Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/F64A7DB0052011ECAF87225EC4F9AE02.roa
File: F64A7DB0052011ECAF87225EC4F9AE02.roa (raw, json)
Hash identifier: 9UXCyLGrRlynP9q76/E52TXpyMi1cO+ObWp1IUlRiOs=
Subject key identifier: 77:0C:94:80:00:B1:DE:F8:EE:D8:30:07:2E:EA:6A:50:CA:B9:00:CF
Certificate issuer: /CN=A9199197/serialNumber=6835DDFB8438D24BB6C5979316E54891066090A7
Certificate serial: 072C
Authority key identifier: 68:35:DD:FB:84:38:D2:4B:B6:C5:97:93:16:E5:48:91:06:60:90:A7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aDXd-4Q40ku2xZeTFuVIkQZgkKc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/F64A7DB0052011ECAF87225EC4F9AE02.roa
Signing time: Fri 03 Nov 2023 04:05:34 +0000
ROA not before: Fri 03 Nov 2023 04:05:34 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 24560
IP address blocks: 27.56.128.0/20 maxlen: 24
27.56.144.0/20 maxlen: 24
27.56.160.0/19 maxlen: 24
27.57.0.0/16 maxlen: 24
27.58.0.0/16 maxlen: 24
27.63.176.0/20 maxlen: 24
106.200.192.0/18 maxlen: 24
106.201.0.0/16 maxlen: 24
106.202.128.0/17 maxlen: 24
106.203.192.0/18 maxlen: 24
106.205.64.0/18 maxlen: 24
106.212.0.0/17 maxlen: 24
106.212.128.0/17 maxlen: 24
106.213.0.0/17 maxlen: 24
106.214.0.0/16 maxlen: 24
106.215.0.0/17 maxlen: 24
106.222.192.0/20 maxlen: 24
106.222.208.0/22 maxlen: 24
110.224.128.0/17 maxlen: 24
110.225.0.0/16 maxlen: 24
110.226.0.0/16 maxlen: 24
110.227.0.0/16 maxlen: 24
117.96.0.0/16 maxlen: 24
117.97.128.0/18 maxlen: 24
117.98.192.0/20 maxlen: 24
117.98.208.0/21 maxlen: 21
223.177.0.0/16 maxlen: 24
223.178.0.0/17 maxlen: 24
223.178.192.0/18 maxlen: 24
223.179.128.0/19 maxlen: 24
223.181.128.0/18 maxlen: 24
223.182.64.0/18 maxlen: 24
223.182.164.0/22 maxlen: 24
223.182.172.0/22 maxlen: 24
223.182.180.0/22 maxlen: 24
223.182.248.0/21 maxlen: 24
223.184.0.0/17 maxlen: 24
223.190.0.0/17 maxlen: 24
223.190.192.0/18 maxlen: 24
223.224.172.0/23 maxlen: 24
223.226.0.0/16 maxlen: 24
223.229.128.0/17 maxlen: 24
223.230.0.0/16 maxlen: 24
223.233.64.0/18 maxlen: 24
223.235.0.0/16 maxlen: 24
223.236.0.0/16 maxlen: 24
223.239.0.0/16 maxlen: 24
2401:4900:1c00::/41 maxlen: 48
2401:4900:1c80::/41 maxlen: 48
2401:4900:1f20::/44 maxlen: 48
2401:4900:1f30::/44 maxlen: 48
2401:4900:8814::/46 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1836 (0x72c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9199197/serialNumber=6835DDFB8438D24BB6C5979316E54891066090A7
Validity
Not Before: Nov 3 04:05:34 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6544718d-a632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:78:df:37:6e:aa:6d:f8:d1:d3:40:fd:2c:b5:
29:ad:e6:c6:d8:f7:a1:03:c9:78:51:f8:b7:22:f8:
24:96:88:09:8c:12:37:e2:ba:40:0f:b0:0b:64:a2:
bb:ea:82:98:97:d7:1d:d9:f9:bb:1a:43:8e:9a:13:
