Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/E4CED03C9A7211EFBBAB1D2DC4F9AE02.roa
File: E4CED03C9A7211EFBBAB1D2DC4F9AE02.roa (raw, json)
Hash identifier: kfihh6gdCnsQ9qjzGYY1DhcSNVh0K5dgHIKcmBb65B0=
Subject key identifier: 90:59:B8:0E:66:98:4C:AD:3E:D8:01:74:23:3E:7C:C4:3F:83:99:C1
Certificate issuer: /CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567
Certificate serial: 0B34
Authority key identifier: 78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/E4CED03C9A7211EFBBAB1D2DC4F9AE02.roa
Signing time: Wed 06 Nov 2024 19:08:18 +0000
ROA not before: Wed 06 Nov 2024 19:08:18 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 9729
IP address blocks: 202.85.128.0/20 maxlen: 20
202.85.128.0/24 maxlen: 24
202.85.129.0/24 maxlen: 24
202.85.131.0/24 maxlen: 24
202.85.132.0/24 maxlen: 24
202.85.137.0/24 maxlen: 24
202.85.138.0/24 maxlen: 24
202.85.140.0/24 maxlen: 24
202.85.144.0/20 maxlen: 20
202.85.164.0/23 maxlen: 23
202.85.165.0/24 maxlen: 24
202.85.166.0/23 maxlen: 23
202.85.167.0/24 maxlen: 24
202.85.168.0/22 maxlen: 22
202.85.169.0/24 maxlen: 24
202.85.170.0/24 maxlen: 24
202.85.171.0/24 maxlen: 24
202.85.172.0/22 maxlen: 22
202.85.172.0/24 maxlen: 24
202.85.180.0/22 maxlen: 22
202.85.181.0/24 maxlen: 24
202.85.184.0/22 maxlen: 22
202.85.188.0/24 maxlen: 24
202.85.190.0/24 maxlen: 24
202.85.191.0/24 maxlen: 24
203.194.128.0/21 maxlen: 21
203.194.133.0/24 maxlen: 24
203.194.135.0/24 maxlen: 24
203.194.136.0/21 maxlen: 21
203.194.136.0/24 maxlen: 24
203.194.141.0/24 maxlen: 24
203.194.144.0/21 maxlen: 21
203.194.144.0/24 maxlen: 24
203.194.145.0/24 maxlen: 24
203.194.146.0/24 maxlen: 24
203.194.148.0/24 maxlen: 24
203.194.149.0/24 maxlen: 24
203.194.152.0/21 maxlen: 21
203.194.153.0/24 maxlen: 24
203.194.159.0/24 maxlen: 24
203.194.160.0/22 maxlen: 24
203.194.164.0/22 maxlen: 22
203.194.168.0/22 maxlen: 22
203.194.168.0/24 maxlen: 24
203.194.169.0/24 maxlen: 24
203.194.170.0/24 maxlen: 24
203.194.171.0/24 maxlen: 24
203.194.176.0/22 maxlen: 22
203.194.176.0/24 maxlen: 24
203.194.177.0/24 maxlen: 24
203.194.179.0/24 maxlen: 24
203.194.183.0/24 maxlen: 24
203.194.186.0/23 maxlen: 24
203.194.188.0/22 maxlen: 22
203.194.188.0/24 maxlen: 24
203.194.192.0/21 maxlen: 21
203.194.196.0/24 maxlen: 24
203.194.199.0/24 maxlen: 24
203.194.200.0/22 maxlen: 22
203.194.200.0/23 maxlen: 23
203.194.204.0/22 maxlen: 22
203.194.206.0/24 maxlen: 24
203.194.208.0/22 maxlen: 22
203.194.208.0/24 maxlen: 24
203.194.209.0/24 maxlen: 24
203.194.211.0/24 maxlen: 24
203.194.212.0/22 maxlen: 22
203.194.212.0/23 maxlen: 23
203.194.216.0/22 maxlen: 22
203.194.216.0/24 maxlen: 24
203.194.217.0/24 maxlen: 24
203.194.218.0/24 maxlen: 24
203.194.219.0/24 maxlen: 24
203.194.220.0/22 maxlen: 22
203.194.220.0/24 maxlen: 24
