Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/9F624142366311EEB376DC3AC4F9AE02.roa
File: 9F624142366311EEB376DC3AC4F9AE02.roa (raw, json)
Hash identifier: 06VoKP75S+UZSiDh2SzrhkiZpJg9jmfXqGhIJjCzncE=
Subject key identifier: 1E:56:C4:F0:4C:27:B2:9E:1A:E2:78:A5:9B:6E:62:12:DC:AF:B9:6D
Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D
Certificate serial: C9
Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/9F624142366311EEB376DC3AC4F9AE02.roa
Signing time: Tue 25 Jun 2024 06:21:58 +0000
ROA not before: Tue 25 Jun 2024 06:21:58 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 136393
IP address blocks: 96.30.64.0/21 maxlen: 21
96.30.64.0/22 maxlen: 23
96.30.64.0/24 maxlen: 24
96.30.68.0/23 maxlen: 23
96.30.70.0/23 maxlen: 23
96.30.72.0/23 maxlen: 23
96.30.79.0/24 maxlen: 24
96.30.84.0/22 maxlen: 23
96.30.100.0/22 maxlen: 23
96.30.107.0/24 maxlen: 24
96.30.108.0/23 maxlen: 23
96.30.111.0/24 maxlen: 24
146.88.36.0/22 maxlen: 22
146.88.36.0/24 maxlen: 24
146.88.37.0/24 maxlen: 24
146.88.38.0/23 maxlen: 23
146.88.42.0/23 maxlen: 23
146.88.44.0/22 maxlen: 23
146.88.52.0/22 maxlen: 23
161.82.186.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 11 Dec 2024 05:32:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201 (0xc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919536C
Validity
Not Before: Jun 25 06:21:58 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=667a6206-dd81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d2:8e:2a:c1:0b:f2:cd:cc:cb:2d:ca:44:de:
6b:ca:a4:cd:54:6b:42:0a:4a:8c:61:2b:5f:16:82:
d6:25:61:56:99:b8:f9:1d:ae:87:40:04:1b:f1:c6:
e8:55:33:33:dd:6a:7c:ff:48:f2:c1:cc:95:93:42:
1f:a3:5e:bc:af:45:14:bc:7c:e2:bd:60:bf:fb:40:
2e:4f:c9:c6:12:46:6f:d9:b0:43:ed:b4:22:48:e5:
c9:45:2d:bd:0d:0d:4c:62:aa:5a:c2:68:31:aa:21:
7c:28:e8:40:5c:7a:1c:a2:29:03:6d:87:70:49:8d:
cf:2c:67:d3:db:c0:45:e6:8e:16:74:6a:32:85:8f:
eb:31:18:d6:6c:4c:21:b6:fe:c8:36:74:a6:f1:5d:
93:a7:2a:47:3b:46:3e:e2:9c:db:f0:a7:be:1b:ad:
b8:d2:44:2f:f0:e1:e1:be:d3:4a:4a:5f:91:27:a2:
9a:d6:7d:8d:9c:00:8b:9b:a2:bd:42:80:7f:08:58:
95:90:c1:5d:62:33:14:9b:19:1c:83:32:3d:c1:87:
05:fd:4e:f1:ff:ad:cf:15:66:e0:bc:df:c9:ec:dd:
da:6c:2d:2c:aa:99:45:9d:b8:e3:ac:f9:e4:52:cb:
02:04:df:ac:c6:fd:a7:c3:ee:25:a6:56:7c:20:d4:
02:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:56:C4:F0:4C:27:B2:9E:1A:E2:78:A5:9B:6E:62:12:DC:AF:B9:6D
X509v3 Authority Key Identifier:
keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/9F624142366311EEB376DC3AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
96.30.64.0-96.30.73.255
96.30.79.0/24
96.30.84.0/22
96.30.100.0/22
96.30.107.0-96.30.109.255
96.30.111.0/24
146.88.36.0/22
146.88.42.0-146.88.47.255
