Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/C3A67198DA5811EDAE826A0DC4F9AE02.roa
File: C3A67198DA5811EDAE826A0DC4F9AE02.roa (raw, json)
Hash identifier: NWy6Xk8virPw56hQJzgFMIV4yC8Udnu7Nga0KRQHWP0=
Subject key identifier: 30:31:26:74:00:C1:B6:32:9F:AE:9B:10:39:D4:79:C8:AB:A4:51:92
Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Certificate serial: 342E
Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/C3A67198DA5811EDAE826A0DC4F9AE02.roa
Signing time: Sat 06 May 2023 14:50:39 +0000
ROA not before: Sat 06 May 2023 14:50:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38616
IP address blocks: 111.88.79.0/24 maxlen: 24
111.88.138.0/24 maxlen: 24
111.88.139.0/24 maxlen: 24
111.88.144.0/20 maxlen: 23
111.88.144.0/23 maxlen: 24
111.88.146.0/24 maxlen: 24
111.88.149.0/24 maxlen: 24
111.88.150.0/23 maxlen: 24
111.88.152.0/23 maxlen: 24
111.88.156.0/22 maxlen: 24
111.88.164.0/22 maxlen: 24
111.88.168.0/22 maxlen: 24
111.88.184.0/22 maxlen: 23
111.88.232.0/21 maxlen: 24
115.186.0.0/24 maxlen: 24
115.186.19.0/24 maxlen: 24
115.186.48.0/21 maxlen: 24
115.186.64.0/19 maxlen: 21
115.186.64.0/21 maxlen: 24
115.186.76.0/22 maxlen: 24
115.186.80.0/20 maxlen: 24
115.186.97.0/24 maxlen: 24
115.186.99.0/24 maxlen: 24
115.186.100.0/22 maxlen: 22
115.186.100.0/24 maxlen: 24
115.186.104.0/24 maxlen: 24
115.186.105.0/24 maxlen: 24
115.186.114.0/24 maxlen: 24
115.186.116.0/22 maxlen: 22
115.186.116.0/24 maxlen: 24
115.186.122.0/23 maxlen: 23
115.186.126.0/23 maxlen: 23
115.186.127.0/24 maxlen: 24
117.102.13.0/24 maxlen: 24
117.102.29.0/24 maxlen: 24
117.102.30.0/24 maxlen: 24
117.102.31.0/24 maxlen: 24
203.81.216.0/24 maxlen: 24
203.81.219.0/24 maxlen: 24
203.81.220.0/22 maxlen: 22
203.81.220.0/24 maxlen: 24
203.81.221.0/24 maxlen: 24
203.81.222.0/24 maxlen: 24
203.81.223.0/24 maxlen: 24
203.81.224.0/22 maxlen: 22
203.81.224.0/24 maxlen: 24
203.81.225.0/24 maxlen: 24
203.81.226.0/24 maxlen: 24
203.81.227.0/24 maxlen: 24
203.81.228.0/23 maxlen: 24
203.81.231.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13358 (0x342e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206
Validity
Not Before: May 6 14:50:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6456693e-346f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e4:0a:1b:b4:54:a8:cf:d7:7a:7e:cb:ed:09:
2e:38:f1:fb:d5:5e:4f:52:4e:91:7f:21:f1:8b:b5:
4d:f5:71:a6:33:1b:07:a1:1f:9a:07:cf:02:04:b0:
a7:b4:a6:e9:ed:26:05:e8:ee:ae:88:60:4b:cf:7e:
82:00:42:dd:92:0b:fa:a6:4b:03:83:9c:35:7f:c3:
ff:9f:e7:4f:a4:18:0d:c0:ba:2b:3e:8c:22:4e:2a:
16:f0:3a:3d:9b:10:f4:c9:10:f4:91:83:55:c0:16:
6a:19:ab:ec:c4:3e:b3:34:90:2f:2c:0f:58:d8:a5:
16:0d:1b:4b:e3:c6:56:5f:19:0a:c9:cd:52:7f:2b:
89:3a:e0:9b:c1:6a:a4:bf:3b:96:ee:23:51:38:51:
f3:14:0d:76:f0:24:f4:cf:72:2f:79:42:ac:37:f6:
e4:00:8c:de:c0:1b:73:c6:ee:e8:ca:83:bd:f3:e5:
70:bd:c1:be:6f:1d:1a:82:e2:fa:b6:45:f5:1c:c0:
cf:d3:54:46:36:f9:f6:a1:6b:61:70:1a:28:9e:18:
a2:cd:4c:b2:9c:a4:96:6e:a5:be:d9:ca:69:3b:11:
57:2f:20:2a:84:81:1e:ec:aa:c3:a9:e5:b0:8a:87:
69:0a:e5:82:72:ae:d6:53:4d:4d:4f:87:a9:2b:04:
59:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:31:26:74:00:C1:B6:32:9F:AE:9B:10:39:D4:79:C8:AB:A4:51:92
X509v3 Authority Key Identifier:
keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/C3A67198DA5811EDAE826A0DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
111.88.79.0/24
111.88.138.0/23
111.88.144.0/20
111.88.164.0-111.88.171.255
111.88.184.0/22
111.88.232.0/21
115.186.0.0/24
115.186.19.0/24
115.186.48.0/21
115.186.64.0/19
115.186.97.0/24
115.186.99.0-115.186.105.255
115.186.114.0/24
115.186.116.0/22
115.186.122.0/23
115.186.126.0/23
117.102.13.0/24
117.102.29.0-117.102.31.255
203.81.216.0/24
203.81.219.0-203.81.229.255
203.81.231.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:ac:af:66:10:76:70:50:4d:a3:88:db:d2:ba:b8:a0:a4:aa:
7b:a7:51:d2:11:99:fd:a7:c5:4f:f1:37:51:62:7b:2d:13:06:
7a:08:e1:6c:9c:bd:1f:25:9c:d2:76:ea:6d:b2:0d:20:df:3e:
dd:d2:3d:d4:f0:40:f4:3a:b6:7a:5e:76:a6:b0:c6:ad:0b:c7:
55:be:45:6e:19:ed:40:b1:45:d5:5d:1f:cd:80:d5:26:47:f6:
33:3e:a8:19:f0:51:59:f2:aa:16:cf:4a:74:42:2e:8a:f7:40:
1c:08:8c:10:7e:52:3f:59:65:42:56:01:ae:e0:f8:3f:6a:f1:
58:7d:dc:7d:1d:4c:94:ce:14:f6:f4:62:57:42:d1:07:b4:3a:
30:a4:1c:4d:a0:4e:23:53:c6:c7:13:72:72:4e:83:70:44:36:
07:f0:58:86:1f:bd:46:f3:3b:18:a7:7e:91:d9:39:5b:04:07:
ba:b1:07:cd:32:1e:63:6d:ad:10:1b:25:b4:1e:44:37:a0:50:
db:be:74:f8:e6:bc:9c:3d:9b:88:6c:79:8b:ac:19:e3:8c:60:
2f:a4:9b:fc:d4:f9:29:67:11:0b:51:b8:e1:5b:d7:35:9c:ed:
0f:47:5a:d5:b1:a6:6a:fa:73:1f:fd:32:6a:13:1c:d9:b5:fb:
e0:18:51:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:34 2023 by rpki-client on console.sobornost.net