Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/76F6E4A0884411EEA2F0907FC4F9AE02.roa
File: 76F6E4A0884411EEA2F0907FC4F9AE02.roa (raw, json)
Hash identifier: 75TQDPs0oJ+CpgrqgyunqnISNdzksKen6Ov6Fg2ZpYs=
Subject key identifier: 9C:EE:6F:B7:73:52:3E:67:6D:4A:5D:34:A3:4E:B0:34:9D:F5:C2:79
Certificate issuer: /CN=A91F17B1/serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3
Certificate serial: 0453
Authority key identifier: FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/76F6E4A0884411EEA2F0907FC4F9AE02.roa
Signing time: Tue 21 Nov 2023 08:03:33 +0000
ROA not before: Tue 21 Nov 2023 08:03:33 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 23888
IP address blocks: 43.250.84.0/22 maxlen: 22
43.250.84.0/24 maxlen: 24
43.250.85.0/24 maxlen: 24
43.250.86.0/24 maxlen: 24
43.250.87.0/24 maxlen: 24
103.253.156.0/22 maxlen: 22
103.253.156.0/24 maxlen: 24
103.253.157.0/24 maxlen: 24
103.253.158.0/24 maxlen: 24
103.253.159.0/24 maxlen: 24
113.197.48.0/22 maxlen: 22
113.197.48.0/24 maxlen: 24
113.197.49.0/24 maxlen: 24
113.197.50.0/23 maxlen: 23
113.197.52.0/23 maxlen: 23
113.197.54.0/24 maxlen: 24
113.197.55.0/24 maxlen: 24
175.107.0.0/20 maxlen: 20
175.107.0.0/22 maxlen: 23
175.107.4.0/22 maxlen: 22
175.107.7.0/24 maxlen: 24
175.107.8.0/24 maxlen: 24
175.107.9.0/24 maxlen: 24
175.107.10.0/24 maxlen: 24
175.107.11.0/24 maxlen: 24
175.107.12.0/24 maxlen: 24
175.107.13.0/24 maxlen: 24
175.107.14.0/24 maxlen: 24
175.107.15.0/24 maxlen: 24
175.107.16.0/20 maxlen: 20
175.107.16.0/24 maxlen: 24
175.107.17.0/24 maxlen: 24
175.107.18.0/24 maxlen: 24
175.107.19.0/24 maxlen: 24
175.107.20.0/24 maxlen: 24
175.107.21.0/24 maxlen: 24
175.107.22.0/23 maxlen: 23
175.107.24.0/21 maxlen: 21
175.107.24.0/24 maxlen: 24
175.107.25.0/24 maxlen: 24
175.107.26.0/23 maxlen: 24
175.107.28.0/22 maxlen: 24
175.107.32.0/20 maxlen: 20
175.107.32.0/24 maxlen: 24
175.107.33.0/24 maxlen: 24
175.107.35.0/24 maxlen: 24
175.107.36.0/22 maxlen: 22
175.107.40.0/22 maxlen: 22
175.107.44.0/22 maxlen: 22
175.107.48.0/20 maxlen: 20
175.107.48.0/24 maxlen: 24
175.107.49.0/24 maxlen: 24
175.107.50.0/24 maxlen: 24
175.107.51.0/24 maxlen: 24
175.107.52.0/24 maxlen: 24
175.107.53.0/24 maxlen: 24
175.107.54.0/24 maxlen: 24
175.107.55.0/24 maxlen: 24
175.107.56.0/24 maxlen: 24
175.107.58.0/24 maxlen: 24
175.107.59.0/24 maxlen: 24
175.107.60.0/24 maxlen: 24
175.107.61.0/24 maxlen: 24
175.107.62.0/24 maxlen: 24
175.107.63.0/24 maxlen: 24
202.83.160.0/20 maxlen: 20
202.83.160.0/22 maxlen: 22
202.83.160.0/24 maxlen: 24
202.83.161.0/24 maxlen: 24
202.83.162.0/24 maxlen: 24
202.83.163.0/24 maxlen: 24
202.83.164.0/24 maxlen: 24
202.83.165.0/24 maxlen: 24
202.83.166.0/24 maxlen: 24
202.83.167.0/24 maxlen: 24
202.83.168.0/24 maxlen: 24
202.83.169.0/24 maxlen: 24
202.83.170.0/24 maxlen: 24
202.83.171.0/24 maxlen: 24
202.83.172.0/24 maxlen: 24
202.83.173.0/24 maxlen: 24
202.83.174.0/24 maxlen: 24
202.83.175.0/24 maxlen: 24
2407:9e00::/32 maxlen: 32
2407:9e00::/48 maxlen: 48
2407:9e00:1::/48 maxlen: 48
2407:9e00:2::/48 maxlen: 48
2407:9e00:3::/48 maxlen: 48
2407:9e00:4::/48 maxlen: 48
2407:9e00:5::/48 maxlen: 48
2407:9e00:6::/48 maxlen: 48
2407:9e00:7::/48 maxlen: 48
2407:9e00:8::/48 maxlen: 48
