Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/D61A0CE4E1F111EEB0A48809C4F9AE02.roa
File: D61A0CE4E1F111EEB0A48809C4F9AE02.roa (raw, json)
Hash identifier: tJralBI6yqYTJCJBB507vj+19ANlrGU8S/T6tiI7VAs=
Subject key identifier: B8:E2:71:AF:7F:C7:44:D2:DB:DA:FB:19:6F:92:0B:E5:13:88:20:FA
Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Certificate serial: 34AB
Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/D61A0CE4E1F111EEB0A48809C4F9AE02.roa
Signing time: Thu 14 Mar 2024 10:58:49 +0000
ROA not before: Thu 14 Mar 2024 10:58:49 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 23750
IP address blocks: 103.207.84.0/24 maxlen: 24
103.207.86.0/24 maxlen: 24
103.207.87.0/24 maxlen: 24
116.90.106.0/24 maxlen: 24
116.90.107.0/24 maxlen: 24
116.90.108.0/24 maxlen: 24
116.90.109.0/24 maxlen: 24
116.90.110.0/24 maxlen: 24
116.90.111.0/24 maxlen: 24
116.90.115.0/24 maxlen: 24
116.90.117.0/24 maxlen: 24
116.90.119.0/24 maxlen: 24
116.90.120.0/24 maxlen: 24
116.90.123.0/24 maxlen: 24
116.90.124.0/24 maxlen: 24
116.90.125.0/24 maxlen: 24
116.90.126.0/24 maxlen: 24
116.90.127.0/24 maxlen: 24
121.46.64.0/24 maxlen: 24
202.69.32.0/24 maxlen: 24
202.69.33.0/24 maxlen: 24
202.69.34.0/24 maxlen: 24
202.69.35.0/24 maxlen: 24
202.69.36.0/24 maxlen: 24
202.69.37.0/24 maxlen: 24
202.69.38.0/24 maxlen: 24
202.69.39.0/24 maxlen: 24
202.69.40.0/24 maxlen: 24
202.69.41.0/24 maxlen: 24
202.69.42.0/24 maxlen: 24
202.69.43.0/24 maxlen: 24
202.69.44.0/24 maxlen: 24
202.69.45.0/24 maxlen: 24
202.69.46.0/24 maxlen: 24
202.69.47.0/24 maxlen: 24
202.69.48.0/24 maxlen: 24
202.69.49.0/24 maxlen: 24
202.69.50.0/24 maxlen: 24
202.69.51.0/24 maxlen: 24
202.69.52.0/24 maxlen: 24
202.69.53.0/24 maxlen: 24
202.69.54.0/24 maxlen: 24
202.69.55.0/24 maxlen: 24
202.69.56.0/24 maxlen: 24
202.69.57.0/24 maxlen: 24
202.69.58.0/24 maxlen: 24
202.69.59.0/24 maxlen: 24
202.69.60.0/24 maxlen: 24
202.69.61.0/24 maxlen: 24
202.69.62.0/24 maxlen: 24
202.69.63.0/24 maxlen: 24
202.142.144.0/24 maxlen: 24
202.142.145.0/24 maxlen: 24
202.142.146.0/24 maxlen: 24
202.142.147.0/24 maxlen: 24
202.142.148.0/24 maxlen: 24
202.142.149.0/24 maxlen: 24
202.142.150.0/24 maxlen: 24
202.142.152.0/24 maxlen: 24
202.142.153.0/24 maxlen: 24
202.142.154.0/24 maxlen: 24
202.142.156.0/24 maxlen: 24
202.142.157.0/24 maxlen: 24
202.142.158.0/24 maxlen: 24
202.142.159.0/24 maxlen: 24
2406:ac00:1::/48 maxlen: 48
2406:ac00:2::/48 maxlen: 48
2406:ac00:203::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 15 Mar 2024 10:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13483 (0x34ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34
