Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FE41CEE689C711EE84C8A127C4F9AE02.roa
File: FE41CEE689C711EE84C8A127C4F9AE02.roa (raw, json)
Hash identifier: 1yZfcfZCb81+xPHoppnqypFIylRGy1XJmQv0OQJv0OU=
Subject key identifier: A5:DF:7C:5B:1C:3C:83:27:81:A8:EF:B9:76:1B:F5:A4:60:39:E0:DB
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 819F
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FE41CEE689C711EE84C8A127C4F9AE02.roa
Signing time: Fri 19 Jan 2024 10:10:16 +0000
ROA not before: Fri 19 Jan 2024 10:10:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 133982
IP address blocks: 45.118.156.0/24 maxlen: 24
45.118.157.0/24 maxlen: 24
45.118.158.0/24 maxlen: 24
45.118.159.0/24 maxlen: 24
103.46.200.0/24 maxlen: 24
103.46.201.0/24 maxlen: 24
103.46.202.0/24 maxlen: 24
103.46.203.0/24 maxlen: 24
103.48.196.0/24 maxlen: 24
103.48.197.0/24 maxlen: 24
103.48.198.0/24 maxlen: 24
103.48.199.0/24 maxlen: 24
103.56.228.0/24 maxlen: 24
103.56.229.0/24 maxlen: 24
103.56.230.0/24 maxlen: 24
103.56.231.0/24 maxlen: 24
103.57.84.0/22 maxlen: 24
103.85.143.0/24 maxlen: 24
103.87.56.0/24 maxlen: 24
103.87.57.0/24 maxlen: 24
103.87.58.0/24 maxlen: 24
103.87.59.0/24 maxlen: 24
103.92.40.0/22 maxlen: 24
103.95.80.0/24 maxlen: 24
103.95.81.0/24 maxlen: 24
103.95.82.0/24 maxlen: 24
103.95.83.0/24 maxlen: 24
103.108.4.0/24 maxlen: 24
103.108.5.0/24 maxlen: 24
103.108.6.0/24 maxlen: 24
103.108.7.0/24 maxlen: 24
103.110.48.0/24 maxlen: 24
103.110.49.0/24 maxlen: 24
103.110.144.0/24 maxlen: 24
103.110.145.0/24 maxlen: 24
103.110.146.0/24 maxlen: 24
103.110.147.0/24 maxlen: 24
103.120.50.0/24 maxlen: 24
103.120.51.0/24 maxlen: 24
103.139.56.0/24 maxlen: 24
103.157.227.0/24 maxlen: 24
103.160.26.0/23 maxlen: 24
103.161.56.0/23 maxlen: 24
103.164.188.0/24 maxlen: 24
103.170.80.0/23 maxlen: 24
103.172.72.0/23 maxlen: 24
103.177.120.0/23 maxlen: 24
103.181.166.0/24 maxlen: 24
103.205.146.0/24 maxlen: 24
103.211.12.0/24 maxlen: 24
103.211.13.0/24 maxlen: 24
103.211.14.0/24 maxlen: 24
103.211.15.0/24 maxlen: 24
103.211.16.0/24 maxlen: 24
103.211.17.0/24 maxlen: 24
103.211.18.0/24 maxlen: 24
103.211.19.0/24 maxlen: 24
103.211.52.0/24 maxlen: 24
103.211.53.0/24 maxlen: 24
103.211.54.0/24 maxlen: 24
103.211.55.0/24 maxlen: 24
103.212.144.0/24 maxlen: 24
103.212.145.0/24 maxlen: 24
103.212.146.0/24 maxlen: 24
103.212.147.0/24 maxlen: 24
103.212.156.0/24 maxlen: 24
103.212.157.0/24 maxlen: 24
103.212.158.0/24 maxlen: 24
103.212.159.0/24 maxlen: 24
103.214.60.0/24 maxlen: 24
103.214.61.0/24 maxlen: 24
103.214.62.0/24 maxlen: 24
103.214.63.0/24 maxlen: 24
110.235.216.0/22 maxlen: 24
110.235.224.0/24 maxlen: 24
110.235.225.0/24 maxlen: 24
110.235.226.0/24 maxlen: 24
110.235.227.0/24 maxlen: 24
110.235.228.0/24 maxlen: 24
110.235.229.0/24 maxlen: 24
110.235.230.0/24 maxlen: 24
110.235.231.0/24 maxlen: 24
110.235.232.0/24 maxlen: 24
110.235.233.0/24 maxlen: 24
110.235.234.0/24 maxlen: 24
110.235.235.0/24 maxlen: 24
110.235.236.0/24 maxlen: 24
110.235.237.0/24 maxlen: 24
110.235.238.0/24 maxlen: 24
110.235.239.0/24 maxlen: 24
139.5.240.0/24 maxlen: 24
139.5.241.0/24 maxlen: 24
139.5.242.0/24 maxlen: 24
139.5.243.0/24 maxlen: 24
139.5.248.0/24 maxlen: 24
139.5.249.0/24 maxlen: 24
139.5.250.0/24 maxlen: 24
139.5.251.0/24 maxlen: 24
139.5.252.0/22 maxlen: 24
144.48.72.0/22 maxlen: 24
