Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/BBDFB9BCB7DD11EDA8ECF753C4F9AE02.roa
File: BBDFB9BCB7DD11EDA8ECF753C4F9AE02.roa (raw, json)
Hash identifier: rsWULLjBPO745U2FKtlZTxbFB5D29jMDtURus/TiO5Q=
Subject key identifier: 27:63:A6:4F:B5:98:53:68:EC:B9:4D:E1:03:DB:FE:C6:DC:0C:DA:64
Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
Certificate serial: 1D3C
Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/BBDFB9BCB7DD11EDA8ECF753C4F9AE02.roa
Signing time: Tue 02 Jan 2024 16:54:43 +0000
ROA not before: Tue 02 Jan 2024 16:54:43 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 58777
IP address blocks: 202.67.0.0/22 maxlen: 24
202.73.128.0/22 maxlen: 24
202.191.72.0/21 maxlen: 24
203.33.67.0/24 maxlen: 24
203.33.68.0/24 maxlen: 24
203.33.73.0/24 maxlen: 24
203.33.79.0/24 maxlen: 24
203.33.100.0/24 maxlen: 24
203.33.122.0/24 maxlen: 24
203.33.129.0/24 maxlen: 24
203.33.131.0/24 maxlen: 24
240e:108:4000::/43 maxlen: 48
240e:108:4020::/43 maxlen: 48
240e:108:4080::/43 maxlen: 48
240e:108:40a0::/43 maxlen: 48
240e:108:40c0::/43 maxlen: 48
240e:108:40e0::/43 maxlen: 48
240e:108:4100::/43 maxlen: 48
240e:108:4140::/43 maxlen: 48
240e:108:4180::/43 maxlen: 48
240e:108:41a0::/43 maxlen: 48
240e:108:41c0::/43 maxlen: 48
240e:108:41e0::/43 maxlen: 48
240e:108:4200::/43 maxlen: 48
240e:108:4220::/43 maxlen: 48
240e:108:4240::/43 maxlen: 48
240e:108:4260::/43 maxlen: 48
240e:108:4280::/43 maxlen: 48
240e:108:42a0::/43 maxlen: 48
240e:108:42c0::/43 maxlen: 48
240e:108:42e0::/43 maxlen: 48
240e:108:4300::/43 maxlen: 48
240e:108:4320::/43 maxlen: 48
240e:108:4380::/43 maxlen: 48
240e:108:43a0::/43 maxlen: 48
240e:108:4a00::/43 maxlen: 48
240e:108:4a20::/43 maxlen: 48
240e:108:4a40::/43 maxlen: 48
240e:108:4a60::/43 maxlen: 48
240e:108:4a80::/43 maxlen: 48
240e:108:4aa0::/43 maxlen: 48
240e:108:4ac0::/43 maxlen: 48
240e:108:4ae0::/43 maxlen: 48
240e:108:4b00::/43 maxlen: 48
240e:108:4b20::/43 maxlen: 48
240e:108:4b80::/43 maxlen: 48
240e:108:4ba0::/43 maxlen: 48
Validation: Failed, certificate revoked on Wed 15 May 2024 10:54:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7484 (0x1d3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
Validity
Not Before: Jan 2 16:54:43 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=65943fd3-9070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f6:c4:5c:42:78:c9:74:55:8f:b7:86:28:04:
05:a8:17:ce:13:74:51:6f:b5:7f:6f:ea:c6:7a:d0:
76:01:1d:55:2a:55:31:67:d7:91:ee:9b:c5:f8:a1:
7e:f1:1f:86:f0:9a:3a:6f:8c:e3:99:69:1a:93:96:
42:e9:5e:02:0e:82:47:8b:12:6e:7f:eb:03:46:be:
92:ea:ce:e8:4c:f0:fc:35:1e:64:66:5c:83:00:f8:
ad:ec:ed:97:75:91:66:35:a5:55:02:14:c0:7a:9b:
99:28:7b:0d:34:cb:39:13:5d:73:26:79:e9:70:e3:
f5:b3:47:f7:4b:68:49:c1:09:e0:10:30:43:1b:3c:
85:da:66:bf:54:1d:4c:14:07:9b:7c:d0:5b:e0:f3:
0f:e4:8d:4f:20:df:8f:9e:ae:f7:4e:30:63:95:4f:
cc:40:e7:e0:16:f8:6b:d4:97:16:9e:04:f5:cb:72:
48:bc:05:95:0f:97:30:3b:b2:35:7e:91:6f:98:7f:
a6:d3:13:d0:a1:81:5a:fb:da:ae:82:c4:f2:6b:83:
cc:b4:08:c4:7f:df:2f:94:69:c3:e8:d0:b4:89:df:
f7:54:db:f9:59:dd:44:8d:79:b1:da:a8:be:6a:9d:
1f:9d:30:42:c6:ff:b8:f7:43:db:2f:90:a3:6a:8e:
1e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:63:A6:4F:B5:98:53:68:EC:B9:4D:E1:03:DB:FE:C6:DC:0C:DA:64
X509v3 Authority Key Identifier:
keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/BBDFB9BCB7DD11EDA8ECF753C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.67.0.0/22
202.73.128.0/22
202.191.72.0/21
203.33.67.0-203.33.68.255
203.33.73.0/24
203.33.79.0/24
203.33.100.0/24
203.33.122.0/24
203.33.129.0/24
203.33.131.0/24
IPv6:
240e:108:4000::/42
240e:108:4080::-240e:108:411f:ffff:ffff:ffff:ffff:ffff
240e:108:4140::/43
240e:108:4180::-240e:108:433f:ffff:ffff:ffff:ffff:ffff
240e:108:4380::/42
240e:108:4a00::-240e:108:4b3f:ffff:ffff:ffff:ffff:ffff
240e:108:4b80::/42
Signature Algorithm: sha256WithRSAEncryption
bc:42:6c:cf:cf:d6:d5:41:84:03:a9:5b:ad:3c:f4:18:a8:12:
e4:0f:db:aa:c3:ac:91:ab:6a:d9:1d:b6:68:ef:79:03:82:17:
f4:90:6c:55:17:67:a0:e0:cf:b5:8a:0d:bf:31:30:90:f7:83:
48:05:df:f5:5f:21:46:b7:f5:d8:9b:8e:ca:a1:ae:5a:3a:44:
f4:b1:44:55:e7:be:5d:83:85:17:c9:b6:05:fc:e0:f3:8e:0e:
25:8d:9a:0e:fc:09:b9:d8:3b:fe:12:e4:f9:60:b0:16:29:07:
02:b3:ee:98:83:ec:d6:2e:6c:8c:fb:f5:2c:29:f0:97:a1:f3:
c6:81:bf:e4:37:55:77:28:ac:f8:e0:f1:c7:1e:c9:8e:7a:cb:
c3:83:ea:ca:f6:75:4a:d5:7f:f1:2d:7d:73:62:c0:0b:f3:d9:
b1:3e:37:a3:b2:1e:81:95:19:32:08:ea:e5:02:1f:52:1a:1a:
37:e0:8f:0f:9c:53:d1:aa:70:a1:0b:6e:ad:2c:21:10:c3:21:
2b:1f:c2:ae:62:2d:9e:12:68:44:e7:8a:81:20:1d:e5:96:5a:
69:32:f4:ae:4a:f0:3e:57:13:9b:88:7f:e9:ba:30:24:5b:8c:
5d:83:32:db:0d:64:ef:50:7d:e5:d8:2d:43:cb:f3:ff:8b:2b:
32:d2:13:51
-----BEGIN CERTIFICATE-----
MIIGGTCCBQGgAwIBAgICHTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1
NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDQzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTk0M2ZkMy05MDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAr/bEXEJ4yXRVj7eGKAQFqBfOE3RRb7V/b+rGetB2AR1VKlUxZ9eR7pvF+KF+
8R+G8Jo6b4zjmWkak5ZC6V4CDoJHixJuf+sDRr6S6s7oTPD8NR5kZlyDAPit7O2X
dZFmNaVVAhTAepuZKHsNNMs5E11zJnnpcOP1s0f3S2hJwQngEDBDGzyF2ma/VB1M
FAebfNBb4PMP5I1PIN+Pnq73TjBjlU/MQOfgFvhr1JcWngT1y3JIvAWVD5cwO7I1
fpFvmH+m0xPQoYFa+9qugsTya4PMtAjEf98vlGnD6NC0id/3VNv5Wd1EjXmx2qi+
ap0fnTBCxv+490PbL5Cjao4eQQIDAQABo4IDPTCCAzkwHQYDVR0OBBYEFCdjpk+1
mFNo7LlN4QPb/sbcDNpkMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1
NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5
TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQkJERkI5QkNC
N0REMTFFREE4RUNGNzUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgcYGCCsGAQUFBwEHAQH/
BIG2MIGzMEoEAgABMEQDBALKQwADBALKSYADBAPKv0gwDAMEAMshQwMEAMshRAME
AMshSQMEAMshTwMEAMshZAMEAMshegMEAMshgQMEAMshgzBlBAIAAjBfAwcGJA4B
CEAAMBIDBwckDgEIQIADBwUkDgEIQQADBwUkDgEIQUAwEgMHByQOAQhBgAMHBiQO
AQhDAAMHBiQOAQhDgDARAwYBJA4BCEoDBwYkDgEISwADBwYkDgEIS4AwDQYJKoZI
hvcNAQELBQADggEBALxCbM/P1tVBhAOpW6089BioEuQP26rDrJGratkdtmjveQOC
F/SQbFUXZ6Dgz7WKDb8xMJD3g0gF3/VfIUa39dibjsqhrlo6RPSxRFXnvl2DhRfJ
tgX84POODiWNmg78CbnYO/4S5PlgsBYpBwKz7piD7NYubIz79Swp8Jeh88aBv+Q3
VXcorPjg8cceyY56y8OD6sr2dUrVf/EtfXNiwAvz2bE+N6OyHoGVGTII6uUCH1Ia
Gjfgjw+cU9GqcKELbq0sIRDDISsfwq5iLZ4SaETnioEgHeWWWmky9K5K8D5XE5uI
f+m6MCRbjF2DMtsNZO9QfeXYLUPL8/+LKzLSE1E=
-----END CERTIFICATE-----
Generated at Thu May 16 10:51:32 2024 by rpki-client on console.sobornost.net