Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/59C615C2F19411EEBEB7B22FC4F9AE02.roa
File: 59C615C2F19411EEBEB7B22FC4F9AE02.roa (raw, json)
Hash identifier: 3QGktttuohE8QUVRYhnEnZoLenLsala+0+EMJWA1fIM=
Subject key identifier: 38:19:95:73:C3:76:CA:20:56:52:0F:D6:EC:64:47:26:BE:4E:0E:0B
Certificate issuer: /CN=A91DF93A/serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260
Certificate serial: 07EC
Authority key identifier: 07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/59C615C2F19411EEBEB7B22FC4F9AE02.roa
Signing time: Tue 28 May 2024 23:03:10 +0000
ROA not before: Tue 28 May 2024 23:03:10 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 10122
IP address blocks: 103.139.72.0/24 maxlen: 24
103.139.73.0/24 maxlen: 24
164.90.64.0/24 maxlen: 24
164.90.65.0/24 maxlen: 24
164.90.66.0/24 maxlen: 24
164.90.67.0/24 maxlen: 24
164.90.68.0/24 maxlen: 24
164.90.69.0/24 maxlen: 24
164.90.71.0/24 maxlen: 24
164.90.72.0/24 maxlen: 24
164.90.73.0/24 maxlen: 24
164.90.74.0/24 maxlen: 24
164.90.76.0/24 maxlen: 24
164.90.77.0/24 maxlen: 24
164.90.78.0/24 maxlen: 24
164.90.79.0/24 maxlen: 24
164.90.80.0/24 maxlen: 24
164.90.81.0/24 maxlen: 24
164.90.82.0/24 maxlen: 24
164.90.83.0/24 maxlen: 24
164.90.84.0/24 maxlen: 24
164.90.85.0/24 maxlen: 24
164.90.86.0/24 maxlen: 24
164.90.87.0/24 maxlen: 24
164.90.88.0/24 maxlen: 24
164.90.89.0/24 maxlen: 24
164.90.90.0/24 maxlen: 24
164.90.91.0/24 maxlen: 24
164.90.92.0/24 maxlen: 24
164.90.93.0/24 maxlen: 24
164.90.94.0/24 maxlen: 24
164.90.95.0/24 maxlen: 24
164.90.96.0/24 maxlen: 24
164.90.97.0/24 maxlen: 24
164.90.98.0/24 maxlen: 24
164.90.100.0/24 maxlen: 24
164.90.101.0/24 maxlen: 24
164.90.102.0/24 maxlen: 24
164.90.103.0/24 maxlen: 24
164.90.104.0/24 maxlen: 24
164.90.105.0/24 maxlen: 24
164.90.106.0/24 maxlen: 24
164.90.107.0/24 maxlen: 24
164.90.108.0/24 maxlen: 24
164.90.109.0/24 maxlen: 24
164.90.110.0/24 maxlen: 24
164.90.111.0/24 maxlen: 24
164.90.113.0/24 maxlen: 24
164.90.114.0/24 maxlen: 24
164.90.115.0/24 maxlen: 24
164.90.116.0/24 maxlen: 24
164.90.117.0/24 maxlen: 24
164.90.121.0/24 maxlen: 24
164.90.122.0/24 maxlen: 24
164.90.125.0/24 maxlen: 24
164.90.126.0/24 maxlen: 24
164.90.127.0/24 maxlen: 24
202.63.32.0/24 maxlen: 24
202.63.33.0/24 maxlen: 24
202.63.34.0/24 maxlen: 24
202.63.35.0/24 maxlen: 24
202.63.36.0/24 maxlen: 24
202.63.37.0/24 maxlen: 24
202.63.38.0/24 maxlen: 24
202.63.39.0/24 maxlen: 24
202.63.40.0/24 maxlen: 24
202.63.41.0/24 maxlen: 24
202.63.42.0/24 maxlen: 24
202.63.43.0/24 maxlen: 24
202.63.44.0/24 maxlen: 24
202.63.45.0/24 maxlen: 24
202.63.46.0/24 maxlen: 24
202.63.47.0/24 maxlen: 24
202.63.48.0/24 maxlen: 24
202.63.49.0/24 maxlen: 24
202.63.50.0/24 maxlen: 24
202.63.51.0/24 maxlen: 24
202.63.52.0/24 maxlen: 24
202.63.53.0/24 maxlen: 24
202.63.54.0/24 maxlen: 24
202.63.55.0/24 maxlen: 24
202.63.56.0/24 maxlen: 24
202.63.57.0/24 maxlen: 24
