Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/D37453DA33E411EDAAED0E0AC4F9AE02.roa
File: D37453DA33E411EDAAED0E0AC4F9AE02.roa (raw, json)
Hash identifier: 6oz9igC2CsKEqoCBzwKQNybdL+sy9cldjJmp4wfkiu8=
Subject key identifier: B5:9A:A9:BA:5B:07:3D:36:F2:4E:0C:56:77:98:B7:DC:AC:2A:15:11
Certificate issuer: /CN=A91F17B1/serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3
Certificate serial: 03AB
Authority key identifier: FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/D37453DA33E411EDAAED0E0AC4F9AE02.roa
Signing time: Fri 06 Jan 2023 09:41:39 +0000
ROA not before: Fri 06 Jan 2023 09:41:39 +0000
ROA not after: Sat 30 Dec 2023 00:00:00 +0000
asID: 23888
IP address blocks: 43.250.84.0/22 maxlen: 22
43.250.84.0/24 maxlen: 24
43.250.85.0/24 maxlen: 24
43.250.86.0/24 maxlen: 24
43.250.87.0/24 maxlen: 24
103.253.156.0/22 maxlen: 22
103.253.156.0/24 maxlen: 24
103.253.157.0/24 maxlen: 24
103.253.158.0/24 maxlen: 24
103.253.159.0/24 maxlen: 24
113.197.48.0/22 maxlen: 22
113.197.48.0/24 maxlen: 24
113.197.49.0/24 maxlen: 24
113.197.50.0/23 maxlen: 23
113.197.52.0/23 maxlen: 23
113.197.54.0/24 maxlen: 24
113.197.55.0/24 maxlen: 24
175.107.0.0/20 maxlen: 20
175.107.0.0/22 maxlen: 23
175.107.4.0/22 maxlen: 22
175.107.7.0/24 maxlen: 24
175.107.8.0/24 maxlen: 24
175.107.9.0/24 maxlen: 24
175.107.10.0/24 maxlen: 24
175.107.11.0/24 maxlen: 24
175.107.12.0/24 maxlen: 24
175.107.13.0/24 maxlen: 24
175.107.14.0/24 maxlen: 24
175.107.15.0/24 maxlen: 24
175.107.16.0/20 maxlen: 20
175.107.16.0/24 maxlen: 24
175.107.17.0/24 maxlen: 24
175.107.18.0/24 maxlen: 24
175.107.19.0/24 maxlen: 24
175.107.20.0/24 maxlen: 24
175.107.21.0/24 maxlen: 24
175.107.22.0/23 maxlen: 23
175.107.24.0/21 maxlen: 21
175.107.24.0/24 maxlen: 24
175.107.25.0/24 maxlen: 24
175.107.26.0/23 maxlen: 24
175.107.28.0/22 maxlen: 24
175.107.32.0/20 maxlen: 20
175.107.32.0/24 maxlen: 24
175.107.33.0/24 maxlen: 24
175.107.35.0/24 maxlen: 24
175.107.36.0/22 maxlen: 22
175.107.40.0/22 maxlen: 22
175.107.44.0/22 maxlen: 22
175.107.48.0/20 maxlen: 20
175.107.48.0/24 maxlen: 24
175.107.49.0/24 maxlen: 24
175.107.50.0/24 maxlen: 24
175.107.51.0/24 maxlen: 24
175.107.52.0/24 maxlen: 24
175.107.53.0/24 maxlen: 24
175.107.54.0/24 maxlen: 24
175.107.55.0/24 maxlen: 24
175.107.56.0/24 maxlen: 24
175.107.58.0/24 maxlen: 24
175.107.59.0/24 maxlen: 24
175.107.60.0/24 maxlen: 24
175.107.61.0/24 maxlen: 24
175.107.62.0/24 maxlen: 24
175.107.63.0/24 maxlen: 24
202.83.160.0/20 maxlen: 20
202.83.160.0/22 maxlen: 22
202.83.160.0/24 maxlen: 24
202.83.161.0/24 maxlen: 24
202.83.162.0/24 maxlen: 24
202.83.163.0/24 maxlen: 24
202.83.164.0/24 maxlen: 24
202.83.165.0/24 maxlen: 24
202.83.166.0/24 maxlen: 24
202.83.167.0/24 maxlen: 24
202.83.168.0/24 maxlen: 24
202.83.169.0/24 maxlen: 24
202.83.170.0/24 maxlen: 24
202.83.171.0/24 maxlen: 24
202.83.172.0/24 maxlen: 24
202.83.173.0/24 maxlen: 24
202.83.174.0/24 maxlen: 24
202.83.175.0/24 maxlen: 24
2407:9e00::/32 maxlen: 32
2407:9e00::/48 maxlen: 48
2407:9e00:1::/48 maxlen: 48
2407:9e00:2::/48 maxlen: 48
2407:9e00:3::/48 maxlen: 48
2407:9e00:4::/48 maxlen: 48
2407:9e00:5::/48 maxlen: 48
2407:9e00:6::/48 maxlen: 48
2407:9e00:7::/48 maxlen: 48
2407:9e00:8::/48 maxlen: 48
2407:9e00:9::/48 maxlen: 48
2407:9e00:a::/48 maxlen: 48
2407:9e00:b::/48 maxlen: 48
