Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/387677DE4E3E11EFB84E562DC4F9AE02.roa
File: 387677DE4E3E11EFB84E562DC4F9AE02.roa (raw, json)
Hash identifier: U6gLcPPHueNGpCh9DyMP54vbH0gScCjB/kIR/FECBiQ=
Subject key identifier: A0:86:B5:61:17:DB:4A:72:68:50:8D:20:CB:2B:E5:4C:41:C7:BF:46
Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567
Certificate serial: 0AF8
Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/387677DE4E3E11EFB84E562DC4F9AE02.roa
Signing time: Tue 30 Jul 2024 06:37:41 +0000
ROA not before: Tue 30 Jul 2024 06:37:41 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 9729
IP address blocks: 202.85.128.0/20 maxlen: 20
202.85.128.0/24 maxlen: 24
202.85.129.0/24 maxlen: 24
202.85.131.0/24 maxlen: 24
202.85.132.0/24 maxlen: 24
202.85.137.0/24 maxlen: 24
202.85.138.0/24 maxlen: 24
202.85.140.0/24 maxlen: 24
202.85.144.0/20 maxlen: 20
202.85.164.0/23 maxlen: 23
202.85.165.0/24 maxlen: 24
202.85.166.0/23 maxlen: 23
202.85.167.0/24 maxlen: 24
202.85.168.0/22 maxlen: 22
202.85.169.0/24 maxlen: 24
202.85.170.0/24 maxlen: 24
202.85.171.0/24 maxlen: 24
202.85.172.0/22 maxlen: 22
202.85.172.0/24 maxlen: 24
202.85.180.0/22 maxlen: 22
202.85.181.0/24 maxlen: 24
202.85.184.0/22 maxlen: 22
202.85.188.0/24 maxlen: 24
202.85.190.0/24 maxlen: 24
202.85.191.0/24 maxlen: 24
203.194.128.0/21 maxlen: 21
203.194.133.0/24 maxlen: 24
203.194.135.0/24 maxlen: 24
203.194.136.0/21 maxlen: 21
203.194.136.0/24 maxlen: 24
203.194.141.0/24 maxlen: 24
203.194.144.0/21 maxlen: 21
203.194.144.0/24 maxlen: 24
203.194.145.0/24 maxlen: 24
203.194.146.0/24 maxlen: 24
203.194.148.0/24 maxlen: 24
203.194.149.0/24 maxlen: 24
203.194.152.0/21 maxlen: 21
203.194.153.0/24 maxlen: 24
203.194.159.0/24 maxlen: 24
203.194.160.0/22 maxlen: 22
203.194.160.0/24 maxlen: 24
203.194.164.0/22 maxlen: 22
203.194.168.0/22 maxlen: 22
203.194.168.0/24 maxlen: 24
203.194.169.0/24 maxlen: 24
203.194.170.0/24 maxlen: 24
203.194.171.0/24 maxlen: 24
203.194.176.0/22 maxlen: 22
203.194.176.0/24 maxlen: 24
203.194.177.0/24 maxlen: 24
203.194.179.0/24 maxlen: 24
203.194.183.0/24 maxlen: 24
203.194.186.0/23 maxlen: 24
203.194.188.0/22 maxlen: 22
203.194.188.0/24 maxlen: 24
203.194.192.0/21 maxlen: 21
203.194.196.0/24 maxlen: 24
203.194.199.0/24 maxlen: 24
203.194.200.0/22 maxlen: 22
203.194.200.0/23 maxlen: 23
203.194.204.0/22 maxlen: 22
203.194.206.0/24 maxlen: 24
203.194.208.0/22 maxlen: 22
203.194.208.0/24 maxlen: 24
203.194.209.0/24 maxlen: 24
203.194.211.0/24 maxlen: 24
203.194.212.0/22 maxlen: 22
203.194.212.0/23 maxlen: 23
203.194.216.0/22 maxlen: 22
203.194.216.0/24 maxlen: 24
203.194.217.0/24 maxlen: 24
203.194.218.0/24 maxlen: 24