202.63.58.0/24 maxlen: 24
202.63.59.0/24 maxlen: 24
202.63.60.0/24 maxlen: 24
202.63.61.0/24 maxlen: 24
202.63.62.0/24 maxlen: 24
202.63.63.0/24 maxlen: 24
202.168.96.0/24 maxlen: 24
202.168.97.0/24 maxlen: 24
202.168.99.0/24 maxlen: 24
202.168.100.0/24 maxlen: 24
202.168.101.0/24 maxlen: 24
202.168.102.0/24 maxlen: 24
202.168.103.0/24 maxlen: 24
202.168.104.0/24 maxlen: 24
202.168.105.0/24 maxlen: 24
202.168.106.0/24 maxlen: 24
202.168.107.0/24 maxlen: 24
202.168.108.0/24 maxlen: 24
202.168.109.0/24 maxlen: 24
202.168.110.0/24 maxlen: 24
202.168.112.0/24 maxlen: 24
202.168.113.0/24 maxlen: 24
202.168.114.0/24 maxlen: 24
202.168.115.0/24 maxlen: 24
202.168.116.0/24 maxlen: 24
202.168.117.0/24 maxlen: 24
202.168.118.0/24 maxlen: 24
202.168.119.0/24 maxlen: 24
202.168.120.0/24 maxlen: 24
202.168.121.0/24 maxlen: 24
202.168.122.0/24 maxlen: 24
202.168.123.0/24 maxlen: 24
202.168.124.0/23 maxlen: 23
202.168.124.0/24 maxlen: 24
202.168.125.0/24 maxlen: 24
202.168.126.0/24 maxlen: 24
202.168.127.0/24 maxlen: 24
2404:efc0:155::/48 maxlen: 48
2404:efc0:235::/48 maxlen: 48
2404:efc0:236::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 31 Jul 2024 07:46:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2028 (0x7ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DF93A/serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260
Validity
Not Before: May 28 23:03:10 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=665662ae-b103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3d:04:dd:c3:04:d1:af:51:b2:20:65:40:82:
6f:59:68:28:40:19:d1:e2:07:01:71:02:a1:64:c9:
90:88:ec:99:3b:67:71:b6:a5:10:da:a0:64:0d:40:
7c:4b:a8:d4:35:af:75:1b:21:0e:32:9a:f8:86:4d:
95:cb:a8:d2:9a:3e:9c:3f:a4:ca:1f:a6:50:ca:29:
48:c9:56:91:72:42:15:93:72:aa:ea:30:24:23:70:
eb:10:03:f4:bb:2f:53:fa:77:c4:61:19:51:49:82:
0a:47:75:c1:0c:c8:26:9c:19:03:c8:ea:e4:d5:0c:
f7:c2:e7:af:5f:a0:a5:51:28:30:20:72:09:7d:dd:
b8:67:52:8b:ed:5d:bc:6a:e2:04:ab:39:52:f4:c4:
08:ec:ae:2a:50:0b:ce:3b:fb:ef:84:54:22:1f:07:
60:3e:3e:85:30:a2:05:e3:86:fe:8a:10:c2:64:0d:
d6:06:d2:8d:09:5b:d7:9d:29:6f:52:2e:0c:ba:6d:
db:a2:1c:63:ff:4f:b6:73:ed:89:74:7a:8f:02:5f:
cb:b0:7b:65:0d:8b:20:be:84:94:a9:4d:8d:d5:2f:
88:f9:08:25:e2:8d:70:f7:67:6b:39:1a:b9:c2:90:
3a:69:1c:0d:d5:32:99:ea:1b:26:26:67:fa:df:8c:
b5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:19:95:73:C3:76:CA:20:56:52:0F:D6:EC:64:47:26:BE:4E:0E:0B
X509v3 Authority Key Identifier:
keyid:07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/59C615C2F19411EEBEB7B22FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.139.72.0/23
164.90.64.0-164.90.69.255
164.90.71.0-164.90.74.255
164.90.76.0-164.90.98.255
164.90.100.0-164.90.111.255
164.90.113.0-164.90.117.255
164.90.121.0-164.90.122.255
164.90.125.0-164.90.127.255
202.63.32.0/19
202.168.96.0/23
202.168.99.0-202.168.110.255
202.168.112.0/20
IPv6:
2404:efc0:155::/48
2404:efc0:235::-2404:efc0:236:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
bf:fe:86:eb:c0:d0:45:68:58:bb:94:5b:fd:13:53:aa:43:c7:
72:3d:26:cc:cd:6e:74:c2:23:47:47:1d:9c:a8:48:de:2a:0c:
68:6b:60:20:77:d0:bc:d3:1a:9b:ce:27:01:ce:48:a9:d5:d7:
3a:eb:68:41:f0:3e:09:a5:b9:13:90:aa:ba:83:4f:69:f5:6a:
23:41:1d:e0:b2:dd:1c:f2:04:3a:7c:41:70:09:27:e2:ca:5c:
ab:f0:65:dd:f7:27:60:cc:6e:2d:21:78:ce:d5:8c:a4:0d:1a:
95:a3:8f:1f:ab:f8:53:69:cb:2f:72:04:1f:32:e8:5d:48:f4:
1b:64:1c:c3:72:49:63:32:11:97:b8:5b:52:ff:99:57:7f:36:
05:fa:44:d5:08:54:c9:e5:f0:5a:0b:f3:23:f2:8c:2e:4c:1f:
a2:c9:b8:80:63:d2:9f:61:a2:91:41:29:40:ce:99:f8:f2:f1:
41:7e:ae:36:75:6b:59:cc:21:7b:ea:4d:0e:09:96:f8:ae:83:
2b:bd:e7:72:00:6f:2f:82:ea:83:c7:42:d4:ab:63:73:c5:d5:
fe:18:0d:b0:1d:55:5b:4d:a9:ca:8d:31:ac:74:c2:28:cf:79:
b4:90:70:e9:c6:25:fe:b1:a5:30:cd:0a:d0:c1:30:74:1e:e1:
2d:5c:7e:1b
-----BEGIN CERTIFICATE-----
MIIGHTCCBQWgAwIBAgICB+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REY5M0ExMTAvBgNVBAUTKDA3QTFDMDg1NDVDQUNDNjVFMDg4MkQ0OUU5RjJGOENG
RDJCRTgyNjAwHhcNMjQwNTI4MjMwMzEwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjU2NjJhZS1iMTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqT0E3cME0a9RsiBlQIJvWWgoQBnR4gcBcQKhZMmQiOyZO2dxtqUQ2qBkDUB8
S6jUNa91GyEOMpr4hk2Vy6jSmj6cP6TKH6ZQyilIyVaRckIVk3Kq6jAkI3DrEAP0
uy9T+nfEYRlRSYIKR3XBDMgmnBkDyOrk1Qz3wuevX6ClUSgwIHIJfd24Z1KL7V28
auIEqzlS9MQI7K4qUAvOO/vvhFQiHwdgPj6FMKIF44b+ihDCZA3WBtKNCVvXnSlv
Ui4Mum3bohxj/0+2c+2JdHqPAl/LsHtlDYsgvoSUqU2N1S+I+Qgl4o1w92drORq5
wpA6aRwN1TKZ6hsmJmf634y1CQIDAQABo4IDQTCCAz0wHQYDVR0OBBYEFDgZlXPD
dsogVlIP1uxkRya+Tg4LMB8GA1UdIwQYMBaAFAehwIVFysxl4IgtSeny+M/SvoJg
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GRjUxRTU5RUU1
RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9CNkhBaFVYS3pHWGdpQzFKNmZMNHo5Sy1n
bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0I2SEFoVVhLekdYZ2lDMUo2Zkw0ejlLLWdtQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
REY5M0EvRkY1MUU1OUVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvNTlDNjE1QzJG
MTk0MTFFRUJFQjdCMjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgcoGCCsGAQUFBwEHAQH/
BIG6MIG3MIGPBAIAATCBiAMEAWeLSDAMAwQGpFpAAwQBpFpEMAwDBACkWkcDBACk
WkowDAMEAqRaTAMEAKRaYjAMAwQCpFpkAwQEpFpgMAwDBACkWnEDBAGkWnQwDAME
AKRaeQMEAKRaejAMAwQApFp9AwQHpFoAAwQFyj8gAwQByqhgMAwDBADKqGMDBADK
qG4DBATKqHAwIwQCAAIwHQMHACQE78ABVTASAwcAJATvwAI1AwcAJATvwAI2MA0G
CSqGSIb3DQEBCwUAA4IBAQC//obrwNBFaFi7lFv9E1OqQ8dyPSbMzW50wiNHRx2c
qEjeKgxoa2Agd9C80xqbzicBzkip1dc662hB8D4JpbkTkKq6g09p9WojQR3gst0c
8gQ6fEFwCSfiylyr8GXd9ydgzG4tIXjO1YykDRqVo48fq/hTacsvcgQfMuhdSPQb
ZBzDckljMhGXuFtS/5lXfzYF+kTVCFTJ5fBaC/Mj8owuTB+iybiAY9KfYaKRQSlA
zpn48vFBfq42dWtZzCF76k0OCZb4roMrvedyAG8vguqDx0LUq2NzxdX+GA2wHVVb
TanKjTGsdMIoz3m0kHDpxiX+saUwzQrQwTB0HuEtXH4b
-----END CERTIFICATE-----
Generated at Wed Jul 31 10:33:50 2024 by rpki-client on console-fra.rpki-client.org