Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/96AC19C2367D11EFA3653911C4F9AE02.roa
File: 96AC19C2367D11EFA3653911C4F9AE02.roa (raw, json)
Hash identifier: o93HB3iUSOxXzDqHjoP8KsQWx4qRI2Fwts+VMyQ05xc=
Subject key identifier: 71:DB:94:79:95:7A:D1:E9:D5:A9:CC:A4:0D:F3:5A:87:66:3C:5C:1B
Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Certificate serial: 1809
Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/96AC19C2367D11EFA3653911C4F9AE02.roa
Signing time: Thu 25 Jul 2024 22:53:04 +0000
ROA not before: Thu 25 Jul 2024 22:53:04 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 4826
IP address blocks: 14.137.106.0/24 maxlen: 24
27.106.200.0/22 maxlen: 22
43.241.188.0/22 maxlen: 22
43.252.252.0/22 maxlen: 22
49.255.0.0/16 maxlen: 16
49.255.233.0/24 maxlen: 24
49.255.249.0/24 maxlen: 24
49.255.255.0/24 maxlen: 24
103.37.120.0/24 maxlen: 24
103.233.148.0/22 maxlen: 22
103.255.16.0/22 maxlen: 22
110.5.116.0/22 maxlen: 22
112.213.192.0/19 maxlen: 19
112.213.224.0/19 maxlen: 19
113.29.240.0/22 maxlen: 22
113.29.243.0/24 maxlen: 24
114.31.192.0/20 maxlen: 20
116.212.192.0/18 maxlen: 18
116.212.204.0/24 maxlen: 24
116.212.230.0/23 maxlen: 24
116.212.253.0/24 maxlen: 24
119.161.64.0/20 maxlen: 20
119.161.80.0/20 maxlen: 20
121.54.128.0/19 maxlen: 19
121.54.128.0/20 maxlen: 20
121.54.136.0/24 maxlen: 24
121.54.145.0/24 maxlen: 24
121.79.0.0/17 maxlen: 17
123.103.192.0/19 maxlen: 19
124.254.64.0/18 maxlen: 18
124.254.64.0/24 maxlen: 24
124.254.95.0/24 maxlen: 24
124.254.96.0/24 maxlen: 24
175.45.64.0/18 maxlen: 18
175.45.78.0/24 maxlen: 24
175.45.82.0/24 maxlen: 24
175.45.83.0/24 maxlen: 24
175.45.85.0/24 maxlen: 24
175.45.92.0/24 maxlen: 24
175.45.94.0/23 maxlen: 23
175.45.99.0/24 maxlen: 24
175.45.100.0/24 maxlen: 24
175.45.101.0/24 maxlen: 24
175.45.105.0/24 maxlen: 24
175.45.111.0/24 maxlen: 24
175.45.125.0/24 maxlen: 24
180.148.64.0/19 maxlen: 19
180.148.76.0/24 maxlen: 24
180.148.77.0/24 maxlen: 24
180.148.83.0/24 maxlen: 24
180.148.84.0/24 maxlen: 24
180.148.95.0/24 maxlen: 24
202.62.138.0/24 maxlen: 24
202.62.139.0/24 maxlen: 24
202.62.141.0/24 maxlen: 24
202.62.142.0/24 maxlen: 24
202.62.147.0/24 maxlen: 24
202.62.152.0/24 maxlen: 24
202.62.153.0/24 maxlen: 24
202.62.154.0/24 maxlen: 24
202.62.155.0/24 maxlen: 24
202.80.176.0/20 maxlen: 20
202.89.160.0/19 maxlen: 19
202.137.96.0/20 maxlen: 20
202.137.192.0/21 maxlen: 21
202.174.224.0/19 maxlen: 19
202.189.64.0/20 maxlen: 20
202.189.72.0/24 maxlen: 24
202.189.73.0/24 maxlen: 24
203.12.251.0/24 maxlen: 24
203.18.212.0/23 maxlen: 23
203.22.206.0/24 maxlen: 24
203.26.237.0/24 maxlen: 24
203.28.186.0/24 maxlen: 24
203.29.177.0/24 maxlen: 24
203.55.11.0/24 maxlen: 24
203.55.250.0/24 maxlen: 24
203.89.64.0/19 maxlen: 19
203.89.80.0/24 maxlen: 24
203.89.92.0/24 maxlen: 24
203.92.28.0/22 maxlen: 22
203.129.128.0/19 maxlen: 19
203.153.224.0/19 maxlen: 19
203.153.226.0/24 maxlen: 24
203.161.64.0/18 maxlen: 18
203.188.128.0/19 maxlen: 19
210.50.198.0/24 maxlen: 24
211.26.193.0/24 maxlen: 24
218.100.80.0/22 maxlen: 22
223.27.96.0/21 maxlen: 21
2402:7800::/32 maxlen: 32
2402:7800:ff00::/40 maxlen: 40
2402:7800:ff00::/48 maxlen: 48
2402:7800:ff01::/48 maxlen: 48
2402:7800:ff20::/48 maxlen: 48
2402:7800:ff40::/44 maxlen: 44
2402:7800:ffe0::/48 maxlen: 48
2403:d600::/32 maxlen: 32