Validity
Not Before: Mar 14 10:58:49 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=65f2d869-bc30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:1c:11:9b:1c:d3:56:92:4f:fb:62:8e:98:ec:
f0:e3:5e:cc:a3:aa:8d:75:67:91:ef:f5:f9:d6:c8:
d2:7b:17:6f:d4:d1:91:29:22:45:07:a4:78:5d:2a:
f5:4f:8f:63:14:c6:27:f8:c4:d0:a1:ff:91:5d:8c:
68:84:57:3f:f4:54:b9:72:5f:66:22:23:50:c2:25:
9a:1c:24:73:2d:33:f6:d4:ce:53:b4:8c:41:ac:d0:
16:1c:72:87:96:ae:0f:08:b0:af:57:ca:a2:59:2e:
19:6d:c6:e2:c7:5b:22:b5:cb:f1:9a:9e:6f:00:19:
5f:ac:24:0c:f3:f4:b6:55:ee:f3:88:8c:68:5e:7d:
75:44:2a:56:69:5b:b5:ad:b5:77:4e:c2:3b:b5:39:
fb:a4:62:7a:e6:68:fe:d8:42:26:b4:e0:0a:7e:9a:
6f:03:4d:c8:16:4b:8a:3b:7f:bb:42:1d:3c:02:2e:
8a:f9:ef:db:3a:7e:12:be:56:3a:4c:a5:cc:72:3b:
9b:69:b9:23:61:33:ea:4d:3a:63:b8:cb:8e:11:fb:
c5:12:7c:d8:fd:0d:b8:0a:b4:37:25:4d:c2:ac:a5:
29:4d:5f:6b:d7:46:d0:51:b5:7a:64:2b:73:f0:92:
76:bd:f3:5b:4e:c5:fc:e8:5e:93:d1:66:67:02:06:
5a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E2:71:AF:7F:C7:44:D2:DB:DA:FB:19:6F:92:0B:E5:13:88:20:FA
X509v3 Authority Key Identifier:
keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/D61A0CE4E1F111EEB0A48809C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.207.84.0/24
103.207.86.0/23
116.90.106.0-116.90.111.255
116.90.115.0/24
116.90.117.0/24
116.90.119.0-116.90.120.255
116.90.123.0-116.90.127.255
121.46.64.0/24
202.69.32.0/19
202.142.144.0-202.142.150.255
202.142.152.0-202.142.154.255
202.142.156.0/22
IPv6:
2406:ac00:1::-2406:ac00:2:ffff:ffff:ffff:ffff:ffff
2406:ac00:203::/48
Signature Algorithm: sha256WithRSAEncryption
50:23:bb:da:85:75:68:c2:99:5e:b1:a6:51:3b:e6:18:6c:b2:
48:90:a6:97:a9:6f:dd:2b:e6:97:67:2f:cf:3d:36:55:e1:df:
b0:cb:ce:fd:78:77:75:24:1c:bb:ce:0b:28:0b:05:73:b1:91:
57:93:94:19:20:2d:63:38:aa:05:57:02:f9:63:ca:c7:63:6b:
4c:52:63:bd:6b:96:de:0e:be:5d:27:d5:70:05:41:64:ff:4d:
61:b0:41:cf:a4:1b:fd:40:19:6f:e4:7b:ea:f7:57:29:98:57:
77:12:87:bd:a1:ab:69:cb:ff:26:c0:71:c8:77:dc:82:3e:1a:
92:cf:80:1f:a9:03:a0:f6:57:96:11:3d:c7:9a:2c:c7:03:58:
33:4b:41:df:df:1c:65:ef:e7:5e:94:48:2c:31:c0:5b:9f:d3:
d4:ad:55:d3:83:b9:ce:70:af:e5:58:a8:a3:d2:0a:bf:b8:94:
59:29:70:38:b9:8e:e0:db:d0:bc:61:aa:f3:b9:87:e7:d1:05:
73:08:04:8d:52:ef:d8:ab:10:dd:c4:79:0b:39:5f:1f:0a:f3:
71:3a:bd:ce:c6:53:1b:4b:42:97:87:d6:f6:e0:4f:6d:19:a2:
1b:86:81:91:97:29:69:92:19:ca:35:1a:3e:3a:96:e9:7a:f3:
08:d4:0d:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 15 13:33:39 2024 by rpki-client on console-fra.rpki-client.org