Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/4541F37888E911EEB007942FC4F9AE02.roa
File: 4541F37888E911EEB007942FC4F9AE02.roa (raw, json)
Hash identifier: J3+kzW1rywTc/mBIyyfJnfICIaKxCwm25bJi5PBUCo8=
Subject key identifier: 6D:8A:68:E5:21:86:CF:6E:70:AB:63:11:A0:6B:28:C4:FD:07:99:38
Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Certificate serial: 17F2
Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/4541F37888E911EEB007942FC4F9AE02.roa
Signing time: Fri 28 Jun 2024 04:28:32 +0000
ROA not before: Fri 28 Jun 2024 04:28:32 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 4826
IP address blocks: 14.137.106.0/24 maxlen: 24
27.106.200.0/22 maxlen: 22
43.241.188.0/22 maxlen: 22
43.252.252.0/22 maxlen: 22
49.255.0.0/16 maxlen: 16
49.255.233.0/24 maxlen: 24
49.255.249.0/24 maxlen: 24
49.255.255.0/24 maxlen: 24
103.37.120.0/24 maxlen: 24
103.233.148.0/22 maxlen: 22
103.255.16.0/22 maxlen: 22
110.5.116.0/22 maxlen: 22
112.213.192.0/19 maxlen: 19
112.213.224.0/19 maxlen: 19
113.29.240.0/22 maxlen: 22
113.29.243.0/24 maxlen: 24
114.31.192.0/20 maxlen: 20
116.212.192.0/18 maxlen: 18
116.212.204.0/24 maxlen: 24
116.212.230.0/23 maxlen: 24
116.212.253.0/24 maxlen: 24
119.161.64.0/20 maxlen: 20
119.161.80.0/20 maxlen: 20
119.161.80.0/22 maxlen: 22
119.161.83.0/24 maxlen: 24
119.161.84.0/24 maxlen: 24
119.161.85.0/24 maxlen: 24
119.161.86.0/23 maxlen: 23
119.161.88.0/23 maxlen: 23
119.161.90.0/24 maxlen: 24
119.161.91.0/24 maxlen: 24
119.161.92.0/24 maxlen: 24
119.161.93.0/24 maxlen: 24
119.161.94.0/24 maxlen: 24
119.161.95.0/24 maxlen: 24
121.54.128.0/19 maxlen: 19
121.54.128.0/20 maxlen: 20
121.54.136.0/24 maxlen: 24
121.54.145.0/24 maxlen: 24
121.79.0.0/17 maxlen: 17
123.103.192.0/19 maxlen: 19
124.254.64.0/18 maxlen: 18
124.254.64.0/24 maxlen: 24
124.254.95.0/24 maxlen: 24
124.254.96.0/24 maxlen: 24
175.45.64.0/18 maxlen: 18
175.45.78.0/24 maxlen: 24
175.45.82.0/24 maxlen: 24
175.45.83.0/24 maxlen: 24
175.45.85.0/24 maxlen: 24
175.45.92.0/24 maxlen: 24
175.45.94.0/23 maxlen: 23
175.45.99.0/24 maxlen: 24
175.45.100.0/24 maxlen: 24
175.45.101.0/24 maxlen: 24
175.45.105.0/24 maxlen: 24
175.45.111.0/24 maxlen: 24
175.45.125.0/24 maxlen: 24
180.148.64.0/19 maxlen: 19
180.148.76.0/24 maxlen: 24
180.148.77.0/24 maxlen: 24
180.148.83.0/24 maxlen: 24
180.148.84.0/24 maxlen: 24
180.148.95.0/24 maxlen: 24
202.62.138.0/24 maxlen: 24
202.62.139.0/24 maxlen: 24
202.62.141.0/24 maxlen: 24
202.62.142.0/24 maxlen: 24
202.62.147.0/24 maxlen: 24
202.62.152.0/24 maxlen: 24
202.62.153.0/24 maxlen: 24
202.62.154.0/24 maxlen: 24
202.62.155.0/24 maxlen: 24
202.80.176.0/20 maxlen: 20
202.89.160.0/19 maxlen: 19
202.137.96.0/20 maxlen: 20
202.137.192.0/21 maxlen: 21
202.189.64.0/20 maxlen: 20
202.189.72.0/24 maxlen: 24
202.189.73.0/24 maxlen: 24
203.12.251.0/24 maxlen: 24
203.18.212.0/23 maxlen: 23
203.22.206.0/24 maxlen: 24
203.26.237.0/24 maxlen: 24
203.28.186.0/24 maxlen: 24
203.29.177.0/24 maxlen: 24
203.55.11.0/24 maxlen: 24
203.55.250.0/24 maxlen: 24
203.89.64.0/19 maxlen: 19
203.89.80.0/24 maxlen: 24
203.89.92.0/24 maxlen: 24
203.92.28.0/22 maxlen: 22
203.129.128.0/19 maxlen: 19
203.153.224.0/19 maxlen: 19
203.153.226.0/24 maxlen: 24
203.161.64.0/18 maxlen: 18
203.188.128.0/19 maxlen: 19
210.50.198.0/24 maxlen: 24
211.26.193.0/24 maxlen: 24
218.100.80.0/22 maxlen: 22
223.27.96.0/21 maxlen: 21
2402:7800::/32 maxlen: 32
2402:7800:ff00::/40 maxlen: 40
