Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/A38D9084E6F811EC87D3034DC4F9AE02.roa
File: A38D9084E6F811EC87D3034DC4F9AE02.roa (raw, json)
Hash identifier: nepXfmzkVkIRG2/gUyOunJLIyXiFF3NvyH2KGSYA9fk=
Subject key identifier: 90:33:19:7E:3A:4C:CC:D2:C5:8F:D2:72:B2:FB:71:73:A3:B2:6A:6B
Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567
Certificate serial: 0ADF
Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/A38D9084E6F811EC87D3034DC4F9AE02.roa
Signing time: Wed 19 Jun 2024 03:24:18 +0000
ROA not before: Wed 19 Jun 2024 03:24:18 +0000
ROA not after: Fri 31 Jan 2025 00:00:00 +0000
asID: 9729
IP address blocks: 202.85.128.0/20 maxlen: 20
202.85.128.0/24 maxlen: 24
202.85.129.0/24 maxlen: 24
202.85.131.0/24 maxlen: 24
202.85.132.0/24 maxlen: 24
202.85.137.0/24 maxlen: 24
202.85.138.0/24 maxlen: 24
202.85.140.0/24 maxlen: 24
202.85.144.0/20 maxlen: 20
202.85.164.0/23 maxlen: 23
202.85.165.0/24 maxlen: 24
202.85.166.0/23 maxlen: 23
202.85.167.0/24 maxlen: 24
202.85.168.0/22 maxlen: 22
202.85.169.0/24 maxlen: 24
202.85.170.0/24 maxlen: 24
202.85.171.0/24 maxlen: 24
202.85.172.0/22 maxlen: 22
202.85.172.0/24 maxlen: 24
202.85.180.0/22 maxlen: 22
202.85.181.0/24 maxlen: 24
202.85.184.0/22 maxlen: 22
202.85.188.0/24 maxlen: 24
202.85.190.0/24 maxlen: 24
202.85.191.0/24 maxlen: 24
203.194.128.0/21 maxlen: 21
203.194.133.0/24 maxlen: 24
203.194.135.0/24 maxlen: 24
203.194.136.0/21 maxlen: 21
203.194.136.0/24 maxlen: 24
203.194.141.0/24 maxlen: 24
203.194.144.0/21 maxlen: 21
203.194.144.0/24 maxlen: 24
203.194.145.0/24 maxlen: 24
203.194.146.0/24 maxlen: 24
203.194.148.0/24 maxlen: 24
203.194.149.0/24 maxlen: 24
203.194.152.0/21 maxlen: 21
203.194.153.0/24 maxlen: 24
203.194.159.0/24 maxlen: 24
203.194.160.0/22 maxlen: 22
203.194.160.0/24 maxlen: 24
203.194.164.0/22 maxlen: 22
203.194.168.0/22 maxlen: 22
203.194.168.0/24 maxlen: 24
203.194.169.0/24 maxlen: 24
203.194.170.0/24 maxlen: 24
203.194.171.0/24 maxlen: 24
203.194.176.0/22 maxlen: 22
203.194.176.0/24 maxlen: 24
203.194.177.0/24 maxlen: 24
203.194.179.0/24 maxlen: 24
203.194.183.0/24 maxlen: 24
203.194.186.0/23 maxlen: 24
203.194.188.0/22 maxlen: 22
203.194.188.0/24 maxlen: 24
203.194.192.0/21 maxlen: 21
203.194.196.0/24 maxlen: 24
203.194.199.0/24 maxlen: 24
203.194.200.0/22 maxlen: 22
203.194.200.0/23 maxlen: 23
203.194.204.0/22 maxlen: 22
203.194.206.0/24 maxlen: 24
203.194.208.0/22 maxlen: 22
203.194.208.0/24 maxlen: 24
203.194.209.0/24 maxlen: 24
203.194.211.0/24 maxlen: 24
203.194.212.0/22 maxlen: 22
203.194.212.0/23 maxlen: 23
203.194.216.0/22 maxlen: 22
203.194.216.0/24 maxlen: 24
203.194.217.0/24 maxlen: 24
