Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0D64F45A766A11EEBC78572CC4F9AE02.roa
File: 0D64F45A766A11EEBC78572CC4F9AE02.roa (raw, json)
Hash identifier: epbMYJvZiFhO6PI94bOnFJCtM98hvv46vMNXZlzB6aw=
Subject key identifier: FF:62:1B:13:11:87:CD:67:39:61:70:D4:83:F4:D3:DD:4A:98:EA:97
Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Certificate serial: 4662
Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0D64F45A766A11EEBC78572CC4F9AE02.roa
Signing time: Thu 05 Sep 2024 03:36:12 +0000
ROA not before: Thu 05 Sep 2024 03:36:12 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 45903
IP address blocks: 42.96.32.0/19 maxlen: 19
42.96.38.0/23 maxlen: 24
42.96.40.0/21 maxlen: 24
42.96.48.0/21 maxlen: 24
42.96.56.0/22 maxlen: 24
42.96.60.0/23 maxlen: 23
42.96.60.0/24 maxlen: 24
42.96.61.0/24 maxlen: 24
42.96.62.0/24 maxlen: 24
45.122.232.0/22 maxlen: 24
45.122.236.0/22 maxlen: 24
45.122.240.0/22 maxlen: 24
45.122.244.0/22 maxlen: 23
45.122.245.0/24 maxlen: 24
45.122.246.0/23 maxlen: 24
45.122.248.0/22 maxlen: 24
45.122.252.0/24 maxlen: 24
45.122.254.0/23 maxlen: 24
101.99.0.0/21 maxlen: 21
101.99.0.0/23 maxlen: 24
101.99.2.0/23 maxlen: 23
101.99.2.0/24 maxlen: 24
101.99.4.0/22 maxlen: 24
101.99.8.0/21 maxlen: 24
101.99.16.0/20 maxlen: 24
101.99.32.0/19 maxlen: 24
103.9.196.0/22 maxlen: 24
103.63.104.0/22 maxlen: 24
103.63.108.0/22 maxlen: 22
103.63.110.0/23 maxlen: 24
103.63.112.0/22 maxlen: 24
103.63.116.0/22 maxlen: 24
103.63.120.0/22 maxlen: 24
103.224.168.0/22 maxlen: 24
103.229.40.0/22 maxlen: 24
103.246.220.0/22 maxlen: 24
113.20.96.0/19 maxlen: 24
115.165.160.0/21 maxlen: 21
115.165.160.0/24 maxlen: 24
115.165.166.0/24 maxlen: 24
119.82.128.0/20 maxlen: 23
119.82.128.0/22 maxlen: 24
119.82.132.0/24 maxlen: 24
119.82.134.0/23 maxlen: 24
119.82.136.0/21 maxlen: 24
124.158.14.0/24 maxlen: 24
144.48.24.0/22 maxlen: 24
183.91.0.0/20 maxlen: 20
183.91.0.0/21 maxlen: 24
183.91.8.0/21 maxlen: 21
183.91.8.0/22 maxlen: 24
183.91.12.0/23 maxlen: 24
183.91.15.0/24 maxlen: 24
183.91.16.0/20 maxlen: 24
202.134.16.0/21 maxlen: 24
203.171.16.0/20 maxlen: 24
203.205.0.0/21 maxlen: 24
203.205.8.0/21 maxlen: 21
203.205.8.0/22 maxlen: 22
203.205.9.0/24 maxlen: 24
203.205.10.0/23 maxlen: 24
203.205.12.0/22 maxlen: 24
203.205.16.0/20 maxlen: 24
203.205.32.0/19 maxlen: 24
2402:5300::/35 maxlen: 35
2402:5300::/40 maxlen: 48
2402:5300:400::/42 maxlen: 42
2402:5300:400::/46 maxlen: 48
2402:5300:404::/48 maxlen: 48
2402:5300:405::/48 maxlen: 48
2402:5300:406::/48 maxlen: 48
2402:5300:408::/46 maxlen: 48
2402:5300:40c::/46 maxlen: 48
2402:5300:410::/44 maxlen: 48
2402:5300:420::/44 maxlen: 48
2402:5300:430::/44 maxlen: 48
2402:5300:440::/42 maxlen: 48
2402:5300:480::/42 maxlen: 48
2402:5300:4c0::/42 maxlen: 48
2402:5300:500::/40 maxlen: 48
2402:5300:600::/40 maxlen: 48
2402:5300:700::/40 maxlen: 48
2402:5300:800::/40 maxlen: 48
2402:5300:900::/40 maxlen: 48
2402:5300:1000::/36 maxlen: 48
2402:5300:2000::/35 maxlen: 35
2402:5300:2000::/36 maxlen: 48
2402:5300:4000::/35 maxlen: 35
2402:5300:4000::/42 maxlen: 42
2402:5300:4000::/44 maxlen: 48
2402:5300:4010::/44 maxlen: 48
2402:5300:4022::/48 maxlen: 48
2402:5300:4023::/48 maxlen: 48
