Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/81868EFA7D2411EEB24DBE31C4F9AE02.roa
File: 81868EFA7D2411EEB24DBE31C4F9AE02.roa (raw, json)
Hash identifier: w1VnvkGSUDPOzp716OsR1IuK4FE8Kkz4MHBmVQ9Ms9Y=
Subject key identifier: 37:F0:D6:5D:30:DC:8B:87:EB:B4:71:9A:57:81:2A:2F:8A:CD:9A:32
Certificate issuer: /CN=A9182F75/serialNumber=420D8C2EC3D2479C5423ABFF74782B8A8A4B7DEA
Certificate serial: 1AF0
Authority key identifier: 42:0D:8C:2E:C3:D2:47:9C:54:23:AB:FF:74:78:2B:8A:8A:4B:7D:EA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/81868EFA7D2411EEB24DBE31C4F9AE02.roa
Signing time: Fri 22 Mar 2024 09:00:28 +0000
ROA not before: Fri 22 Mar 2024 09:00:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 132220
IP address blocks: 45.125.152.0/22 maxlen: 22
45.125.152.0/24 maxlen: 24
45.125.153.0/24 maxlen: 24
45.125.154.0/24 maxlen: 24
45.125.155.0/24 maxlen: 24
45.250.232.0/22 maxlen: 22
45.250.232.0/24 maxlen: 24
45.250.233.0/24 maxlen: 24
45.250.234.0/24 maxlen: 24
45.250.235.0/24 maxlen: 24
103.7.148.0/22 maxlen: 22
103.7.148.0/24 maxlen: 24
103.7.149.0/24 maxlen: 24
103.7.150.0/24 maxlen: 24
103.7.151.0/24 maxlen: 24
103.216.52.0/22 maxlen: 22
103.216.52.0/24 maxlen: 24
103.216.53.0/24 maxlen: 24
103.216.54.0/24 maxlen: 24
103.216.55.0/24 maxlen: 24
157.119.176.0/22 maxlen: 22
157.119.176.0/24 maxlen: 24
157.119.177.0/24 maxlen: 24
157.119.178.0/24 maxlen: 24
157.119.179.0/24 maxlen: 24
183.87.160.0/19 maxlen: 19
183.87.160.0/20 maxlen: 20
183.87.160.0/24 maxlen: 24
183.87.161.0/24 maxlen: 24
183.87.162.0/24 maxlen: 24
183.87.163.0/24 maxlen: 24
183.87.164.0/24 maxlen: 24
183.87.165.0/24 maxlen: 24
183.87.166.0/24 maxlen: 24
183.87.167.0/24 maxlen: 24
183.87.168.0/24 maxlen: 24
183.87.169.0/24 maxlen: 24
183.87.170.0/24 maxlen: 24
183.87.171.0/24 maxlen: 24
183.87.172.0/24 maxlen: 24
183.87.173.0/24 maxlen: 24
183.87.174.0/24 maxlen: 24
183.87.175.0/24 maxlen: 24
183.87.176.0/24 maxlen: 24
183.87.177.0/24 maxlen: 24
183.87.178.0/24 maxlen: 24
183.87.179.0/24 maxlen: 24
183.87.180.0/24 maxlen: 24
183.87.181.0/24 maxlen: 24
183.87.182.0/24 maxlen: 24
183.87.183.0/24 maxlen: 24
183.87.184.0/24 maxlen: 24
183.87.185.0/24 maxlen: 24
183.87.186.0/24 maxlen: 24
183.87.187.0/24 maxlen: 24
183.87.188.0/24 maxlen: 24
183.87.189.0/24 maxlen: 24
183.87.190.0/24 maxlen: 24
183.87.191.0/24 maxlen: 24
183.87.193.0/24 maxlen: 24
183.87.194.0/23 maxlen: 24
183.87.196.0/22 maxlen: 22
183.87.196.0/24 maxlen: 24
183.87.197.0/24 maxlen: 24
183.87.198.0/24 maxlen: 24
183.87.199.0/24 maxlen: 24
183.87.200.0/21 maxlen: 21
183.87.200.0/24 maxlen: 24
183.87.201.0/24 maxlen: 24
183.87.202.0/24 maxlen: 24
183.87.203.0/24 maxlen: 24
183.87.204.0/24 maxlen: 24
183.87.205.0/24 maxlen: 24
183.87.206.0/24 maxlen: 24
183.87.207.0/24 maxlen: 24
183.87.208.0/22 maxlen: 22
183.87.208.0/24 maxlen: 24
183.87.209.0/24 maxlen: 24
183.87.210.0/24 maxlen: 24
183.87.211.0/24 maxlen: 24
2403:7100::/32 maxlen: 32