2407:9e00:c::/48 maxlen: 48
2407:9e00:d::/48 maxlen: 48
2407:9e00:e::/48 maxlen: 48
2407:9e00:f::/48 maxlen: 48
2407:9e00:10::/48 maxlen: 48
2407:9e00:11::/48 maxlen: 48
2407:9e00:12::/48 maxlen: 48
2407:9e00:13::/48 maxlen: 48
2407:9e00:14::/48 maxlen: 48
2407:9e00:15::/48 maxlen: 48
2407:9e00:20::/48 maxlen: 48
2407:9e00:21::/48 maxlen: 48
2407:9e00:22::/48 maxlen: 48
2407:9e00:23::/48 maxlen: 48
2407:9e00:24::/48 maxlen: 48
2407:9e00:25::/48 maxlen: 48
2407:9e00:30::/48 maxlen: 48
2407:9e00:31::/48 maxlen: 48
2407:9e00:32::/48 maxlen: 48
2407:9e00:33::/48 maxlen: 48
2407:9e00:34::/48 maxlen: 48
2407:9e00:35::/48 maxlen: 48
2407:9e00:40::/48 maxlen: 48
2407:9e00:41::/48 maxlen: 48
2407:9e00:42::/48 maxlen: 48
2407:9e00:43::/48 maxlen: 48
2407:9e00:44::/48 maxlen: 48
2407:9e00:50::/48 maxlen: 48
2407:9e00:60::/48 maxlen: 48
2407:9e00:70::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 939 (0x3ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F17B1/serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3
Validity
Not Before: Jan 6 09:41:39 2023 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=63b7ecd3-4714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:17:f1:a3:8c:7f:95:05:88:9a:e1:60:fd:35:
39:ea:17:db:71:1d:0c:90:61:90:ba:4d:ee:f0:49:
23:3e:62:3d:5b:74:aa:1c:21:5b:85:9b:df:66:28:
a1:9c:59:96:e3:64:8e:e9:d2:12:cb:7a:fc:a3:27:
33:7e:0e:42:f6:e2:17:57:cf:ff:ce:de:38:f1:6b:
04:4b:90:89:d8:d7:47:0a:0c:0b:42:9f:74:3e:51:
e8:3a:d6:0a:e8:50:22:40:5d:1e:86:65:1d:7b:31:
ad:99:37:4c:62:ba:cc:6f:67:44:81:f2:15:7d:97:
b1:62:fc:f0:47:aa:e4:e6:d6:8b:61:1f:d6:2d:dc:
8e:a6:05:86:0c:1e:3a:0c:60:cf:97:10:70:3b:92:
12:de:44:f1:e8:a0:78:3c:04:82:21:56:c0:be:03:
3c:f9:c0:14:4a:68:94:ca:39:29:69:62:c6:fc:2b:
25:e1:f7:2b:ef:96:f5:a6:d8:5e:ac:ef:c8:5d:cf:
a2:cc:6c:5c:ab:29:ca:dc:60:0d:12:72:78:ce:f6:
45:0d:37:6d:60:b9:7b:28:36:f7:12:d9:d1:29:1e:
40:d1:a8:99:61:a3:e3:a4:9f:fd:68:41:53:a7:8d:
8c:c1:4b:4b:dd:73:3c:22:8f:73:af:87:41:a7:0a:
5f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:9A:A9:BA:5B:07:3D:36:F2:4E:0C:56:77:98:B7:DC:AC:2A:15:11
X509v3 Authority Key Identifier:
keyid:FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/D37453DA33E411EDAAED0E0AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.84.0/22
103.253.156.0/22
113.197.48.0/21
175.107.0.0/18
202.83.160.0/20
IPv6:
2407:9e00::/32
Signature Algorithm: sha256WithRSAEncryption
35:01:ab:22:da:4d:50:13:66:ce:f7:e2:df:da:10:4a:72:89:
62:23:58:bf:43:65:71:7c:75:11:4e:78:3c:bf:8e:9d:ac:0a:
6f:f3:3f:df:59:a3:00:0a:d0:98:41:15:8f:03:14:34:0a:9b:
03:a2:3d:82:ba:ce:25:71:fc:34:79:1b:76:6b:52:dc:e8:82:
b7:1d:82:65:8a:61:ce:a2:88:e6:f0:dc:fe:f3:36:3a:aa:66:
53:f2:e4:ef:9b:cb:e7:92:dd:35:42:0b:35:ff:a3:fa:f8:8e:
6c:9b:98:02:f3:da:4c:f0:9f:d3:eb:b3:9c:48:8a:cf:cc:0c:
e4:79:77:35:9a:62:e2:98:c9:87:42:0f:06:c0:a0:a7:b6:21:
8e:65:b5:79:aa:54:f2:a7:74:33:be:63:f0:24:c1:2a:fe:02:
f9:65:0e:26:94:43:2f:f3:82:80:32:90:b5:18:7d:73:c0:3e:
cb:25:b9:2e:9f:bf:b9:16:50:72:d0:93:6e:88:c0:fd:94:79:
59:8a:83:24:1c:e0:64:09:34:04:74:f7:cc:c9:05:f3:6f:d7:
0d:e8:a7:02:c5:a3:3c:e9:8f:f0:53:79:8a:47:9b:e4:a8:4a:
3f:0d:aa:ca:6c:d7:73:91:85:41:43:b2:fa:11:37:72:a2:62:
24:91:d4:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 21 09:11:34 2023 by rpki-client on console-ams.rpki-client.org