203.194.221.0/24 maxlen: 24
203.194.223.0/24 maxlen: 24
203.194.224.0/22 maxlen: 22
203.194.224.0/24 maxlen: 24
203.194.227.0/24 maxlen: 24
203.194.228.0/22 maxlen: 22
203.194.228.0/24 maxlen: 24
203.194.232.0/22 maxlen: 22
203.194.232.0/24 maxlen: 24
203.194.233.0/24 maxlen: 24
203.194.236.0/22 maxlen: 24
203.194.240.0/22 maxlen: 22
203.194.244.0/22 maxlen: 22
203.194.244.0/24 maxlen: 24
203.194.248.0/21 maxlen: 21
203.194.255.0/24 maxlen: 24
210.184.96.0/22 maxlen: 22
210.184.97.0/24 maxlen: 24
210.184.99.0/24 maxlen: 24
210.184.100.0/22 maxlen: 22
210.184.108.0/22 maxlen: 22
210.184.110.0/24 maxlen: 24
210.184.112.0/21 maxlen: 21
210.184.113.0/24 maxlen: 24
210.184.114.0/24 maxlen: 24
210.184.120.0/24 maxlen: 24
210.184.121.0/24 maxlen: 24
210.184.122.0/24 maxlen: 24
210.184.124.0/24 maxlen: 24
210.184.127.0/24 maxlen: 24
210.184.128.0/17 maxlen: 17
210.184.128.0/21 maxlen: 21
210.184.136.0/22 maxlen: 22
210.184.137.0/24 maxlen: 24
210.184.139.0/24 maxlen: 24
210.184.142.0/24 maxlen: 24
210.184.152.0/22 maxlen: 22
210.184.156.0/23 maxlen: 23
210.184.158.0/23 maxlen: 23
210.184.164.0/22 maxlen: 22
210.184.167.0/24 maxlen: 24
210.184.168.0/22 maxlen: 22
210.184.172.0/23 maxlen: 23
210.184.174.0/23 maxlen: 23
210.184.178.0/23 maxlen: 23
210.184.178.0/24 maxlen: 24
210.184.180.0/22 maxlen: 22
210.184.180.0/24 maxlen: 24
210.184.184.0/22 maxlen: 22
210.184.189.0/24 maxlen: 24
210.184.190.0/23 maxlen: 23
210.184.190.0/24 maxlen: 24
210.184.192.0/24 maxlen: 24
210.184.193.0/24 maxlen: 24
210.184.194.0/24 maxlen: 24
210.184.196.0/22 maxlen: 22
210.184.196.0/24 maxlen: 24
210.184.197.0/24 maxlen: 24
210.184.198.0/23 maxlen: 24
210.184.200.0/22 maxlen: 22
210.184.200.0/24 maxlen: 24
210.184.201.0/24 maxlen: 24
210.184.202.0/24 maxlen: 24
210.184.203.0/24 maxlen: 24
210.184.204.0/22 maxlen: 22
210.184.208.0/24 maxlen: 24
210.184.209.0/24 maxlen: 24
210.184.210.0/24 maxlen: 24
210.184.211.0/24 maxlen: 24
210.184.212.0/24 maxlen: 24
210.184.213.0/24 maxlen: 24
210.184.214.0/24 maxlen: 24
210.184.215.0/24 maxlen: 24
210.184.216.0/24 maxlen: 24
210.184.217.0/24 maxlen: 24
210.184.218.0/24 maxlen: 24
210.184.219.0/24 maxlen: 24
210.184.220.0/24 maxlen: 24
210.184.221.0/24 maxlen: 24
210.184.222.0/24 maxlen: 24
210.184.223.0/24 maxlen: 24
210.184.224.0/24 maxlen: 24
210.184.225.0/24 maxlen: 24
210.184.226.0/24 maxlen: 24
210.184.240.0/24 maxlen: 24
210.184.241.0/24 maxlen: 24
210.184.242.0/23 maxlen: 24
210.184.248.0/21 maxlen: 22
210.184.248.0/23 maxlen: 24
210.184.251.0/24 maxlen: 24
210.184.254.0/24 maxlen: 24
2403:2400::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 18 Nov 2024 07:48:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2868 (0xb34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A09BF/serialNumber=7870F240BC4516E39A9C25958CF97B194BE76567