2403:7100::/48 maxlen: 48
2403:7100:1::/48 maxlen: 48
2403:7100:2::/48 maxlen: 48
2403:7100:3::/48 maxlen: 48
2403:7100:4::/48 maxlen: 48
2403:7100:5::/48 maxlen: 48
2403:7100:6::/48 maxlen: 48
2403:7100:7::/48 maxlen: 48
2403:7100:8::/48 maxlen: 48
2403:7100:9::/48 maxlen: 48
2403:7100:a::/48 maxlen: 48
2403:7100:b::/48 maxlen: 48
2403:7100:10::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 26 Mar 2024 08:06:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6896 (0x1af0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9182F75/serialNumber=420D8C2EC3D2479C5423ABFF74782B8A8A4B7DEA
Validity
Not Before: Mar 22 09:00:28 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65fd48ac-cd16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:00:5c:6f:ce:b0:19:41:91:86:76:1e:68:53:
03:25:10:1b:52:25:16:65:cc:c2:4d:cb:03:bd:4a:
09:86:89:ac:db:c1:71:a7:ce:2a:a5:3e:8e:0a:cc:
b9:5b:a1:b8:c3:02:57:1c:cf:6d:a5:68:be:c5:fa:
3c:97:d2:e9:44:97:b8:57:48:ab:b0:af:ca:9e:58:
45:d2:8c:52:5b:c4:c1:e1:b0:fe:86:dd:0f:39:71:
81:32:4d:2e:86:00:05:9d:dd:e0:19:f0:46:e6:8a:
63:f0:9e:6f:70:f5:e5:61:e2:2a:f4:51:cc:24:ed:
1c:25:ac:4e:b9:d7:d4:79:2c:ff:6c:c9:21:2c:67:
52:8c:4a:e1:3d:6d:bb:cf:21:a7:dc:ba:6a:7e:0b:
6a:d1:1c:26:55:bc:a4:20:bf:0d:e1:4d:03:56:f8:
69:52:e5:ff:55:e1:97:10:93:76:6c:03:66:0d:c5:
af:ff:51:5d:84:73:dc:bf:c9:a2:13:d7:78:20:b2:
34:92:a3:42:84:c9:77:d5:fd:03:57:19:6c:e4:3e:
44:1f:71:e4:9c:d7:5d:3c:a2:fd:62:e4:3e:a8:b3:
17:c7:88:7f:87:3f:ba:35:6a:93:31:8c:46:f6:c2:
8a:7e:7b:7b:75:fe:89:6a:f9:b9:87:b8:0a:29:cf:
2b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F0:D6:5D:30:DC:8B:87:EB:B4:71:9A:57:81:2A:2F:8A:CD:9A:32
X509v3 Authority Key Identifier:
keyid:42:0D:8C:2E:C3:D2:47:9C:54:23:AB:FF:74:78:2B:8A:8A:4B:7D:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/81868EFA7D2411EEB24DBE31C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.125.152.0/22
45.250.232.0/22
103.7.148.0/22
103.216.52.0/22
157.119.176.0/22
183.87.160.0/19
183.87.193.0-183.87.211.255
IPv6:
2403:7100::/32
Signature Algorithm: sha256WithRSAEncryption
d5:1a:b9:b4:c6:f4:4e:9f:22:ec:68:7e:51:42:ee:d1:fd:ac:
8b:a1:50:88:9b:3c:ff:0f:04:2b:a0:6e:37:7d:5b:27:45:e4:
81:61:8e:33:a9:6d:b4:b6:ce:ab:5d:9f:46:59:d2:16:8e:77:
9d:e0:ee:b4:8f:60:91:12:cc:63:0b:53:eb:d5:5e:67:cc:55:
c4:c4:db:e6:f7:56:43:b1:d1:2b:13:e6:67:aa:a1:e4:01:a2:
4c:fd:ea:ca:ae:b9:f9:51:2f:ca:09:89:2f:40:f2:02:f5:65:
55:57:05:ae:db:01:10:65:5b:fb:29:6a:b6:a4:dd:7c:4a:02:
c1:b3:5a:c9:ae:30:f1:92:20:ec:a7:31:b2:82:e3:16:07:ab:
a0:95:7d:dd:3b:43:64:a7:2f:31:32:7e:91:be:19:5f:1c:28:
3c:1a:5c:54:f9:21:3d:b0:c0:23:c1:71:c4:ae:05:55:4d:a8:
a5:18:96:74:bf:f9:64:d2:52:e5:2b:bc:da:44:e2:53:91:2c:
0c:38:78:4a:f4:69:83:76:44:8d:3b:26:dc:2f:71:f4:df:5f:
80:01:09:5f:24:9a:62:6d:fc:71:88:54:c7:cc:30:59:ed:80:
06:81:d7:0e:e4:c3:f1:75:a1:22:28:55:75:d2:a4:b9:fc:eb:
c0:08:85:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 26 14:17:46 2024 by rpki-client on console.sobornost.net