Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/75D81246877811EEA5A7C152C4F9AE02.roa
File: 75D81246877811EEA5A7C152C4F9AE02.roa (raw, json)
Hash identifier: ++skkMnqjVt3zufgb91U/9/h97eC5k1embkNe75JBpQ=
Subject key identifier: 79:41:91:05:4F:40:EB:02:33:01:3C:7F:60:38:69:02:10:18:8F:C5
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 826A
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/75D81246877811EEA5A7C152C4F9AE02.roa
Signing time: Fri 02 Feb 2024 11:15:24 +0000
ROA not before: Fri 02 Feb 2024 11:15:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137085
IP address blocks: 27.123.240.0/23 maxlen: 24
43.225.248.0/22 maxlen: 24
43.228.164.0/23 maxlen: 24
103.37.98.0/23 maxlen: 24
103.52.32.0/24 maxlen: 24
103.68.140.0/23 maxlen: 24
103.69.239.0/24 maxlen: 24
103.72.196.0/24 maxlen: 24
103.79.48.0/23 maxlen: 24
103.91.72.0/24 maxlen: 24
103.91.73.0/24 maxlen: 24
103.91.74.0/24 maxlen: 24
103.91.75.0/24 maxlen: 24
103.91.76.0/22 maxlen: 24
103.92.107.0/24 maxlen: 24
103.93.39.0/24 maxlen: 24
103.101.112.0/22 maxlen: 24
103.113.110.0/23 maxlen: 24
103.115.128.0/24 maxlen: 24
103.115.129.0/24 maxlen: 24
103.115.130.0/24 maxlen: 24
103.115.131.0/24 maxlen: 24
103.120.152.0/24 maxlen: 24
103.120.153.0/24 maxlen: 24
103.124.174.0/24 maxlen: 24
103.138.9.0/24 maxlen: 24
103.146.232.0/24 maxlen: 24
103.154.8.0/23 maxlen: 24
103.158.41.0/24 maxlen: 24
103.159.104.0/23 maxlen: 24
103.160.25.0/24 maxlen: 24
103.160.222.0/24 maxlen: 24
103.163.14.0/24 maxlen: 24
103.163.15.0/24 maxlen: 24
103.170.48.0/23 maxlen: 24
103.173.238.0/23 maxlen: 24
103.174.28.0/24 maxlen: 24
103.174.29.0/24 maxlen: 24
103.178.117.0/24 maxlen: 24
103.181.119.0/24 maxlen: 24
103.184.41.0/24 maxlen: 24
103.184.205.0/24 maxlen: 24
103.204.70.0/24 maxlen: 24
103.206.51.0/24 maxlen: 24
103.206.96.0/23 maxlen: 24
103.225.70.0/24 maxlen: 24
103.232.232.0/22 maxlen: 24
202.4.169.0/24 maxlen: 24
2001:df1:d240::/48 maxlen: 48
2001:df1:ed40::/48 maxlen: 48
2001:df2:3ac0::/48 maxlen: 48
2001:df2:3f40::/48 maxlen: 48
2001:df2:9640::/48 maxlen: 48
2001:df3:1340::/48 maxlen: 48
2400:d660::/32 maxlen: 32
2405:e100:1d::/48 maxlen: 48
2405:e100:1e::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 27 Feb 2024 06:32:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33386 (0x826a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Feb 2 11:15:24 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65bccecc-00f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bb:9c:da:1f:ec:e1:8b:2c:60:18:7d:01:03:
60:8e:76:2c:da:f7:b8:67:3a:b9:3a:20:7c:ba:71:
6b:78:d8:32:c3:25:2e:c1:b2:e3:14:c8:8b:e4:01:
bd:ac:82:0c:2b:2a:6c:7c:99:7a:f8:53:34:06:1a:
6f:49:bc:7e:58:71:e1:0c:d6:81:34:d2:bf:0d:28:
b7:bf:b5:82:0d:3e:c8:df:b9:09:22:d8:20:54:4f:
43:17:67:35:79:e4:aa:bf:cb:6b:c9:ef:c3:7e:a8:
88:9e:b0:1b:b2:5d:46:9b:a7:e5:5e:83:19:62:3c:
d1:44:d5:97:55:18:09:66:bd:7e:17:2f:7d:69:a7:
6e:f8:88:fb:dc:1e:db:4a:ea:83:26:8a:bb:3a:3d:
d5:b0:c1:b4:6a:91:d2:10:c1:33:7b:69:40:8b:d8:
53:fe:d5:1d:e1:41:3d:06:90:25:f8:42:00:76:c0:
b4:62:2f:62:71:48:52:32:ba:93:f5:08:6c:e9:5d:
f9:f9:14:ef:29:5c:7a:ce:08:27:d1:9c:ac:e5:30:
3c:e5:12:08:dc:39:da:ee:09:b4:2e:26:02:da:df:
7f:25:1e:bf:84:74:41:1d:02:8d:c7:a1:ff:a1:35:
17:e3:7e:d1:8f:5d:03:08:1b:06:72:9b:c9:9b:55:
4e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:41:91:05:4F:40:EB:02:33:01:3C:7F:60:38:69:02:10:18:8F:C5
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/75D81246877811EEA5A7C152C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.123.240.0/23
43.225.248.0/22
43.228.164.0/23
103.37.98.0/23
103.52.32.0/24
103.68.140.0/23
103.69.239.0/24
103.72.196.0/24
103.79.48.0/23
103.91.72.0/21
103.92.107.0/24
103.93.39.0/24
103.101.112.0/22
103.113.110.0/23
103.115.128.0/22
103.120.152.0/23
103.124.174.0/24
103.138.9.0/24
103.146.232.0/24
103.154.8.0/23
103.158.41.0/24
103.159.104.0/23
103.160.25.0/24
103.160.222.0/24
103.163.14.0/23
103.170.48.0/23
103.173.238.0/23
103.174.28.0/23
103.178.117.0/24
103.181.119.0/24
103.184.41.0/24
103.184.205.0/24
103.204.70.0/24
103.206.51.0/24
103.206.96.0/23
103.225.70.0/24
103.232.232.0/22
202.4.169.0/24
IPv6:
2001:df1:d240::/48
2001:df1:ed40::/48
2001:df2:3ac0::/48
2001:df2:3f40::/48
2001:df2:9640::/48
2001:df3:1340::/48
2400:d660::/32
2405:e100:1d::-2405:e100:1e:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
95:93:06:9a:73:9f:1a:df:66:18:5a:1a:c7:73:22:db:a6:3d:
49:55:46:a6:a2:d0:a2:f2:cc:7a:fd:a8:2e:4c:2a:bd:42:46:
54:56:f4:5f:4b:0b:6e:a1:45:e9:7d:c1:f0:d3:6d:c9:14:59:
07:ef:a2:aa:72:0b:87:9c:a7:c7:6b:53:23:2b:37:4b:49:a7:
a2:e1:65:c8:1f:9d:0a:71:29:c6:c1:31:25:cc:78:e5:0c:2b:
e9:27:81:7d:1a:f4:fd:fc:10:6d:22:e6:6c:f4:62:e3:b8:59:
30:99:a1:da:89:3d:a9:f9:6c:46:a5:1d:d6:71:19:6c:9b:46:
04:06:e4:2e:16:b0:dd:e4:c3:5f:ce:ff:eb:95:33:61:fb:16:
a3:1b:85:93:90:69:55:a7:b2:d3:d8:37:15:19:10:0c:5c:8d:
f9:7d:9b:80:98:48:d9:f3:cd:ec:c9:13:f4:81:e6:ac:f2:00:
65:50:7c:0f:de:ab:6a:a5:12:45:99:c4:0c:41:e6:ae:df:e5:
30:40:04:8a:98:4c:90:e5:99:14:dc:e9:5f:3e:ab:c7:62:3d:
ca:db:8b:e8:28:b2:40:b1:6c:1f:bf:b3:8e:ee:f0:0f:22:6f:
ee:ad:e2:c5:9a:ab:a9:a3:72:5c:80:48:ae:19:8c:e2:76:6f:
78:06:b5:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 07:44:30 2024 by rpki-client on console-ams.rpki-client.org