Validity
Not Before: Nov 6 19:08:18 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=672bbea1-53f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2f:96:5a:3d:ce:94:30:c0:fb:e0:10:bb:0e:
c0:3f:a1:1c:53:02:eb:cf:7e:38:de:11:e8:ba:dc:
d8:56:df:5d:b7:ff:1c:97:e4:19:f2:d6:c9:b5:af:
2f:03:1f:2b:45:97:24:44:25:cb:3d:d9:2d:e8:fc:
bb:92:8f:78:28:90:04:37:db:7c:05:30:c9:2f:f7:
c5:e0:bf:c2:14:b8:e2:2e:6c:f0:84:f2:b8:8e:a7:
16:b6:f9:c0:4c:61:72:62:f0:f6:c8:59:69:e4:f5:
52:7d:95:15:aa:1f:84:9f:f1:e3:02:c3:ce:6d:d0:
07:e8:1d:7d:c2:04:6a:c4:b2:3d:c2:64:b6:da:4a:
62:43:32:2e:e6:fc:41:d5:4c:30:07:a0:7b:56:b4:
72:19:c3:48:d7:f9:9d:3b:9c:4e:11:f1:f0:06:0f:
28:83:95:a9:c5:ff:0b:13:e5:9c:3f:20:59:3c:02:
10:51:0e:1c:c8:ef:1b:fe:7e:f7:0e:ce:a5:03:50:
6c:1a:44:87:02:42:ff:c9:ec:8e:1a:69:d3:7f:36:
0e:58:ce:dc:76:3f:55:7f:95:2a:87:1e:45:5b:62:
5f:01:a0:7b:ec:90:c1:ea:27:8a:c7:96:f9:84:42:
4d:a5:de:dd:fe:d0:59:fc:6f:ae:68:7c:83:73:ff:
a3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:59:B8:0E:66:98:4C:AD:3E:D8:01:74:23:3E:7C:C4:3F:83:99:C1
X509v3 Authority Key Identifier:
keyid:78:70:F2:40:BC:45:16:E3:9A:9C:25:95:8C:F9:7B:19:4B:E7:65:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/eHDyQLxFFuOanCWVjPl7GUvnZWc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHDyQLxFFuOanCWVjPl7GUvnZWc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09BF/D13DA1D42DFC11EABC1B6B82C4F9AE02/E4CED03C9A7211EFBBAB1D2DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.85.128.0/19
202.85.164.0-202.85.175.255
202.85.180.0-202.85.188.255
202.85.190.0/23
203.194.128.0-203.194.171.255
203.194.176.0/22
203.194.183.0/24
203.194.186.0-203.194.255.255
210.184.96.0/21
210.184.108.0-210.184.122.255
210.184.124.0/24
210.184.127.0-210.184.255.255
IPv6:
2403:2400::/32
Signature Algorithm: sha256WithRSAEncryption
4c:db:c4:3b:ab:a9:bb:0b:92:07:8c:1e:70:0e:77:b7:fb:9a:
1d:35:c0:a6:01:38:c9:e5:cf:56:0b:28:d0:a7:4e:75:bb:eb:
52:e3:29:a4:ac:5f:06:65:2b:00:10:d4:80:3d:ae:b4:08:76:
6f:da:a7:3a:82:14:a5:ac:43:98:3b:99:1c:eb:25:12:df:9c:
e5:d5:54:0a:57:1b:9f:48:e0:00:c7:d4:65:b1:0d:1c:4c:86:
6a:54:70:89:3c:07:f1:61:7b:bb:45:78:41:fb:8a:6b:5c:87:
09:db:60:c9:40:9a:62:98:ab:e8:84:3c:08:ec:b6:23:1c:41:
0b:be:ee:2b:16:9d:5d:ff:cc:fb:62:dc:01:d9:ed:cc:2f:27:
8d:cf:ef:94:07:6c:47:5b:f3:39:ca:f5:85:02:ab:9a:17:1d:
bb:a0:17:04:69:c8:94:34:68:60:e6:af:ab:df:20:62:25:13:
4d:fa:1f:69:87:15:6d:85:6f:29:6a:02:aa:d8:de:8e:40:b0:
5f:e4:1b:07:37:0c:f3:53:03:7b:72:03:c3:f6:e2:7d:96:0b:
01:1b:8b:6f:c7:ac:7c:29:b1:30:70:9a:a2:7d:1d:7f:1f:a0:
fb:83:95:b0:7e:ca:d4:07:67:2c:b2:d7:f7:bf:47:cb:cd:af:
c2:15:3f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 18 10:07:13 2024 by rpki-client on console-fra.rpki-client.org