Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A7CBB5525CF111EEB6EC4C29C4F9AE02.roa
File: A7CBB5525CF111EEB6EC4C29C4F9AE02.roa (raw, json)
Hash identifier: Gz3o0FqnqXmR7t98RohaVrCFXWFAP3oFXnBN5a2c9RY=
Subject key identifier: 32:50:44:A8:7B:20:A7:4D:A7:C5:27:68:F3:E2:71:EB:67:22:F5:D8
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 85F2
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A7CBB5525CF111EEB6EC4C29C4F9AE02.roa
Signing time: Fri 05 Apr 2024 05:31:29 +0000
ROA not before: Fri 05 Apr 2024 05:31:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17665
IP address blocks: 36.255.88.0/22 maxlen: 24
43.230.40.0/22 maxlen: 24
45.118.104.0/22 maxlen: 24
59.152.120.0/22 maxlen: 24
103.10.224.0/22 maxlen: 24
103.27.48.0/22 maxlen: 24
103.38.68.0/23 maxlen: 24
103.38.128.0/22 maxlen: 24
103.58.152.0/22 maxlen: 24
103.59.204.0/22 maxlen: 24
103.86.68.0/24 maxlen: 24
103.88.57.0/24 maxlen: 24
103.88.58.0/24 maxlen: 24
103.88.59.0/24 maxlen: 24
103.92.113.0/24 maxlen: 24
103.92.114.0/24 maxlen: 24
103.92.115.0/24 maxlen: 24
103.98.36.0/24 maxlen: 24
103.98.37.0/24 maxlen: 24
103.99.196.0/23 maxlen: 24
103.99.198.0/23 maxlen: 24
103.135.64.0/24 maxlen: 24
103.135.65.0/24 maxlen: 24
103.136.172.0/22 maxlen: 24
103.144.188.0/23 maxlen: 24
103.147.1.0/24 maxlen: 24
103.158.170.0/23 maxlen: 24
103.159.98.0/24 maxlen: 24
103.159.212.0/24 maxlen: 24
103.161.40.0/23 maxlen: 24
103.162.74.0/23 maxlen: 24
103.164.46.0/23 maxlen: 24
103.165.28.0/23 maxlen: 24
103.168.177.0/24 maxlen: 24
103.168.232.0/23 maxlen: 24
103.169.156.0/23 maxlen: 24
103.171.9.0/24 maxlen: 24
103.171.208.0/24 maxlen: 24
103.174.159.0/24 maxlen: 24
103.175.30.0/24 maxlen: 24
103.175.31.0/24 maxlen: 24
103.176.176.0/24 maxlen: 24
103.176.194.0/23 maxlen: 24
103.177.174.0/23 maxlen: 24
103.178.168.0/23 maxlen: 24
103.179.122.0/24 maxlen: 24
103.182.130.0/23 maxlen: 24
103.183.54.0/23 maxlen: 24
103.186.121.0/24 maxlen: 24
103.186.176.0/24 maxlen: 24
103.199.192.0/22 maxlen: 24
103.203.36.0/22 maxlen: 24
103.206.8.0/24 maxlen: 24
103.206.9.0/24 maxlen: 24
103.206.10.0/24 maxlen: 24
103.206.11.0/24 maxlen: 24
103.209.68.0/22 maxlen: 22
103.209.68.0/24 maxlen: 24
103.209.69.0/24 maxlen: 24
103.209.70.0/24 maxlen: 24
103.209.71.0/24 maxlen: 24
103.244.224.0/24 maxlen: 24
103.245.103.0/24 maxlen: 24
103.251.52.0/22 maxlen: 24
162.12.246.0/23 maxlen: 24
202.148.60.0/22 maxlen: 24
203.189.248.0/22 maxlen: 24