2407:9e00:9::/48 maxlen: 48
2407:9e00:10::/48 maxlen: 48
2407:9e00:11::/48 maxlen: 48
2407:9e00:12::/48 maxlen: 48
2407:9e00:13::/48 maxlen: 48
2407:9e00:14::/48 maxlen: 48
2407:9e00:15::/48 maxlen: 48
2407:9e00:20::/48 maxlen: 48
2407:9e00:21::/48 maxlen: 48
2407:9e00:22::/48 maxlen: 48
2407:9e00:23::/48 maxlen: 48
2407:9e00:24::/48 maxlen: 48
2407:9e00:25::/48 maxlen: 48
2407:9e00:30::/48 maxlen: 48
2407:9e00:31::/48 maxlen: 48
2407:9e00:32::/48 maxlen: 48
2407:9e00:33::/48 maxlen: 48
2407:9e00:34::/48 maxlen: 48
2407:9e00:35::/48 maxlen: 48
2407:9e00:40::/48 maxlen: 48
2407:9e00:41::/48 maxlen: 48
2407:9e00:42::/48 maxlen: 48
2407:9e00:43::/48 maxlen: 48
2407:9e00:44::/48 maxlen: 48
2407:9e00:50::/48 maxlen: 48
2407:9e00:60::/48 maxlen: 48
2407:9e00:70::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1107 (0x453)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F17B1/serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3
Validity
Not Before: Nov 21 08:03:33 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=655c6455-93ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:fd:0d:d7:1b:7a:ae:ae:f0:68:95:92:3e:33:
d1:b8:61:31:24:1d:da:bd:7f:d6:3a:36:42:fa:03:
71:44:14:83:54:ae:a1:fd:a8:d7:73:80:71:6c:af:
19:7c:0b:0b:1f:bc:19:c5:56:6a:7f:2f:43:8d:af:
28:0a:58:01:f6:11:26:ec:f1:74:67:ba:e9:c8:53:
2c:50:d0:23:01:2f:ab:05:2a:12:e0:30:d8:93:aa:
71:c5:f6:ff:d1:d1:e4:63:fd:78:98:89:53:7b:53:
cc:f2:76:8b:0d:20:14:6d:a6:3e:97:33:c4:be:df:
d0:ed:b3:0e:c3:b5:8f:95:af:64:c1:63:63:31:77:
d7:6c:51:44:80:57:b9:e5:63:ec:e9:69:19:79:28:
52:15:1b:8d:68:ec:b0:c1:2d:e6:58:33:00:45:22:
61:71:ed:9b:11:74:df:2f:b2:74:a8:60:a7:04:60:
05:d9:14:da:02:9c:db:45:0f:25:5c:91:ad:78:01:
79:51:8a:e3:26:5d:16:62:68:48:54:a6:81:e3:96:
d1:73:14:84:66:8f:cf:4d:8d:9b:4b:3e:db:52:df:
49:46:ea:5c:e2:82:db:2d:1a:1b:3e:01:73:35:cb:
ee:da:72:da:38:fc:a6:bb:d7:b3:77:9a:a6:c2:21:
22:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:EE:6F:B7:73:52:3E:67:6D:4A:5D:34:A3:4E:B0:34:9D:F5:C2:79
X509v3 Authority Key Identifier:
keyid:FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/76F6E4A0884411EEA2F0907FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.84.0/22
103.253.156.0/22
113.197.48.0/21
175.107.0.0/18
202.83.160.0/20
IPv6:
2407:9e00::/32
Signature Algorithm: sha256WithRSAEncryption
ad:3b:9c:54:38:71:48:81:37:71:a8:44:14:f9:76:78:66:0f:
a3:4b:53:43:60:91:c8:bd:c4:27:59:ef:c0:b0:41:d3:6e:1d:
53:29:96:04:0e:4a:99:87:f7:f4:22:fa:0f:81:e5:e4:67:2c:
5b:77:77:0a:30:b3:eb:4d:b7:12:a4:bc:21:7d:e8:2e:e7:69:
7c:41:9a:02:a6:57:26:d7:68:88:37:ff:59:63:91:34:2f:7f:
dd:79:c3:16:bf:5c:59:c1:1a:96:94:65:45:10:db:0a:1f:de:
1c:2e:f2:7f:72:98:6a:86:89:ff:7b:ef:0b:71:fa:1a:1d:84:
b7:5a:36:e6:2f:9d:8e:86:9c:38:36:fe:60:bb:c5:03:3e:37:
4c:7b:77:a7:f7:29:b8:30:7f:2f:92:2e:bd:67:e2:97:ce:26:
d8:f8:bb:56:0b:ed:15:24:eb:e2:91:08:43:fb:1b:37:15:78:
4d:81:66:d7:2a:b4:35:df:4a:32:b2:68:45:aa:bc:b6:1a:58:
2d:b4:c9:5b:75:5a:5c:c4:c9:7d:a6:f1:e0:24:6c:9b:f2:35:
d8:50:d4:68:30:20:50:68:f8:e0:11:f5:58:86:6a:7d:1c:d3:
fd:f6:e4:9a:12:16:b9:7b:2a:ef:c7:85:8b:29:a1:0e:e5:71:
d1:46:60:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 21 09:22:29 2023 by rpki-client on console-fra.rpki-client.org