2402:7800:ff00::/48 maxlen: 48
2402:7800:ff01::/48 maxlen: 48
2402:7800:ff20::/48 maxlen: 48
2402:7800:ff40::/44 maxlen: 44
2402:7800:ffe0::/48 maxlen: 48
2403:d600::/32 maxlen: 32
2403:fc00:300::/40 maxlen: 40
2404:b000::/32 maxlen: 32
2404:bc00::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:07:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6130 (0x17f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Validity
Not Before: Jun 28 04:28:32 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=667e3bef-fcc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:51:32:7f:1d:7a:22:d4:cb:1c:23:2a:a1:57:
6c:15:ff:e3:ea:63:6e:d2:5c:e1:72:57:79:92:7f:
b3:dd:ef:b1:53:ed:64:fc:1f:98:a5:26:2f:9e:ac:
68:0f:fb:a6:5e:b1:40:b5:cc:6f:fe:55:1a:e5:84:
48:a7:9b:b9:79:51:36:99:d9:fe:b4:66:73:f9:0e:
de:65:54:88:3b:97:c3:34:26:6c:07:41:26:d8:52:
88:b5:3c:81:97:3f:e9:30:92:ab:82:fa:04:34:7f:
24:22:3e:16:7c:68:9f:24:97:cc:e1:32:bc:0e:52:
47:88:bf:f7:a7:4c:73:94:6f:f9:4b:76:e6:af:e7:
04:ad:e6:e0:a7:ad:4f:df:8d:26:b6:5b:2a:72:71:
70:da:33:31:33:02:ce:38:ae:93:98:05:f8:0b:10:
ba:9f:25:11:5a:33:3a:bd:68:9a:16:2a:d0:e8:ff:
c4:d5:42:a0:57:38:50:86:a4:01:fc:c4:a1:b2:57:
57:dc:e1:c5:3d:27:c4:2b:3e:1b:ee:5a:6b:e5:21:
1a:52:2c:7a:cd:7a:35:fa:9e:3e:48:e0:c8:a1:77:
27:e9:39:d3:33:50:55:e5:39:6a:da:ac:5d:70:5a:
8b:b6:0f:63:43:e4:a0:e6:3d:a8:16:da:af:75:42:
46:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:8A:68:E5:21:86:CF:6E:70:AB:63:11:A0:6B:28:C4:FD:07:99:38
X509v3 Authority Key Identifier:
keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/4541F37888E911EEB007942FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.137.106.0/24
27.106.200.0/22
43.241.188.0/22
43.252.252.0/22
49.255.0.0/16
103.37.120.0/24
103.233.148.0/22
103.255.16.0/22
110.5.116.0/22
112.213.192.0/18
113.29.240.0/22
114.31.192.0/20
116.212.192.0/18
119.161.64.0/19
121.54.128.0/19
121.79.0.0/17
123.103.192.0/19
124.254.64.0/18
175.45.64.0/18
180.148.64.0/19
202.62.138.0/23
202.62.141.0-202.62.142.255
202.62.147.0/24
202.62.152.0/22
202.80.176.0/20
202.89.160.0/19
202.137.96.0/20
202.137.192.0/21
202.189.64.0/20
203.12.251.0/24
203.18.212.0/23
203.22.206.0/24
203.26.237.0/24
203.28.186.0/24
203.29.177.0/24
203.55.11.0/24
203.55.250.0/24
203.89.64.0/19
203.92.28.0/22
203.129.128.0/19
203.153.224.0/19
203.161.64.0/18
203.188.128.0/19
210.50.198.0/24
211.26.193.0/24
218.100.80.0/22
223.27.96.0/21
IPv6:
2402:7800::/32
2403:d600::/32
2403:fc00:300::/40
2404:b000::/32
2404:bc00::/32
Signature Algorithm: sha256WithRSAEncryption
45:82:74:87:b5:72:00:f7:7f:be:24:c0:54:6a:29:af:71:fb:
81:aa:2b:3a:3f:3d:0e:23:8a:1a:ab:e7:90:31:19:36:8f:8f:
c4:67:d5:88:1a:c9:3a:8b:81:fd:81:b3:cc:30:27:17:27:e8:
78:30:a3:b6:2f:be:0b:2f:b3:4b:3c:93:4a:63:8d:a6:e7:ed:
1b:41:13:1a:fe:21:f5:53:0e:f1:71:cd:e9:7a:f6:69:58:ce:
47:26:fc:47:24:85:04:d8:2a:ca:32:ae:8b:18:02:8c:d2:f6:
c1:0c:66:db:e6:3e:80:4b:c6:1d:0c:88:b8:fc:b0:e9:6d:55:
49:b5:bd:f3:6b:e3:db:40:6e:f2:a3:29:67:01:2b:bf:6c:f2:
aa:7a:26:38:2b:50:33:5e:ec:60:c4:ea:05:bc:49:5e:68:a0:
cb:9b:d5:7a:e5:17:a5:56:29:95:49:00:88:83:bc:63:fe:00:
e3:1c:48:a4:e5:4b:f7:d3:83:bc:a4:4d:8f:27:e0:fd:4b:c6:
60:d1:75:18:8a:bc:95:8d:55:11:d4:d7:4b:1f:05:cd:f8:97:
b5:a2:11:6e:19:00:dd:e0:10:a3:f0:03:4c:94:57:dd:60:0f:
ad:cf:c3:fe:0c:81:5a:ab:d7:a7:92:93:dc:4c:45:b2:6b:19:
e8:28:9e:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 03:11:27 2024 by rpki-client on console-fra.rpki-client.org