203.192.192.0/20 maxlen: 24
203.192.208.0/22 maxlen: 24
203.192.213.0/24 maxlen: 24
203.192.215.0/24 maxlen: 24
203.192.217.0/24 maxlen: 24
203.192.218.0/24 maxlen: 24
203.192.219.0/24 maxlen: 24
203.192.220.0/22 maxlen: 24
203.192.224.0/23 maxlen: 24
203.192.226.0/24 maxlen: 24
203.192.228.0/22 maxlen: 24
203.192.232.0/22 maxlen: 24
203.192.237.0/24 maxlen: 24
203.192.238.0/23 maxlen: 24
203.192.240.0/20 maxlen: 20
203.192.240.0/24 maxlen: 24
203.192.241.0/24 maxlen: 24
203.192.242.0/24 maxlen: 24
203.192.243.0/24 maxlen: 24
203.192.244.0/24 maxlen: 24
203.192.245.0/24 maxlen: 24
203.192.246.0/24 maxlen: 24
203.192.247.0/24 maxlen: 24
203.192.248.0/24 maxlen: 24
203.192.249.0/24 maxlen: 24
203.192.250.0/24 maxlen: 24
203.192.251.0/24 maxlen: 24
203.192.252.0/24 maxlen: 24
203.192.253.0/24 maxlen: 24
203.192.254.0/24 maxlen: 24
203.192.255.0/24 maxlen: 24
203.194.96.0/24 maxlen: 24
203.194.97.0/24 maxlen: 24
203.194.98.0/24 maxlen: 24
203.194.99.0/24 maxlen: 24
203.194.100.0/24 maxlen: 24
203.194.101.0/24 maxlen: 24
203.194.102.0/24 maxlen: 24
203.194.103.0/24 maxlen: 24
203.194.104.0/24 maxlen: 24
203.194.105.0/24 maxlen: 24
203.194.106.0/24 maxlen: 24
203.194.107.0/24 maxlen: 24
203.194.108.0/24 maxlen: 24
203.194.109.0/24 maxlen: 24
203.194.110.0/24 maxlen: 24
2001:df1:9980::/48 maxlen: 48
2001:df1:9980:1::/64 maxlen: 64
2001:df1:9980:2::/64 maxlen: 64
2001:df1:9980:3::/64 maxlen: 64
2001:df1:9980:4::/64 maxlen: 64
2001:df1:9980:5::/64 maxlen: 64
2404:ba00::/32 maxlen: 48
Validation: Failed, certificate revoked on Fri 12 Apr 2024 09:17:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34290 (0x85f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Apr 5 05:31:29 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=660f8cb1-b200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ea:4a:80:41:5d:8f:6f:2d:1b:9e:4c:a7:3c:
fe:1d:6b:50:00:ef:19:77:46:c0:2c:14:78:03:71:
f8:06:5c:7b:dd:c7:68:d3:93:9f:f2:b9:ab:76:dd:
7a:9e:91:a9:40:ce:f0:97:56:45:4b:0c:33:0f:db:
8d:21:5f:7a:87:e4:55:9c:09:f6:76:70:7b:44:e9:
c2:a0:89:b4:a7:f5:d5:6a:6f:f4:11:42:22:a7:91:
bf:6f:ff:1c:b7:96:d6:19:89:86:11:9a:bc:f6:03:
d9:9a:fb:d5:aa:e7:21:7a:ed:22:91:de:d5:1d:11:
bf:e0:8e:76:cb:15:80:e6:88:79:c0:ef:60:62:b5:
2c:6c:d7:30:ec:98:bf:de:6f:35:c8:40:01:8e:3e:
6d:3e:e9:7c:60:e2:b4:52:f5:e2:f6:76:12:23:d4:
88:92:30:e7:21:4a:de:e8:e8:32:55:fc:55:d0:bc:
1e:df:df:fc:e6:ef:3c:76:46:f4:55:9f:13:bb:a3:
38:ef:49:31:ca:18:83:53:a1:7b:c1:6d:57:a1:38:
d1:42:dc:4d:52:f8:c8:0d:ca:f7:d0:c3:f3:9e:ff:
87:7a:da:49:8a:4b:58:88:a9:ec:00:ac:b8:f4:1a:
b6:d0:b9:3b:f5:aa:83:9a:59:c7:b1:f3:5e:9a:78:
f3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:50:44:A8:7B:20:A7:4D:A7:C5:27:68:F3:E2:71:EB:67:22:F5:D8
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A7CBB5525CF111EEB6EC4C29C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.255.88.0/22
43.230.40.0/22
45.118.104.0/22
59.152.120.0/22
103.10.224.0/22
103.27.48.0/22
103.38.68.0/23
103.38.128.0/22
103.58.152.0/22
103.59.204.0/22
103.86.68.0/24
103.88.57.0-103.88.59.255
103.92.113.0-103.92.115.255
103.98.36.0/23
103.99.196.0/22
103.135.64.0/23
103.136.172.0/22
103.144.188.0/23
103.147.1.0/24
103.158.170.0/23
103.159.98.0/24
103.159.212.0/24
103.161.40.0/23
103.162.74.0/23
103.164.46.0/23
103.165.28.0/23
103.168.177.0/24
103.168.232.0/23
103.169.156.0/23
103.171.9.0/24
103.171.208.0/24
103.174.159.0/24
103.175.30.0/23
103.176.176.0/24
103.176.194.0/23
103.177.174.0/23
103.178.168.0/23
103.179.122.0/24
103.182.130.0/23
103.183.54.0/23
103.186.121.0/24
103.186.176.0/24
103.199.192.0/22
103.203.36.0/22
103.206.8.0/22
103.209.68.0/22
103.244.224.0/24
103.245.103.0/24
103.251.52.0/22
162.12.246.0/23
202.148.60.0/22
203.189.248.0/22
203.192.192.0-203.192.211.255
203.192.213.0/24
203.192.215.0/24
203.192.217.0-203.192.226.255
203.192.228.0-203.192.235.255
203.192.237.0-203.192.255.255
203.194.96.0-203.194.110.255
IPv6:
2001:df1:9980::/48
2404:ba00::/32
Signature Algorithm: sha256WithRSAEncryption
02:5a:91:36:d5:08:9c:e4:5d:a0:41:82:48:8c:c6:9d:05:b9:
1e:e2:71:87:37:e5:8f:99:74:95:97:e3:66:96:7b:25:5c:73:
ad:10:79:d1:99:4e:d2:19:ca:15:97:92:53:b3:d1:da:80:96:
e2:e1:84:50:3f:ec:28:31:a5:ac:7e:1c:29:7f:ec:d3:b3:bc:
b6:b2:e5:13:2a:0a:c2:c4:a3:4a:bb:13:f3:d4:52:0a:49:95:
d7:04:06:54:47:d2:53:4d:96:60:51:9c:b0:8c:76:9c:08:d8:
50:bd:05:bf:fd:11:d4:43:a4:0c:4e:11:e9:83:fa:da:4c:71:
d6:89:91:03:b9:20:65:fd:15:6a:55:6a:a7:c7:0b:6c:11:a7:
8d:85:bd:f7:7a:9a:fa:62:39:e9:e0:0f:1e:5d:97:50:6e:c9:
1e:70:c4:c9:be:26:dc:7d:53:dc:8c:9e:19:e3:f6:71:a6:66:
c1:91:39:73:0e:c3:e9:3c:11:db:01:3b:92:6c:59:4c:d1:61:
2c:63:9d:df:12:64:e4:e0:f7:3f:c4:2d:ee:f6:e0:de:70:74:
ff:8d:b2:78:6a:48:53:5f:7c:3a:39:9f:57:1f:70:a4:d1:5a:
2c:1b:59:b0:5e:44:b1:69:be:e9:44:d2:5f:23:95:69:4a:17:
1a:15:22:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 12:11:07 2024 by rpki-client on console-ams.rpki-client.org