146.88.52.0/22
161.82.186.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:9e:02:cd:80:ee:18:1e:eb:c0:cd:98:72:25:36:13:dc:fb:
3a:cc:be:4a:f7:3d:6d:fb:27:ba:92:20:30:b5:e1:14:62:58:
3b:89:29:1b:4a:1b:e2:fd:dd:d7:58:b8:d9:6d:96:bd:e9:ba:
2f:69:29:57:47:67:22:bd:14:54:80:73:1d:3f:5a:3d:bb:32:
99:c2:c4:69:43:79:45:04:fe:cc:f9:cd:75:b2:4e:0c:96:c7:
18:ca:3d:01:71:2a:ff:af:6d:bf:f9:57:6a:83:19:84:5b:bf:
75:fe:b1:97:54:a1:df:d3:8b:bb:89:93:25:8c:89:d6:d7:a0:
ea:00:5e:fe:a8:3b:7e:b0:b2:47:a8:52:af:12:c3:22:15:bc:
3d:2d:80:35:17:a3:03:7a:c5:fe:17:8d:4a:74:48:97:77:c0:
3b:a7:15:d2:89:a6:99:14:b1:1a:ad:fa:fa:65:f1:33:8a:2a:
43:b7:19:0e:65:ef:63:88:8f:d2:be:72:69:9d:b2:62:a0:0b:
84:68:b4:f7:62:e6:fe:64:4c:b3:ca:9b:ec:6b:03:d9:14:28:
35:5a:f9:a6:1e:1f:53:d0:0a:9c:00:25:87:8b:25:8a:f1:f7:
3a:3f:4a:c3:23:2e:f7:ea:bd:29:74:6d:fb:df:7f:cc:7e:10:
8d:56:de:dc
-----BEGIN CERTIFICATE-----
MIIFvzCCBKegAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTUzNkMxMTAvBgNVBAUTKEEwOTBFNTIwQkY5RDUxRjJGRENFRUQ0MTNBRjI3QUM3
NThGNkFFMUQwHhcNMjQwNjI1MDYyMTU4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjdhNjIwNi1kZDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2tKOKsEL8s3Myy3KRN5ryqTNVGtCCkqMYStfFoLWJWFWmbj5Ha6HQAQb8cbo
VTMz3Wp8/0jywcyVk0Ifo168r0UUvHzivWC/+0AuT8nGEkZv2bBD7bQiSOXJRS29
DQ1MYqpawmgxqiF8KOhAXHocoikDbYdwSY3PLGfT28BF5o4WdGoyhY/rMRjWbEwh
tv7INnSm8V2TpypHO0Y+4pzb8Ke+G6240kQv8OHhvtNKSl+RJ6Ka1n2NnACLm6K9
QoB/CFiVkMFdYjMUmxkcgzI9wYcF/U7x/63PFWbgvN/J7N3abC0sqplFnbjjrPnk
UssCBN+sxv2nw+4lplZ8INQCqwIDAQABo4IC4zCCAt8wHQYDVR0OBBYEFB5WxPBM
J7KeGuJ4pZtuYhLcr7ltMB8GA1UdIwQYMBaAFKCQ5SC/nVHy/c7tQTryesdY9q4d
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83NUI5OEJGMDM2
NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVmTDl6dTFCT3ZKNngxajJy
aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL29KRGxJTC1kVWZMOXp1MUJPdko2eDFqMnJoMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTUzNkMvNzVCOThCRjAzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvOUY2MjQxNDIz
NjYzMTFFRUIzNzZEQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbQYIKwYBBQUHAQcBAf8E
XjBcMFoEAgABMFQwDAMEBmAeQAMEAWAeSAMEAGAeTwMEAmAeVAMEAmAeZDAMAwQA
YB5rAwQBYB5sAwQAYB5vAwQCklgkMAwDBAGSWCoDBASSWCADBAKSWDQDBAGhUrow
DQYJKoZIhvcNAQELBQADggEBAHyeAs2A7hge68DNmHIlNhPc+zrMvkr3PW37J7qS
IDC14RRiWDuJKRtKG+L93ddYuNltlr3pui9pKVdHZyK9FFSAcx0/Wj27MpnCxGlD
eUUE/sz5zXWyTgyWxxjKPQFxKv+vbb/5V2qDGYRbv3X+sZdUod/Ti7uJkyWMidbX
oOoAXv6oO36wskeoUq8SwyIVvD0tgDUXowN6xf4XjUp0SJd3wDunFdKJppkUsRqt
+vpl8TOKKkO3GQ5l72OIj9K+cmmdsmKgC4RotPdi5v5kTLPKm+xrA9kUKDVa+aYe
H1PQCpwAJYeLJYrx9zo/SsMjLvfqvSl0bfvff8x+EI1W3tw=
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:42:09 2025 by rpki-client