Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/A57A3F583D9811EE88B2694CC4F9AE02.roa
File: A57A3F583D9811EE88B2694CC4F9AE02.roa (raw, json)
Hash identifier: XIf2a6LWMipSjGxPkoMhvXpEkwM46P8G35L8nEzJ4CI=
Subject key identifier: E1:A4:AC:2F:4B:18:86:96:F5:8A:06:BA:A8:E0:C7:3D:26:E7:15:3B
Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88
Certificate serial: 0722
Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/A57A3F583D9811EE88B2694CC4F9AE02.roa
Signing time: Fri 18 Aug 2023 07:27:11 +0000
ROA not before: Fri 18 Aug 2023 07:27:11 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 10122
IP address blocks: 169.136.68.0/24 maxlen: 24
169.136.71.0/24 maxlen: 24
169.136.73.0/24 maxlen: 24
169.136.74.0/24 maxlen: 24
169.136.75.0/24 maxlen: 24
169.136.76.0/24 maxlen: 24
169.136.77.0/24 maxlen: 24
169.136.78.0/24 maxlen: 24
169.136.79.0/24 maxlen: 24
169.136.80.0/24 maxlen: 24
169.136.81.0/24 maxlen: 24
169.136.82.0/24 maxlen: 24
169.136.83.0/24 maxlen: 24
169.136.84.0/24 maxlen: 24
169.136.85.0/24 maxlen: 24
169.136.86.0/24 maxlen: 24
169.136.87.0/24 maxlen: 24
169.136.88.0/23 maxlen: 23
169.136.88.0/24 maxlen: 24
169.136.89.0/24 maxlen: 24
169.136.90.0/24 maxlen: 24
169.136.91.0/24 maxlen: 24
169.136.92.0/24 maxlen: 24
169.136.93.0/24 maxlen: 24
169.136.94.0/24 maxlen: 24
169.136.95.0/24 maxlen: 24
169.136.96.0/24 maxlen: 24
169.136.97.0/24 maxlen: 24
169.136.98.0/24 maxlen: 24
169.136.99.0/24 maxlen: 24
169.136.100.0/24 maxlen: 24
169.136.101.0/24 maxlen: 24
169.136.102.0/24 maxlen: 24
169.136.103.0/24 maxlen: 24
169.136.104.0/24 maxlen: 24
169.136.105.0/24 maxlen: 24
169.136.106.0/24 maxlen: 24
169.136.107.0/24 maxlen: 24
169.136.108.0/24 maxlen: 24
169.136.110.0/24 maxlen: 24
169.136.111.0/24 maxlen: 24
169.136.112.0/24 maxlen: 24
169.136.113.0/24 maxlen: 24
169.136.114.0/24 maxlen: 24
169.136.115.0/24 maxlen: 24
169.136.116.0/24 maxlen: 24
169.136.117.0/24 maxlen: 24
169.136.118.0/24 maxlen: 24
169.136.119.0/24 maxlen: 24
169.136.121.0/24 maxlen: 24
169.136.123.0/24 maxlen: 24
169.136.124.0/24 maxlen: 24
169.136.125.0/24 maxlen: 24
169.136.126.0/24 maxlen: 24
169.136.127.0/24 maxlen: 24
169.136.128.0/24 maxlen: 24
169.136.130.0/24 maxlen: 24
169.136.131.0/24 maxlen: 24
169.136.136.0/24 maxlen: 24
169.136.140.0/24 maxlen: 24
169.136.144.0/24 maxlen: 24
169.136.155.0/24 maxlen: 24
169.136.156.0/24 maxlen: 24
169.136.157.0/24 maxlen: 24
169.136.158.0/24 maxlen: 24
169.136.159.0/24 maxlen: 24
169.136.160.0/24 maxlen: 24
169.136.161.0/24 maxlen: 24
169.136.162.0/24 maxlen: 24
169.136.163.0/24 maxlen: 24
169.136.164.0/24 maxlen: 24
169.136.165.0/24 maxlen: 24
169.136.166.0/24 maxlen: 24
169.136.167.0/24 maxlen: 24
169.136.169.0/24 maxlen: 24
169.136.170.0/24 maxlen: 24
169.136.171.0/24 maxlen: 24
169.136.172.0/24 maxlen: 24
169.136.173.0/24 maxlen: 24
169.136.174.0/24 maxlen: 24
169.136.175.0/24 maxlen: 24
169.136.176.0/24 maxlen: 24
169.136.177.0/24 maxlen: 24