45:2b:be:65:94:51:c0:95:39:52:92:ab:0c:c2:86:
72:fb:02:7c:35:4b:48:0d:7d:84:14:5a:d6:9e:fd:
5f:10:b4:b7:27:c1:a3:97:3d:fd:11:37:ec:69:b1:
39:5f:5b:a0:0e:e9:af:c6:d1:05:2d:9d:f1:50:4f:
c3:af:1e:0f:42:b1:54:d9:be:77:72:04:42:29:a1:
11:f7:39:c5:10:7c:fb:30:62:bc:94:78:0a:d1:9a:
cd:36:ac:7e:1d:27:29:90:e5:b1:d8:66:cb:3d:41:
4e:50:0a:23:8f:f0:84:cd:67:ce:4d:00:fb:e7:72:
60:94:dd:32:45:9a:5f:ed:78:21:5d:cb:ac:27:5e:
25:8d:57:2f:c6:67:c6:e7:e1:5e:74:3b:3f:71:8c:
33:64:7a:2c:06:02:47:70:c6:83:a9:32:69:93:1d:
8d:c1:34:0c:b8:fc:7f:bc:c9:59:4e:75:e4:c6:68:
ca:ab:48:e6:4a:16:f9:7b:cd:87:fe:b1:bc:47:28:
64:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:0C:94:80:00:B1:DE:F8:EE:D8:30:07:2E:EA:6A:50:CA:B9:00:CF
X509v3 Authority Key Identifier:
keyid:68:35:DD:FB:84:38:D2:4B:B6:C5:97:93:16:E5:48:91:06:60:90:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/aDXd-4Q40ku2xZeTFuVIkQZgkKc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aDXd-4Q40ku2xZeTFuVIkQZgkKc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/F64A7DB0052011ECAF87225EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.56.128.0/18
27.57.0.0-27.58.255.255
27.63.176.0/20
106.200.192.0-106.201.255.255
106.202.128.0/17
106.203.192.0/18
106.205.64.0/18
106.212.0.0-106.213.127.255
106.214.0.0-106.215.127.255
106.222.192.0-106.222.211.255
110.224.128.0-110.227.255.255
117.96.0.0/16
117.97.128.0/18
117.98.192.0-117.98.215.255
223.177.0.0-223.178.127.255
223.178.192.0/18
223.179.128.0/19
223.181.128.0/18
223.182.64.0/18
223.182.164.0/22
223.182.172.0/22
223.182.180.0/22
223.182.248.0/21
223.184.0.0/17
223.190.0.0/17
223.190.192.0/18
223.224.172.0/23
223.226.0.0/16
223.229.128.0-223.230.255.255
223.233.64.0/18
223.235.0.0-223.236.255.255
223.239.0.0/16
IPv6:
2401:4900:1c00::/40
2401:4900:1f20::/43
2401:4900:8814::/46
Signature Algorithm: sha256WithRSAEncryption
c8:c7:93:21:70:e6:c2:63:0d:24:41:dd:23:f9:6a:aa:7e:6a:
65:a7:81:04:7b:21:85:03:89:3b:25:85:49:01:51:55:cb:87:
ad:cd:6e:e0:f8:c3:f1:ac:24:82:39:30:89:c3:7f:c2:bf:8d:
db:fc:d9:dd:94:21:54:b1:e2:0e:a4:1e:16:02:5c:48:61:2f:
15:54:06:b6:9b:72:39:88:fa:94:ac:80:e4:04:74:dd:47:84:
5b:d8:b7:83:72:f6:11:e3:47:d1:99:b8:dc:f5:cc:cb:12:96:
17:3d:35:b0:33:01:d6:67:3d:21:9c:05:8b:0c:8e:bd:11:8b:
a4:7f:94:6d:24:df:a3:2d:a4:21:d6:09:64:32:fb:99:fa:a3:
e5:c8:e6:ed:bf:fb:c7:a8:fb:ce:16:a1:b3:e8:44:35:0e:f7:
a9:89:88:01:50:39:94:d5:21:8c:37:e2:24:b4:da:f3:31:dc:
79:07:97:37:c8:65:0b:8a:4d:d5:0d:c0:da:06:55:5a:3f:2f:
66:3b:6d:77:21:63:10:3e:44:df:8f:61:6a:0f:29:0d:59:c7:
e1:60:c7:05:4a:8e:db:ae:77:e0:03:d3:84:e4:58:26:5e:f8:
23:22:c1:72:fc:1c:d5:a8:5c:2f:f9:1c:1b:fe:49:bb:97:4c:
b8:51:e5:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 8 04:44:53 2023 by rpki-client on console-fra.rpki-client.org