Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/D37453DA33E411EDAAED0E0AC4F9AE02.roa
File: D37453DA33E411EDAAED0E0AC4F9AE02.roa (raw, json)
Hash identifier: kt2m33Aty5mOVpjdLPtxVjhvv9QVAus584QDZuHC7pI=
Subject key identifier: 6B:22:01:A5:33:94:A8:51:29:4A:C7:98:62:77:83:AA:5E:1E:64:EC
Certificate issuer: /CN=A91F17B1/serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3
Certificate serial: 044B
Authority key identifier: FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/D37453DA33E411EDAAED0E0AC4F9AE02.roa
Signing time: Thu 09 Nov 2023 01:33:01 +0000
ROA not before: Thu 09 Nov 2023 01:33:01 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 23888
IP address blocks: 43.250.84.0/22 maxlen: 22
43.250.84.0/24 maxlen: 24
43.250.85.0/24 maxlen: 24
43.250.86.0/24 maxlen: 24
43.250.87.0/24 maxlen: 24
103.253.156.0/22 maxlen: 22
103.253.156.0/24 maxlen: 24
103.253.157.0/24 maxlen: 24
103.253.158.0/24 maxlen: 24
103.253.159.0/24 maxlen: 24
113.197.48.0/22 maxlen: 22
113.197.48.0/24 maxlen: 24
113.197.49.0/24 maxlen: 24
113.197.50.0/23 maxlen: 23
113.197.52.0/23 maxlen: 23
113.197.54.0/24 maxlen: 24
113.197.55.0/24 maxlen: 24
175.107.0.0/20 maxlen: 20
175.107.0.0/22 maxlen: 23
175.107.4.0/22 maxlen: 22
175.107.7.0/24 maxlen: 24
175.107.8.0/24 maxlen: 24
175.107.9.0/24 maxlen: 24
175.107.10.0/24 maxlen: 24
175.107.11.0/24 maxlen: 24
175.107.12.0/24 maxlen: 24
175.107.13.0/24 maxlen: 24
175.107.14.0/24 maxlen: 24
175.107.15.0/24 maxlen: 24
175.107.16.0/20 maxlen: 20
175.107.16.0/24 maxlen: 24
175.107.17.0/24 maxlen: 24
175.107.18.0/24 maxlen: 24
175.107.19.0/24 maxlen: 24
175.107.20.0/24 maxlen: 24
175.107.21.0/24 maxlen: 24
175.107.22.0/23 maxlen: 23
175.107.24.0/21 maxlen: 21
175.107.24.0/24 maxlen: 24
175.107.25.0/24 maxlen: 24
175.107.26.0/23 maxlen: 24
175.107.28.0/22 maxlen: 24
175.107.32.0/20 maxlen: 20
175.107.32.0/24 maxlen: 24
175.107.33.0/24 maxlen: 24
175.107.35.0/24 maxlen: 24
175.107.36.0/22 maxlen: 22
175.107.40.0/22 maxlen: 22
175.107.44.0/22 maxlen: 22
175.107.48.0/20 maxlen: 20
175.107.48.0/24 maxlen: 24
175.107.49.0/24 maxlen: 24
175.107.50.0/24 maxlen: 24
175.107.51.0/24 maxlen: 24
175.107.52.0/24 maxlen: 24
175.107.53.0/24 maxlen: 24
175.107.54.0/24 maxlen: 24
175.107.55.0/24 maxlen: 24
175.107.56.0/24 maxlen: 24
175.107.58.0/24 maxlen: 24
175.107.59.0/24 maxlen: 24
175.107.60.0/24 maxlen: 24
175.107.61.0/24 maxlen: 24
175.107.62.0/24 maxlen: 24
175.107.63.0/24 maxlen: 24
202.83.160.0/20 maxlen: 20
202.83.160.0/22 maxlen: 22
202.83.160.0/24 maxlen: 24
202.83.161.0/24 maxlen: 24
202.83.162.0/24 maxlen: 24
202.83.163.0/24 maxlen: 24
202.83.164.0/24 maxlen: 24
202.83.165.0/24 maxlen: 24
202.83.166.0/24 maxlen: 24
202.83.167.0/24 maxlen: 24
202.83.168.0/24 maxlen: 24
202.83.169.0/24 maxlen: 24
202.83.170.0/24 maxlen: 24
202.83.171.0/24 maxlen: 24
202.83.172.0/24 maxlen: 24
202.83.173.0/24 maxlen: 24
202.83.174.0/24 maxlen: 24
202.83.175.0/24 maxlen: 24
2407:9e00::/32 maxlen: 32
2407:9e00::/48 maxlen: 48
2407:9e00:1::/48 maxlen: 48
2407:9e00:2::/48 maxlen: 48
2407:9e00:3::/48 maxlen: 48
2407:9e00:4::/48 maxlen: 48
2407:9e00:5::/48 maxlen: 48
2407:9e00:6::/48 maxlen: 48
2407:9e00:7::/48 maxlen: 48
2407:9e00:8::/48 maxlen: 48
2407:9e00:9::/48 maxlen: 48
2407:9e00:a::/48 maxlen: 48
2407:9e00:b::/48 maxlen: 48
2407:9e00:c::/48 maxlen: 48