169.136.178.0/24 maxlen: 24
169.136.179.0/24 maxlen: 24
169.136.180.0/24 maxlen: 24
169.136.181.0/24 maxlen: 24
169.136.182.0/24 maxlen: 24
169.136.183.0/24 maxlen: 24
169.136.184.0/24 maxlen: 24
169.136.185.0/24 maxlen: 24
169.136.186.0/24 maxlen: 24
169.136.187.0/24 maxlen: 24
169.136.188.0/24 maxlen: 24
169.136.189.0/24 maxlen: 24
169.136.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Oct 2023 09:56:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1826 (0x722)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88
Validity
Not Before: Aug 18 07:27:11 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=64df1d4f-887c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:47:fb:30:e3:61:62:1c:ea:2b:e0:72:93:31:
8a:f0:4f:38:b4:6b:bf:61:2f:67:20:a8:0d:12:18:
bf:e8:f8:0b:3e:d9:5a:5f:f3:ee:5c:3c:01:2f:35:
14:0f:64:c1:ae:b8:ba:26:2a:f6:d1:39:89:35:27:
63:9d:9a:39:8c:15:da:3e:53:00:bd:1b:44:60:c2:
c4:8b:5b:55:e5:d0:dc:21:e9:19:be:9d:86:c6:d2:
0e:f2:7c:d1:e7:e9:e3:66:b3:e0:6d:0c:98:6c:ba:
b9:28:68:42:96:28:fc:23:0c:2a:a8:e1:8c:c8:22:
b4:29:15:73:d9:c0:d7:84:21:42:0d:4e:80:e5:aa:
27:ed:c1:64:03:17:ae:ff:98:19:32:07:d5:3e:b8:
72:3b:8b:d5:fa:d2:ba:13:e8:ef:28:ca:24:72:35:
23:63:85:74:1d:8b:ca:1b:eb:a8:79:a5:25:b3:71:
14:01:50:ce:a5:69:ac:2a:ef:d9:d9:c6:f4:e4:76:
01:5f:d8:50:c8:e6:b5:3c:3d:a9:22:07:72:0a:cb:
4e:67:bc:df:b4:06:df:87:46:34:8c:2c:a6:ea:f9:
83:a5:e9:89:19:41:a4:e8:82:92:6d:3d:bb:62:4f:
f6:a1:71:89:ee:a9:56:17:37:f5:91:8b:73:e2:d9:
45:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A4:AC:2F:4B:18:86:96:F5:8A:06:BA:A8:E0:C7:3D:26:E7:15:3B
X509v3 Authority Key Identifier:
keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/A57A3F583D9811EE88B2694CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.136.68.0/24
169.136.71.0/24
169.136.73.0-169.136.108.255
169.136.110.0-169.136.119.255
169.136.121.0/24
169.136.123.0-169.136.128.255
169.136.130.0/23
169.136.136.0/24
169.136.140.0/24
169.136.144.0/24
169.136.155.0-169.136.167.255
169.136.169.0-169.136.190.255
Signature Algorithm: sha256WithRSAEncryption
0f:e2:ce:40:f7:4c:5e:e0:4e:8e:2d:61:d0:71:7d:9b:1a:2b:
3b:61:78:a9:26:ff:5e:75:51:13:cb:2f:6e:15:24:ed:fc:05:
6d:cd:96:0a:f0:2e:e2:d2:74:a9:fb:55:ad:a5:96:a3:17:bc:
b8:05:01:09:c8:28:b0:a0:4c:27:ec:f6:b8:f4:55:91:73:90:
13:b1:e9:c3:b0:04:0c:cb:64:c7:87:aa:ca:e3:85:16:26:84:
85:4d:df:5a:d1:6c:70:3d:39:b5:4c:c1:4c:5e:01:9e:cb:f3:
ab:cf:97:c5:5e:04:07:43:c5:18:0f:65:6c:61:7d:32:30:2c:
87:aa:29:80:58:bf:73:d0:1d:1c:fe:c2:4a:2c:36:34:ac:a7:
0a:24:9e:2a:77:88:09:98:b4:1c:46:86:80:19:d0:92:86:16:
79:fc:32:df:b0:22:01:69:72:d4:76:1e:1d:76:a8:d7:3d:a3:
4b:47:ba:d0:2f:9f:65:0d:a7:59:f4:9a:b7:12:a6:71:cc:f0:
00:58:b9:dc:01:2b:27:78:4e:55:e8:be:c2:c1:7c:c2:34:a7:
a4:d5:90:f1:68:21:5a:4f:2e:3e:a7:d8:9e:69:99:61:81:84:
d2:b1:d3:5a:87:e6:2f:3c:4b:0f:c8:91:ba:cd:22:6f:4e:fd:
e1:1a:34:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:43 2024 by rpki-client on console-fra.rpki-client.org