203.194.218.0/24 maxlen: 24
203.194.219.0/24 maxlen: 24
203.194.220.0/22 maxlen: 22
203.194.220.0/24 maxlen: 24
203.194.221.0/24 maxlen: 24
203.194.223.0/24 maxlen: 24
203.194.224.0/22 maxlen: 22
203.194.224.0/24 maxlen: 24
203.194.227.0/24 maxlen: 24
203.194.228.0/22 maxlen: 22
203.194.228.0/24 maxlen: 24
203.194.232.0/22 maxlen: 22
203.194.232.0/24 maxlen: 24
203.194.233.0/24 maxlen: 24
203.194.236.0/22 maxlen: 22
203.194.239.0/24 maxlen: 24
203.194.240.0/22 maxlen: 22
203.194.244.0/22 maxlen: 22
203.194.244.0/24 maxlen: 24
203.194.248.0/21 maxlen: 21
203.194.255.0/24 maxlen: 24
210.184.96.0/22 maxlen: 22
210.184.97.0/24 maxlen: 24
210.184.99.0/24 maxlen: 24
210.184.100.0/22 maxlen: 22
210.184.108.0/22 maxlen: 22
210.184.110.0/24 maxlen: 24
210.184.112.0/21 maxlen: 21
210.184.113.0/24 maxlen: 24
210.184.114.0/24 maxlen: 24
210.184.120.0/24 maxlen: 24
210.184.121.0/24 maxlen: 24
210.184.122.0/24 maxlen: 24
210.184.124.0/24 maxlen: 24
210.184.127.0/24 maxlen: 24
210.184.128.0/17 maxlen: 17
210.184.128.0/21 maxlen: 21
210.184.136.0/22 maxlen: 22
210.184.137.0/24 maxlen: 24
210.184.139.0/24 maxlen: 24
210.184.142.0/24 maxlen: 24
210.184.152.0/22 maxlen: 22
210.184.156.0/23 maxlen: 23
210.184.158.0/23 maxlen: 23
210.184.164.0/22 maxlen: 22
210.184.167.0/24 maxlen: 24
210.184.168.0/22 maxlen: 22
210.184.172.0/23 maxlen: 23
210.184.174.0/23 maxlen: 23
210.184.178.0/23 maxlen: 23
210.184.178.0/24 maxlen: 24
210.184.180.0/22 maxlen: 22
210.184.180.0/24 maxlen: 24
210.184.184.0/22 maxlen: 22
210.184.189.0/24 maxlen: 24
210.184.190.0/23 maxlen: 23
210.184.190.0/24 maxlen: 24
210.184.192.0/24 maxlen: 24
210.184.193.0/24 maxlen: 24
210.184.194.0/24 maxlen: 24
210.184.196.0/22 maxlen: 22
210.184.196.0/24 maxlen: 24
210.184.197.0/24 maxlen: 24
210.184.198.0/23 maxlen: 24
210.184.200.0/22 maxlen: 22
210.184.200.0/24 maxlen: 24
210.184.201.0/24 maxlen: 24
210.184.202.0/24 maxlen: 24
210.184.203.0/24 maxlen: 24
210.184.204.0/22 maxlen: 22
210.184.208.0/24 maxlen: 24
210.184.209.0/24 maxlen: 24
210.184.210.0/24 maxlen: 24
210.184.211.0/24 maxlen: 24
210.184.212.0/24 maxlen: 24
210.184.213.0/24 maxlen: 24
210.184.214.0/24 maxlen: 24
210.184.215.0/24 maxlen: 24
210.184.216.0/24 maxlen: 24
210.184.217.0/24 maxlen: 24
210.184.218.0/24 maxlen: 24
210.184.219.0/24 maxlen: 24
210.184.220.0/24 maxlen: 24
210.184.221.0/24 maxlen: 24
210.184.222.0/24 maxlen: 24
210.184.223.0/24 maxlen: 24
210.184.224.0/24 maxlen: 24
210.184.225.0/24 maxlen: 24
210.184.226.0/24 maxlen: 24
210.184.241.0/24 maxlen: 24
210.184.242.0/23 maxlen: 24
210.184.251.0/24 maxlen: 24
210.184.252.0/22 maxlen: 22
210.184.254.0/24 maxlen: 24