203.194.219.0/24 maxlen: 24
203.194.220.0/22 maxlen: 22
203.194.220.0/24 maxlen: 24
203.194.221.0/24 maxlen: 24
203.194.223.0/24 maxlen: 24
203.194.224.0/22 maxlen: 22
203.194.224.0/24 maxlen: 24
203.194.227.0/24 maxlen: 24
203.194.228.0/22 maxlen: 22
203.194.228.0/24 maxlen: 24
203.194.232.0/22 maxlen: 22
203.194.232.0/24 maxlen: 24
203.194.233.0/24 maxlen: 24
203.194.236.0/22 maxlen: 24
203.194.240.0/22 maxlen: 22
203.194.244.0/22 maxlen: 22
203.194.244.0/24 maxlen: 24
203.194.248.0/21 maxlen: 21
203.194.255.0/24 maxlen: 24
210.184.96.0/22 maxlen: 22
210.184.97.0/24 maxlen: 24
210.184.99.0/24 maxlen: 24
210.184.100.0/22 maxlen: 22
210.184.108.0/22 maxlen: 22
210.184.110.0/24 maxlen: 24
210.184.112.0/21 maxlen: 21
210.184.113.0/24 maxlen: 24
210.184.114.0/24 maxlen: 24
210.184.120.0/24 maxlen: 24
210.184.121.0/24 maxlen: 24
210.184.122.0/24 maxlen: 24
210.184.124.0/24 maxlen: 24
210.184.127.0/24 maxlen: 24
210.184.128.0/17 maxlen: 17
210.184.128.0/21 maxlen: 21
210.184.136.0/22 maxlen: 22
210.184.137.0/24 maxlen: 24
210.184.139.0/24 maxlen: 24
210.184.142.0/24 maxlen: 24
210.184.152.0/22 maxlen: 22
210.184.156.0/23 maxlen: 23
210.184.158.0/23 maxlen: 23
210.184.164.0/22 maxlen: 22
210.184.167.0/24 maxlen: 24
210.184.168.0/22 maxlen: 22
210.184.172.0/23 maxlen: 23
210.184.174.0/23 maxlen: 23
210.184.178.0/23 maxlen: 23
210.184.178.0/24 maxlen: 24
210.184.180.0/22 maxlen: 22
210.184.180.0/24 maxlen: 24
210.184.184.0/22 maxlen: 22
210.184.189.0/24 maxlen: 24
210.184.190.0/23 maxlen: 23
210.184.190.0/24 maxlen: 24
210.184.192.0/24 maxlen: 24
210.184.193.0/24 maxlen: 24
210.184.194.0/24 maxlen: 24
210.184.196.0/22 maxlen: 22
210.184.196.0/24 maxlen: 24
210.184.197.0/24 maxlen: 24
210.184.198.0/23 maxlen: 24
210.184.200.0/22 maxlen: 22
210.184.200.0/24 maxlen: 24
210.184.201.0/24 maxlen: 24
210.184.202.0/24 maxlen: 24
210.184.203.0/24 maxlen: 24
210.184.204.0/22 maxlen: 22
210.184.208.0/24 maxlen: 24
210.184.209.0/24 maxlen: 24
210.184.210.0/24 maxlen: 24
210.184.211.0/24 maxlen: 24
210.184.212.0/24 maxlen: 24
210.184.213.0/24 maxlen: 24
210.184.214.0/24 maxlen: 24
210.184.215.0/24 maxlen: 24
210.184.216.0/24 maxlen: 24
210.184.217.0/24 maxlen: 24
210.184.218.0/24 maxlen: 24
210.184.219.0/24 maxlen: 24
210.184.220.0/24 maxlen: 24
210.184.221.0/24 maxlen: 24
210.184.222.0/24 maxlen: 24
210.184.223.0/24 maxlen: 24
210.184.224.0/24 maxlen: 24
210.184.225.0/24 maxlen: 24
210.184.226.0/24 maxlen: 24
210.184.240.0/24 maxlen: 24
210.184.241.0/24 maxlen: 24
210.184.242.0/23 maxlen: 24
210.184.248.0/21 maxlen: 22
210.184.248.0/23 maxlen: 23
210.184.248.0/24 maxlen: 24
210.184.251.0/24 maxlen: 24
210.184.254.0/24 maxlen: 24