2403:fc00:300::/40 maxlen: 40
2404:b000::/32 maxlen: 32
2404:bc00::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 27 Sep 2024 21:47:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6153 (0x1809)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Validity
Not Before: Jul 25 22:53:04 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=66a2d750-3a65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:51:4e:a8:6c:01:15:5c:31:b7:2f:34:c5:6c:
80:de:d9:f3:90:8f:4d:39:0c:41:33:1d:73:c6:a6:
11:4d:df:c6:3c:19:4a:a1:60:a3:47:b9:73:a9:1e:
3c:ba:8a:00:4c:5c:f9:c1:77:ff:92:d2:48:c4:6c:
0e:46:bd:cc:15:2a:2d:cf:9b:b9:38:f4:f5:19:4f:
33:1e:03:f1:c1:2e:60:b0:ee:d6:a2:1f:62:57:16:
67:d7:43:62:d1:3b:51:5d:9b:35:22:c5:84:31:22:
11:88:09:f8:4e:4c:04:21:ae:f6:03:a9:30:58:77:
6a:2a:11:4d:90:f7:f7:34:5a:6a:73:18:c8:86:13:
ab:8a:38:f2:f7:98:11:10:36:62:88:37:c4:72:64:
f3:5a:04:20:0b:05:83:c2:7c:6c:cd:cd:a5:80:c7:
d5:13:73:ff:3b:fa:0c:f4:ba:bc:ec:c8:54:a7:8c:
cb:8e:15:25:41:f4:25:66:16:16:22:ff:cd:74:64:
dc:8d:8e:d4:76:97:d0:ef:79:f7:a8:8e:80:09:d0:
25:8e:6b:50:24:50:ea:11:48:be:52:62:a9:f0:d2:
73:39:3f:4a:0c:52:61:d5:e9:1b:13:c5:98:da:7c:
a7:3c:3d:ed:e3:ea:81:32:06:80:af:6c:d8:fd:3e:
c7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:DB:94:79:95:7A:D1:E9:D5:A9:CC:A4:0D:F3:5A:87:66:3C:5C:1B
X509v3 Authority Key Identifier:
keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/96AC19C2367D11EFA3653911C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.137.106.0/24
27.106.200.0/22
43.241.188.0/22
43.252.252.0/22
49.255.0.0/16
103.37.120.0/24
103.233.148.0/22
103.255.16.0/22
110.5.116.0/22
112.213.192.0/18
113.29.240.0/22
114.31.192.0/20
116.212.192.0/18
119.161.64.0/19
121.54.128.0/19
121.79.0.0/17
123.103.192.0/19
124.254.64.0/18
175.45.64.0/18
180.148.64.0/19
202.62.138.0/23
202.62.141.0-202.62.142.255
202.62.147.0/24
202.62.152.0/22
202.80.176.0/20
202.89.160.0/19
202.137.96.0/20
202.137.192.0/21
202.174.224.0/19
202.189.64.0/20
203.12.251.0/24
203.18.212.0/23
203.22.206.0/24
203.26.237.0/24
203.28.186.0/24
203.29.177.0/24
203.55.11.0/24
203.55.250.0/24
203.89.64.0/19
203.92.28.0/22
203.129.128.0/19
203.153.224.0/19
203.161.64.0/18
203.188.128.0/19
210.50.198.0/24
211.26.193.0/24
218.100.80.0/22
223.27.96.0/21
IPv6:
2402:7800::/32
2403:d600::/32
2403:fc00:300::/40
2404:b000::/32
2404:bc00::/32
Signature Algorithm: sha256WithRSAEncryption
38:ae:75:99:fa:16:01:54:b8:05:dd:87:ec:13:64:cb:41:ce:
8a:83:03:15:09:7b:e7:77:74:cc:41:1a:9b:40:c1:cf:ae:23:
de:75:66:29:41:a5:7d:d3:b8:e4:b6:f8:c6:5f:09:ca:b7:dd:
43:cb:d4:10:6e:c1:c8:56:93:21:b6:53:f2:f9:24:f0:0b:bd:
56:a4:ec:84:6b:67:75:23:85:db:03:ce:bf:f8:98:31:37:bb:
7c:94:1e:70:f7:11:bc:3d:c5:0f:80:5e:70:f0:f3:df:dd:5c:
a7:12:d6:1e:6e:4c:af:58:56:95:91:7f:6a:dc:2d:28:c3:4e:
bf:c8:27:07:3b:ac:b3:f6:4c:b5:60:89:ac:6b:8d:b5:02:8d:
76:49:d0:1b:0d:75:07:21:75:b0:55:eb:64:88:35:e7:21:af:
0b:6a:e8:6b:8b:8c:28:ca:ea:b7:31:fd:49:dd:89:0a:9f:99:
d4:2f:07:05:7e:05:7f:78:66:a8:90:3f:48:d5:fe:24:43:3a:
d9:9b:d0:b4:bd:79:ad:39:8f:21:98:16:4a:b6:1b:92:25:47:
d8:b5:3d:00:af:71:80:cf:64:b6:ef:86:86:08:4b:b0:f7:94:
37:4a:a9:94:f7:9e:33:90:94:65:24:0e:95:a5:7e:d0:22:04:
fb:70:34:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 27 23:53:12 2024 by rpki-client on console-ams.rpki-client.org