2403:2400::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 30 Jul 2024 06:33:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2783 (0xadf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567
Validity
Not Before: Jun 19 03:24:18 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=66724f62-8c87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:4f:7d:2d:d4:44:3a:44:99:b2:d6:6b:19:7e:
db:9e:d0:9e:fa:33:e2:52:7c:bd:c4:88:3d:46:52:
d2:dc:08:b3:f8:9f:08:67:94:16:61:0f:7b:d7:06:
81:e6:e5:f5:86:51:71:97:68:f6:31:f3:ae:d8:bd:
b4:a0:88:43:d2:f9:46:c3:cf:b7:8f:34:63:ed:8c:
7c:d6:34:74:41:60:9d:ff:b4:a5:6a:af:03:d2:2f:
18:33:e6:a6:d7:9f:0f:90:91:a1:9f:91:8c:98:3f:
76:b4:77:d5:0d:06:62:7a:65:e5:fc:ce:ab:b7:02:
3d:b0:d0:bf:a3:07:41:7e:bf:32:ef:dc:cb:51:22:
14:a9:40:96:3a:45:b1:e0:78:d4:ff:52:be:66:b4:
8e:14:13:98:65:85:df:8e:07:4a:bc:d9:02:e5:e3:
4b:e7:6b:c3:15:0b:ca:46:e4:c9:9b:f9:77:0b:d6:
6d:81:ef:6a:31:57:09:7f:4b:0f:e9:21:18:41:3c:
43:e3:1b:dd:cf:77:9e:81:45:d7:82:ff:0d:b0:b3:
83:bf:bc:f0:ce:8f:07:a4:32:1b:3e:79:d8:fc:39:
49:76:99:78:3f:01:05:cc:bf:7d:53:01:e9:af:be:
e5:18:e3:ec:e9:c8:8d:f6:c5:6f:a4:d5:99:00:fb:
93:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:33:19:7E:3A:4C:CC:D2:C5:8F:D2:72:B2:FB:71:73:A3:B2:6A:6B
X509v3 Authority Key Identifier:
keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/A38D9084E6F811EC87D3034DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.85.128.0/19
202.85.164.0-202.85.175.255
202.85.180.0-202.85.188.255
202.85.190.0/23
203.194.128.0-203.194.171.255
203.194.176.0/22
203.194.183.0/24
203.194.186.0-203.194.255.255
210.184.96.0/21
210.184.108.0-210.184.122.255
210.184.124.0/24
210.184.127.0-210.184.255.255
IPv6:
2403:2400::/32
Signature Algorithm: sha256WithRSAEncryption
0a:7f:92:07:b2:04:12:91:c1:43:fc:56:23:44:0c:18:29:13:
92:90:69:8e:99:ec:b3:a3:90:f3:4f:c1:43:8f:f8:90:04:42:
6d:86:8c:c6:81:e3:1b:ad:c9:b5:b3:2f:98:72:ea:4a:ed:01:
cb:65:f6:6f:c6:d8:50:56:a9:cc:18:da:22:a9:99:02:e5:74:
c8:89:35:ee:da:d1:8c:d0:8e:24:99:ad:d4:ee:70:6f:88:04:
d6:4c:6b:6c:39:bc:96:21:0b:f7:14:5e:4b:ef:6f:d9:0d:e3:
72:c6:33:3b:1f:1d:19:64:d6:60:d3:ef:a6:6d:2a:98:8c:09:
df:54:e9:21:c8:7d:64:b9:9a:90:5d:f6:48:59:88:f7:a3:80:
9a:b3:ec:59:5b:db:6c:43:12:06:14:b2:7d:9b:1d:d4:8c:07:
a3:1a:7f:52:9f:ac:49:b4:ad:56:16:39:00:d9:a9:1f:ed:0c:
4d:e1:83:7a:6a:1c:2b:13:ce:37:a4:45:6f:ac:37:4d:b0:0a:
63:ab:3c:23:49:f3:8a:f2:25:4f:08:a7:6b:d8:6d:27:3a:0f:
2a:8c:a8:36:2c:ce:b1:d0:b5:db:31:21:04:b4:14:a5:11:eb:
f2:0c:fa:6d:1c:d3:e7:96:18:12:f3:61:ec:c0:7b:f2:03:5a:
68:7c:ad:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 30 08:08:27 2024 by rpki-client on console-ams.rpki-client.org