f:b3:06:e1:83:c3:88:f4:2a:4a:27:af:e6:be:ec:
53:77:8a:7f:44:43:50:8b:2d:f1:e2:44:42:d7:55:
60:aa:ae:b9:c2:d7:cb:79:99:44:5a:26:40:0e:d2:
27:32:41:37:22:5f:20:67:d7:79:5a:c7:38:dc:ca:
70:d4:21:6b:2c:4f:36:b6:09:94:9b:b2:75:86:51:
5c:9f:80:c0:1a:64:2b:80:16:f8:f5:f0:8f:98:01:
9c:8a:dc:43:c0:29:63:0b:df:2c:8e:31:4b:20:d6:
9b:de:2e:eb:ca:32:aa:99:fc:d7:be:f6:89:d7:17:
d7:38:aa:b8:bd:18:d4:f0:c9:6e:eb:12:11:b0:7b:
39:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:B4:2D:2F:F6:FD:B9:57:DC:94:23:49:D6:00:44:4C:15:A1:DC:3E
X509v3 Authority Key Identifier:
keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/CE65694C08F511EE8E3D9231C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
111.88.79.0/24
111.88.138.0/23
111.88.144.0/20
111.88.164.0-111.88.171.255
111.88.184.0/22
111.88.232.0/21
115.186.0.0/24
115.186.19.0/24
115.186.48.0/21
115.186.64.0/19
115.186.97.0/24
115.186.99.0-115.186.105.255
115.186.114.0/24
115.186.116.0/22
115.186.122.0/23
115.186.126.0/23
117.102.12.0/22
117.102.29.0-117.102.31.255
203.81.216.0/24
203.81.219.0-203.81.229.255
203.81.231.0/24
Signature Algorithm: sha256WithRSAEncryption
41:63:d3:9f:9d:86:fa:de:7b:20:4b:dc:70:34:e3:7c:46:b1:
5d:10:00:4b:f3:92:15:ea:07:8f:1b:bb:d4:a7:e4:55:07:32:
49:9a:e0:75:86:b3:02:72:a1:7c:22:f8:a2:9a:8e:c9:4a:c1:
70:08:3d:d4:84:90:21:14:4e:d6:c9:51:52:02:4f:96:3b:ee:
98:f9:a7:64:e5:87:dc:fe:0c:6c:5a:d4:24:d2:04:1e:7b:ee:
83:66:6b:68:d4:36:43:9f:3d:60:c9:91:6e:b2:22:ab:92:10:
17:6e:b0:3e:b6:d3:bb:7d:62:13:c9:e5:4a:55:9a:74:9d:75:
84:2b:97:63:ad:28:5c:75:20:c8:ed:3f:67:27:29:72:b7:ea:
ee:c3:0a:8b:1b:44:14:da:bd:eb:f2:16:04:74:23:85:c3:53:
4b:f6:b6:0e:59:89:e6:e8:ac:ee:90:38:e5:60:60:7a:03:d2:
af:6d:2a:9a:4b:58:ad:9f:a0:f0:71:0d:46:bf:11:42:0b:b8:
c3:72:4e:c1:97:04:4d:6a:1e:1c:2e:e5:ef:0d:d3:04:02:01:
58:0e:70:a6:4b:6a:c1:ee:11:75:f0:03:63:62:6b:49:8a:a6:
6f:39:12:41:0d:d2:76:e8:ae:ef:92:55:10:e9:92:ab:37:7e:
d4:39:2f:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:20 2024 by rpki-client on console-ams.rpki-client.org