146.196.32.0/22 maxlen: 24
146.196.36.0/24 maxlen: 24
146.196.37.0/24 maxlen: 24
146.196.38.0/24 maxlen: 24
146.196.39.0/24 maxlen: 24
160.202.36.0/22 maxlen: 24
192.140.152.0/24 maxlen: 24
192.140.153.0/24 maxlen: 24
192.140.154.0/24 maxlen: 24
192.140.155.0/24 maxlen: 24
202.173.124.0/22 maxlen: 24
2401:9640::/32 maxlen: 32
2401:9640:4000::/37 maxlen: 37
2401:9640:6000::/37 maxlen: 37
2407:aec0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 06 Feb 2024 08:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33183 (0x819f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jan 19 10:10:16 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65aa4a88-da8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8b:da:89:c8:05:4f:37:a0:c0:ee:49:7b:54:
e8:3a:46:e4:72:86:f4:6d:77:86:8c:e2:29:6b:bd:
f9:8d:c0:7b:4c:27:6a:5c:d7:84:78:a2:40:27:81:
c4:9f:be:02:64:ed:f4:ea:1d:84:6e:3a:d5:42:69:
75:3c:9c:45:51:2f:76:2b:38:9f:db:77:ce:22:a7:
ee:aa:9a:c1:6a:67:c6:50:09:76:eb:cc:15:82:1c:
ab:5f:ce:87:60:a3:b4:5f:87:6c:f4:8f:bb:f4:72:
53:29:38:08:95:6b:11:13:ae:13:de:21:44:ba:26:
70:a7:c8:90:b0:9e:26:e1:fd:1a:79:7a:f6:2b:68:
11:7b:c8:45:6a:dd:cd:76:fa:5b:a4:8f:39:b9:9f:
ea:75:f0:a3:61:77:94:fb:c9:74:81:f6:69:8c:6a:
fd:1a:ff:50:89:5b:ca:d0:af:1c:8c:e9:76:66:d3:
96:cd:5b:1e:06:53:48:ee:a9:fe:5d:24:0f:4e:0e:
de:7e:3d:bb:7a:16:2a:3b:d0:40:41:bd:f0:b0:1b:
a2:28:70:ab:8d:13:75:ab:9f:f0:45:6f:9c:9a:0b:
fc:e1:ea:69:a9:4e:2d:e8:85:93:62:41:b1:c2:5a:
2f:9d:c1:18:54:3d:3e:6d:04:80:87:b7:38:b1:37:
44:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:DF:7C:5B:1C:3C:83:27:81:A8:EF:B9:76:1B:F5:A4:60:39:E0:DB
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FE41CEE689C711EE84C8A127C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.118.156.0/22
103.46.200.0/22
103.48.196.0/22
103.56.228.0/22
103.57.84.0/22
103.85.143.0/24
103.87.56.0/22
103.92.40.0/22
103.95.80.0/22
103.108.4.0/22
103.110.48.0/23
103.110.144.0/22
103.120.50.0/23
103.139.56.0/24
103.157.227.0/24
103.160.26.0/23
103.161.56.0/23
103.164.188.0/24
103.170.80.0/23
103.172.72.0/23
103.177.120.0/23
103.181.166.0/24
103.205.146.0/24
103.211.12.0-103.211.19.255
103.211.52.0/22
103.212.144.0/22
103.212.156.0/22
103.214.60.0/22
110.235.216.0/22
110.235.224.0/20
139.5.240.0/22
139.5.248.0/21
144.48.72.0/22
146.196.32.0/21
160.202.36.0/22
192.140.152.0/22
202.173.124.0/22
IPv6:
2401:9640::/32
2407:aec0::/32
Signature Algorithm: sha256WithRSAEncryption
99:13:4a:78:05:2b:f7:b1:73:a7:c6:81:b8:76:30:83:1f:17:
5b:e7:6d:e6:a4:a3:4a:65:63:5c:cb:ae:29:3f:cf:ae:18:e8:
0d:af:64:35:10:1e:7f:2c:81:58:97:90:7d:81:95:16:c2:22:
9b:5f:7d:4e:6f:8d:4f:09:70:27:d3:1f:0a:c2:28:f1:61:93:
a6:63:0f:e2:df:85:06:b1:88:ea:d0:f2:0d:40:8e:16:89:96:
09:f0:f5:7e:11:97:d7:e2:09:93:88:63:2d:5e:79:1a:00:1b:
9b:25:62:a4:7c:f6:33:e2:6c:21:93:62:73:84:30:be:a2:07:
0d:7d:c8:50:37:28:be:a2:14:2a:e9:3f:41:3c:3c:51:f0:89:
5b:97:54:09:2d:64:b9:2b:77:8c:ed:1f:ba:9a:da:50:59:d5:
7e:62:63:f3:8d:eb:5a:55:70:18:5f:91:19:d5:f5:9f:19:47:
84:60:e8:e3:49:67:21:26:5b:dc:36:aa:5a:06:a5:fa:4e:13:
d8:40:3f:b3:8c:16:2d:c9:16:3a:62:7e:bb:0a:2b:48:89:c7:
1c:53:b5:8b:d8:8e:7e:bb:f6:0d:f5:ed:e8:d1:e3:58:e1:50:
5d:1e:bd:ec:d7:67:46:48:6c:25:7e:64:a7:b9:94:47:8c:5b:
f9:dd:35:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 6 12:22:07 2024 by rpki-client on console-fra.rpki-client.org