Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/401D13E889AA11EE970FD928C4F9AE02.roa
File: 401D13E889AA11EE970FD928C4F9AE02.roa (raw, json)
Hash identifier: AQMtNEZpG4KYRNo9Zji+BLWYski+Lrq4CUeToNMTA4k=
Subject key identifier: 28:27:C7:78:DF:BA:1B:D1:9D:A5:D7:31:27:35:15:B0:6E:F8:F9:F2
Certificate issuer: /CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37
Certificate serial: 33D7
Authority key identifier: 1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/401D13E889AA11EE970FD928C4F9AE02.roa
Signing time: Thu 23 Nov 2023 03:19:18 +0000
ROA not before: Thu 23 Nov 2023 03:19:18 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 198949
IP address blocks: 45.119.92.0/24 maxlen: 24
45.119.93.0/24 maxlen: 24
45.119.94.0/24 maxlen: 24
45.119.95.0/24 maxlen: 24
45.127.0.0/24 maxlen: 24
45.127.1.0/24 maxlen: 24
45.127.2.0/24 maxlen: 24
45.127.3.0/24 maxlen: 24
202.128.224.0/24 maxlen: 24
202.128.225.0/24 maxlen: 24
202.128.227.0/24 maxlen: 24
202.128.228.0/24 maxlen: 24
202.128.229.0/24 maxlen: 24
202.128.230.0/24 maxlen: 24
202.128.231.0/24 maxlen: 24
202.128.232.0/24 maxlen: 24
202.128.233.0/24 maxlen: 24
202.128.234.0/24 maxlen: 24
202.128.235.0/24 maxlen: 24
202.128.236.0/24 maxlen: 24
202.128.237.0/24 maxlen: 24
202.128.238.0/24 maxlen: 24
202.128.239.0/24 maxlen: 24
202.128.240.0/24 maxlen: 24
202.128.241.0/24 maxlen: 24
202.128.242.0/24 maxlen: 24
202.128.243.0/24 maxlen: 24
202.128.244.0/24 maxlen: 24
202.128.245.0/24 maxlen: 24
202.128.246.0/24 maxlen: 24
202.128.247.0/24 maxlen: 24
202.128.248.0/24 maxlen: 24
202.128.249.0/24 maxlen: 24
202.128.250.0/24 maxlen: 24
202.128.251.0/24 maxlen: 24
202.128.252.0/24 maxlen: 24
202.128.253.0/24 maxlen: 24
202.128.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 Nov 2023 03:26:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13271 (0x33d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37
Validity
Not Before: Nov 23 03:19:18 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=655ec4b6-cd57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:68:b4:5e:ce:a4:1f:71:c1:78:8f:48:5e:6f:
31:0a:07:e9:54:df:7f:a1:a3:f3:ec:69:04:ac:3c:
5a:18:ed:f7:79:a6:88:e0:d8:9d:24:38:6e:b7:5f:
df:e6:96:62:61:a8:6c:d4:82:43:d4:70:f6:0f:04:
86:12:41:bd:23:5a:bd:74:9b:10:32:c2:10:cb:1c:
ee:b2:76:97:71:bf:27:75:28:f1:42:da:3d:2b:1d:
a1:e8:76:18:26:c6:91:05:95:e1:dc:62:8c:25:38:
72:90:c3:f3:d6:ec:26:9b:e0:1e:b1:c0:da:73:4c:
c9:c7:ed:b1:ef:3b:91:15:74:0d:a8:7e:68:88:3b:
8c:37:41:13:1e:2c:45:a2:3f:db:32:a1:a3:f4:2a:
dc:a2:ef:61:60:7d:17:e9:66:4b:63:19:a6:f2:9f:
75:0f:27:df:a0:d2:eb:99:9a:85:3a:06:49:9c:3f:
82:86:78:a6:26:55:2c:f5:4d:b7:8e:77:c6:0a:b0:
82:d6:73:89:cd:2e:bd:0b:14:46:76:42:a2:2b:86:
ec:83:22:93:fa:cb:e1:bd:c3:d8:7c:d3:0a:03:df:
e3:c4:e9:30:6b:dc:5b:20:ec:fa:e3:7a:24:58:86:
d4:53:93:59:02:49:05:e7:b4:1f:31:56:c9:f0:fb:
1f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:27:C7:78:DF:BA:1B:D1:9D:A5:D7:31:27:35:15:B0:6E:F8:F9:F2
X509v3 Authority Key Identifier:
keyid:1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/401D13E889AA11EE970FD928C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.119.92.0/22
45.127.0.0/22
202.128.224.0/23
202.128.227.0-202.128.254.255
Signature Algorithm: sha256WithRSAEncryption
0f:22:1d:01:1e:8a:b6:ef:72:52:00:cf:f3:b5:0b:b1:d2:4a:
36:18:b4:c8:79:18:d1:47:72:45:d6:cf:67:69:25:f2:84:5e:
d5:31:73:50:84:74:b3:09:c1:83:0f:6c:e1:3b:14:36:7b:2f:
2f:e5:74:89:27:83:28:ea:21:2f:1b:ae:a0:7d:b4:90:08:53:
7e:53:70:a6:8e:50:66:85:80:fa:fd:c4:ff:4b:46:31:81:e4:
7f:ef:65:f0:b6:fd:8b:f2:74:04:df:42:88:dc:bf:54:46:da:
63:4b:1c:fc:f7:f0:c5:30:56:fc:fa:92:be:1f:ac:cf:47:24:
98:2c:3b:0b:8b:c7:c1:8e:e5:fe:44:e7:32:0d:e7:c0:37:73:
33:52:3f:9e:5f:ba:ba:b2:fb:44:de:56:07:59:da:da:06:4b:
2c:5e:16:58:6e:6f:fc:4d:82:37:a6:3c:1a:05:eb:a6:fe:f8:
c7:7e:e0:f6:4b:08:7f:59:9f:a3:0d:c7:21:96:98:b3:a3:29:
b8:64:36:df:d1:d2:58:8b:7e:ab:95:df:4b:33:32:22:91:61:
b6:9e:a5:94:a2:0d:ff:df:3a:7e:d0:2e:97:a1:04:af:6c:4f:
03:c2:42:ee:e8:bf:e5:78:7d:4b:5a:bc:b3:6c:dd:fc:d3:15:
eb:e3:64:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:26 2024 by rpki-client on console-ams.rpki-client.org