Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/059AF710163211F0AA4B7B72C4F9AE02.roa
File: 059AF710163211F0AA4B7B72C4F9AE02.roa (raw, json)
Hash identifier: udOFYlksW8o+in8/lSe33cTjL/N52LPMF+H/aNnDqV0=
Subject key identifier: 74:B3:DC:22:80:39:25:D1:CC:F9:56:A2:67:B5:8C:7F:F4:01:2F:CC
Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138
Certificate serial: 0313
Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/059AF710163211F0AA4B7B72C4F9AE02.roa
Signing time: Sun 20 Apr 2025 03:19:30 +0000
ROA not before: Sun 20 Apr 2025 03:19:30 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 834
IP address blocks: 202.155.140.0/24 maxlen: 24
202.155.141.0/24 maxlen: 24
202.155.142.0/24 maxlen: 24
218.33.80.0/22 maxlen: 24
218.33.92.0/22 maxlen: 24
218.33.100.0/22 maxlen: 24
218.33.124.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Apr 2025 23:26:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 787 (0x313)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9192C18, serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138
Validity
Not Before: Apr 20 03:19:30 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=680467c2-8544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:0c:45:9d:98:10:c3:6d:d2:39:5d:70:64:da:
e0:3c:04:f5:28:35:9d:66:c6:10:c0:b6:61:d7:b8:
c6:8a:eb:0b:77:22:6a:ad:d1:06:1f:46:3b:81:0c:
cd:d7:45:49:1e:c7:c4:0b:40:d1:29:44:58:41:ec:
82:15:bb:91:2d:b7:f3:cb:18:a1:59:4f:9f:79:21:
94:e5:d9:44:05:1e:03:fe:fc:ce:7f:18:1b:be:4e:
52:72:aa:d1:fd:74:10:cd:2f:28:bf:04:7b:30:fa:
66:0d:8a:c3:fe:2d:87:d7:c0:c3:07:ea:13:34:52:
ed:7e:d2:92:3f:c2:d0:69:b3:8c:27:59:68:20:be:
f4:d5:4d:cd:3f:5d:f9:01:ad:2d:02:9e:19:08:4f:
1a:ca:f0:14:65:ad:df:70:8b:fc:3e:17:96:fc:a2:
1f:89:22:23:ad:cf:44:54:28:97:d9:08:33:34:32:
18:94:3a:29:00:fd:5f:fa:ef:a3:a6:8c:4f:3f:01:
bd:d8:c4:28:0c:1a:64:53:e2:93:a2:3a:dd:bc:cc:
e2:f7:35:6d:06:85:22:1e:54:21:7d:92:ca:ee:b2:
90:d6:f8:fe:c8:b4:bc:f9:1c:a4:c8:a4:4c:ec:6e:
84:fa:06:74:03:02:77:2e:8d:b6:03:fc:c5:10:83:
01:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B3:DC:22:80:39:25:D1:CC:F9:56:A2:67:B5:8C:7F:F4:01:2F:CC
X509v3 Authority Key Identifier:
keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/059AF710163211F0AA4B7B72C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.155.140.0-202.155.142.255
218.33.80.0/22
218.33.92.0/22
218.33.100.0/22
218.33.124.0/22
Signature Algorithm: sha256WithRSAEncryption
94:05:60:c0:9d:19:1f:ba:78:a4:fe:f7:ef:2e:3f:03:ec:4b:
94:71:ef:4d:42:c8:3e:4b:29:cb:45:0a:ec:18:e6:25:52:3e:
67:b3:9e:23:3b:6c:5c:ab:8d:84:f8:2e:28:b8:7c:47:2d:ae:
d7:8b:c2:46:49:ac:98:95:6c:ab:c9:d8:46:59:4e:01:d9:d5:
7e:b3:de:9d:25:1e:76:8c:dd:dc:ec:3e:16:9f:f3:cf:77:30:
4f:47:4c:3b:36:30:b3:44:20:ad:e0:50:af:45:df:fa:73:ce:
4e:76:ed:24:3f:bc:41:3f:f4:04:11:08:7a:15:0e:a9:6f:bc:
bc:fc:38:c5:82:21:12:c0:e7:79:91:87:be:65:0b:e2:30:81:
d9:9c:19:55:88:b9:94:b4:7d:85:8f:cb:cb:45:75:85:59:56:
c0:1a:0b:72:88:66:16:0d:bc:fd:fa:88:7d:c4:fe:5c:e5:db:
0b:dd:c5:45:70:84:f3:8f:62:f0:dc:7d:13:6a:8c:c1:3a:ab:
d2:3f:64:5e:75:a5:30:5c:b6:55:c9:3e:d4:96:be:63:2d:a0:
9a:86:b4:d0:9e:07:b2:53:4f:86:d4:ab:b2:d3:73:15:16:50:
df:fd:7e:1f:80:45:ef:3f:91:90:4a:94:73:aa:cf:6e:af:47:
2a:36:72:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 04:18:24 2025 by rpki-client on console.sobornost.net