2402:5300:4024::/46 maxlen: 48
2402:5300:4028::/46 maxlen: 48
2402:5300:402c::/46 maxlen: 48
2402:5300:4030::/44 maxlen: 48
2402:5300:4040::/42 maxlen: 48
2402:5300:4080::/42 maxlen: 48
2402:5300:40c0::/42 maxlen: 48
2402:5300:4100::/40 maxlen: 48
2402:5300:4200::/40 maxlen: 48
2402:5300:4300::/40 maxlen: 48
2402:5300:4400::/40 maxlen: 48
2402:5300:4500::/40 maxlen: 48
2402:5300:4600::/40 maxlen: 48
2402:5300:4700::/40 maxlen: 48
2402:5300:5000::/36 maxlen: 48
2402:5300:6000::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 08 Oct 2024 08:14:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18018 (0x4662)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A
Validity
Not Before: Sep 5 03:36:12 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=66d9272c-6b42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:97:2a:9c:ee:3e:4d:4b:06:a0:bd:3a:c7:67:
e4:41:87:22:4d:db:a6:e1:5c:39:da:b8:4f:1a:a5:
82:dd:fb:f1:f0:95:38:ff:7d:eb:be:28:c6:81:0b:
44:11:38:a8:2d:52:a5:00:ff:1b:64:c4:da:bd:44:
c1:2e:70:f4:bc:7a:6b:8c:fb:24:2e:ac:b2:3a:fc:
b8:26:6d:b2:15:fe:b3:96:92:50:37:a6:3d:5f:37:
22:97:a6:db:b2:c7:fb:0f:08:19:69:a9:dd:92:b0:
85:1c:22:f5:9b:4e:ca:f4:47:db:9f:bb:bf:b9:d4:
31:08:5e:33:98:cf:e5:24:6b:4a:aa:df:b6:73:5c:
e3:a9:dc:5d:22:f6:a5:4b:19:6b:3f:04:d4:6e:83:
fc:30:c3:df:df:5c:38:23:81:fc:eb:e9:42:7c:ca:
14:71:ca:6a:c7:53:88:c4:6e:29:80:fd:ce:06:39:
83:ec:a2:53:44:33:10:3c:eb:f8:b9:bc:e7:58:8e:
3a:1c:61:9c:a1:14:3f:97:bf:f2:29:66:0d:ac:68:
07:86:f8:7f:5c:0d:20:6c:02:2e:4b:bd:23:7d:07:
de:9b:70:a3:cf:2b:cf:58:7f:3a:85:78:11:bf:82:
ac:da:26:82:56:04:2c:a6:b8:a5:ca:75:a7:b7:0c:
58:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:62:1B:13:11:87:CD:67:39:61:70:D4:83:F4:D3:DD:4A:98:EA:97
X509v3 Authority Key Identifier:
keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0D64F45A766A11EEBC78572CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
42.96.32.0/19
45.122.232.0-45.122.252.255
45.122.254.0/23
101.99.0.0/18
103.9.196.0/22
103.63.104.0-103.63.123.255
103.224.168.0/22
103.229.40.0/22
103.246.220.0/22
113.20.96.0/19
115.165.160.0/21
119.82.128.0/20
124.158.14.0/24
144.48.24.0/22
183.91.0.0/19
202.134.16.0/21
203.171.16.0/20
203.205.0.0/18
IPv6:
2402:5300::-2402:5300:600f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
71:b7:7f:33:43:3b:ad:f6:2d:af:b3:1d:b4:a8:e7:e9:86:08:
5a:97:d5:c6:69:7a:ab:83:16:13:03:d4:cc:b2:98:a8:e7:36:
f1:15:56:ea:66:b9:95:07:c1:99:e2:50:4e:7a:29:94:fe:80:
6f:6f:67:d4:94:0e:c4:b8:ab:47:be:e4:3b:ad:1d:f1:63:04:
01:d4:8d:49:7c:95:7d:ff:95:45:78:0d:7d:9b:9a:a4:b8:af:
62:4e:49:e8:90:fe:9a:e9:4f:75:b1:6e:49:52:5e:83:65:36:
c0:1a:e3:a4:97:cc:46:8e:2f:5d:c6:65:26:e6:24:0e:b0:59:
1f:20:6b:ea:cf:3b:d4:42:4d:a4:d3:f5:59:6b:b2:e3:be:ff:
08:1a:58:cd:49:29:88:68:d2:36:3d:fc:1f:35:68:52:ad:bf:
75:c2:c0:14:79:59:ff:a7:4f:70:45:2c:da:6b:c0:1e:49:83:
a2:a9:fc:27:2f:e1:20:7a:f6:00:61:60:a5:b3:5d:ef:3c:05:
7d:f8:0e:b8:09:49:d1:1f:15:a3:5b:97:47:dc:c4:fb:aa:93:
20:51:77:c9:c0:2f:17:82:01:2f:b3:20:ad:af:dc:76:ee:2d:
64:07:01:78:e3:e8:bb:c9:cf:e0:1b:1f:e8:02:b1:77:7e:2e:
94:b5:ec:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 8 13:43:45 2024 by rpki-client on console-ams.rpki-client.org