2407:9e00:d::/48 maxlen: 48
2407:9e00:e::/48 maxlen: 48
2407:9e00:f::/48 maxlen: 48
2407:9e00:10::/48 maxlen: 48
2407:9e00:11::/48 maxlen: 48
2407:9e00:12::/48 maxlen: 48
2407:9e00:13::/48 maxlen: 48
2407:9e00:14::/48 maxlen: 48
2407:9e00:15::/48 maxlen: 48
2407:9e00:20::/48 maxlen: 48
2407:9e00:21::/48 maxlen: 48
2407:9e00:22::/48 maxlen: 48
2407:9e00:23::/48 maxlen: 48
2407:9e00:24::/48 maxlen: 48
2407:9e00:25::/48 maxlen: 48
2407:9e00:30::/48 maxlen: 48
2407:9e00:31::/48 maxlen: 48
2407:9e00:32::/48 maxlen: 48
2407:9e00:33::/48 maxlen: 48
2407:9e00:34::/48 maxlen: 48
2407:9e00:35::/48 maxlen: 48
2407:9e00:40::/48 maxlen: 48
2407:9e00:41::/48 maxlen: 48
2407:9e00:42::/48 maxlen: 48
2407:9e00:43::/48 maxlen: 48
2407:9e00:44::/48 maxlen: 48
2407:9e00:50::/48 maxlen: 48
2407:9e00:60::/48 maxlen: 48
2407:9e00:70::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 21 Nov 2023 08:03:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1099 (0x44b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F17B1/serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3
Validity
Not Before: Nov 9 01:33:01 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=654c36cd-b9a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:af:a9:60:52:5c:4b:fc:b7:75:c6:e7:84:a2:
94:42:f9:fc:2f:5c:4a:f2:1e:c8:5b:07:02:9a:42:
ce:33:fb:75:70:06:e3:19:ae:e6:fe:cd:f0:c3:eb:
2c:2a:52:b5:be:57:05:f3:8f:70:69:24:9d:7f:bc:
cf:d1:70:ec:f9:39:9f:a7:5d:08:ac:ac:f0:fe:51:
91:3f:11:09:2a:0e:90:0f:f6:35:98:75:56:d3:7c:
f8:a1:7a:a3:5a:21:d6:2c:88:9c:e4:03:90:05:50:
20:20:5f:cf:27:f2:d9:8e:9f:2b:16:ce:e9:ae:f2:
bd:ce:a2:7c:7b:ca:ed:a3:f2:0d:20:78:47:de:8d:
d0:ca:03:18:11:2a:2c:d6:53:d9:51:69:a4:52:1f:
86:eb:ca:3f:df:35:27:78:7f:f5:b0:dd:c5:84:96:
e6:b1:38:ca:fb:ec:7f:60:31:a7:21:a4:27:38:61:
f7:2d:13:ab:32:c6:63:03:13:2a:5c:a0:04:30:34:
1b:f0:a4:30:69:ce:35:be:b5:33:ba:1a:f7:dd:84:
da:9a:dd:d0:ef:62:50:96:79:da:c3:69:73:90:13:
14:e7:5a:9f:0d:84:d4:0b:f1:92:6f:50:c1:63:b7:
91:b6:30:0b:95:7b:f7:d4:76:cf:a9:5e:65:0d:a6:
18:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:22:01:A5:33:94:A8:51:29:4A:C7:98:62:77:83:AA:5E:1E:64:EC
X509v3 Authority Key Identifier:
keyid:FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/D37453DA33E411EDAAED0E0AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.250.84.0/22
103.253.156.0/22
113.197.48.0/21
175.107.0.0/18
202.83.160.0/20
IPv6:
2407:9e00::/32
Signature Algorithm: sha256WithRSAEncryption
1f:76:a4:08:cc:f9:f2:ef:87:5b:61:e5:f1:b7:d7:f3:8b:bf:
21:59:d0:23:74:a1:d6:9e:7d:5d:b9:e8:3d:0e:fc:4a:f3:31:
c9:4e:93:e1:a0:15:9e:e5:59:59:9f:36:9a:78:bb:0e:a8:7c:
99:ed:6b:74:6f:47:38:d0:02:10:50:34:ec:13:2b:1f:01:8e:
8c:86:c6:73:7b:4f:6d:fd:9e:e3:05:4e:f5:f4:c7:8a:5f:81:
64:c1:87:d4:d9:f4:10:e6:5e:f2:a3:2c:6a:8f:43:d1:c2:98:
79:86:e9:61:7b:7a:f3:8e:a7:b5:3b:af:7f:16:b3:76:47:c2:
c7:d5:d2:12:c6:85:b8:46:36:ba:c8:a4:a3:70:e6:0a:8c:91:
83:bd:03:a1:9a:b8:89:f2:43:6e:69:24:fa:7e:26:28:4c:34:
70:17:3c:e3:14:11:63:3c:b3:b7:b8:e8:56:62:4a:45:cb:d3:
d3:8c:3e:4c:ed:4f:7b:f3:5f:75:c1:57:af:cc:38:b8:b2:18:
94:6b:3f:ce:b1:0f:b8:47:ff:ff:38:5f:04:ec:82:f5:28:ae:
f7:41:06:f3:1f:0b:6b:cc:79:43:48:0b:7f:60:ac:45:70:2b:
28:a2:16:90:17:70:40:89:c5:0a:b0:96:f7:29:34:3d:66:8f:
5c:0a:d6:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:47 2024 by rpki-client on console-fra.rpki-client.org