2403:2400::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 04 Nov 2024 05:59:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2808 (0xaf8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567
Validity
Not Before: Jul 30 06:37:41 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=66a88a35-2b2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a4:fa:f5:bb:60:68:86:fa:c3:8e:87:01:27:
e2:b2:ca:43:f2:cd:46:25:a7:00:30:60:31:d6:7f:
eb:6c:d0:31:6a:7f:99:01:a4:6a:fb:4a:5a:be:e5:
20:ba:e6:15:e0:df:07:d0:e3:94:a8:bc:e2:02:06:
b8:a0:e5:81:8e:a4:9a:c1:83:15:b7:f4:a7:f5:6e:
bc:65:f5:9f:be:23:d4:62:e2:79:f5:de:7f:8c:a9:
f1:0e:2b:e1:f6:a1:07:ab:09:48:80:06:e5:af:2b:
bd:d2:8c:4a:58:41:c8:a4:f4:1d:02:29:46:bb:71:
13:11:74:18:55:f6:75:66:7e:15:d1:dc:df:39:bc:
a6:94:e2:ad:f7:99:3d:47:91:9a:b7:74:11:68:2f:
53:ec:9f:98:9a:0a:cb:15:ca:ee:6d:bc:ac:f3:b6:
1b:29:fb:29:4e:c6:e7:14:3f:bc:80:e3:7b:9c:af:
e9:6c:fb:31:be:d6:77:05:e0:8d:a4:cb:ef:00:35:
18:91:6d:14:9e:91:e0:c2:35:99:d1:4e:b8:c9:99:
1f:1d:53:79:5b:2b:81:68:31:b3:12:e0:ff:03:34:
56:6a:6c:48:54:05:f9:01:7b:e9:7e:61:1f:f5:a0:
d5:d4:56:7a:71:95:8e:74:66:fd:35:6a:4b:31:ae:
d2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:86:B5:61:17:DB:4A:72:68:50:8D:20:CB:2B:E5:4C:41:C7:BF:46
X509v3 Authority Key Identifier:
keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/387677DE4E3E11EFB84E562DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.85.128.0/19
202.85.164.0-202.85.175.255
202.85.180.0-202.85.188.255
202.85.190.0/23
203.194.128.0-203.194.171.255
203.194.176.0/22
203.194.183.0/24
203.194.186.0-203.194.255.255
210.184.96.0/21
210.184.108.0-210.184.122.255
210.184.124.0/24
210.184.127.0-210.184.255.255
IPv6:
2403:2400::/32
Signature Algorithm: sha256WithRSAEncryption
bd:85:1c:44:b6:05:be:b3:22:23:45:e0:03:f6:93:14:cf:4c:
4f:21:0c:bb:c6:b1:a1:68:ec:70:01:68:18:d7:04:15:19:ad:
57:ef:32:57:c9:49:dd:f4:87:d3:db:7a:33:bd:8d:b4:03:3d:
50:48:5f:61:f7:fa:60:6b:87:58:88:f8:d4:34:8f:ac:d3:3a:
0d:2b:6f:90:6f:1f:d3:f3:85:a2:c3:8d:5b:2e:b6:43:e5:60:
2b:88:f5:ea:16:7f:d9:8d:33:ad:40:6c:14:78:80:7b:30:41:
4c:50:69:28:b7:1a:fe:17:cc:07:c5:0b:82:f3:f8:c9:1e:1e:
c8:44:53:39:2c:5c:70:26:34:36:72:c4:c0:6c:d0:30:91:41:
36:a7:90:b0:79:bb:10:23:e8:d3:e3:2d:3c:a8:a4:02:51:49:
7f:91:c3:4f:30:7e:22:b2:cd:df:95:19:ac:c7:64:7a:fa:23:
3e:72:f3:ab:01:f5:f0:47:5a:e4:a2:f2:3b:29:6f:e7:47:13:
73:7c:88:0c:0a:1a:9a:26:de:5f:06:e4:d1:af:b7:b0:25:55:
d0:9a:77:7b:76:58:29:70:52:fe:93:6b:1c:96:b3:14:7a:90:
05:ed:ee:80:4d:5b:79:00:bd:b5:f3:6d:4f:da:ab:d5:29:29:
aa:05:12:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 08:26:38 2024 by rpki-client on console-fra.rpki-client.org