Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/25AEF904D01011EC9C4BAE3BC4F9AE02.roa
File: 25AEF904D01011EC9C4BAE3BC4F9AE02.roa (raw, json)
Hash identifier: VgPcBhMI29Fjq4PZ3UQE86qyuA/czOnwXi/u0NNP4/s=
Subject key identifier: 75:8C:55:EA:7A:42:D6:7D:4C:5B:07:2E:1D:2A:E2:75:D8:F0:CB:37
Certificate issuer: /CN=A91AA48F/serialNumber=BE0E7A890F7281C654632E8BE80EBBF9FFB56503
Certificate serial: 335E
Authority key identifier: BE:0E:7A:89:0F:72:81:C6:54:63:2E:8B:E8:0E:BB:F9:FF:B5:65:03
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/25AEF904D01011EC9C4BAE3BC4F9AE02.roa
Signing time: Mon 28 Aug 2023 14:50:38 +0000
ROA not before: Mon 28 Aug 2023 14:50:38 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 45143
IP address blocks: 14.100.128.0/17 maxlen: 17
14.100.133.0/24 maxlen: 24
14.100.137.0/24 maxlen: 24
111.65.31.0/24 maxlen: 24
111.65.32.0/24 maxlen: 24
111.65.33.0/24 maxlen: 24
111.65.34.0/24 maxlen: 24
111.65.35.0/24 maxlen: 24
111.65.36.0/24 maxlen: 24
111.65.37.0/24 maxlen: 24
111.65.38.0/24 maxlen: 24
111.65.39.0/24 maxlen: 24
111.65.40.0/24 maxlen: 24
111.65.41.0/24 maxlen: 24
111.65.42.0/24 maxlen: 24
111.65.43.0/24 maxlen: 24
111.65.44.0/24 maxlen: 24
111.65.45.0/24 maxlen: 24
111.65.46.0/24 maxlen: 24
111.65.47.0/24 maxlen: 24
111.65.48.0/24 maxlen: 24
111.65.49.0/24 maxlen: 24
111.65.50.0/24 maxlen: 24
111.65.51.0/24 maxlen: 24
111.65.52.0/24 maxlen: 24
111.65.53.0/24 maxlen: 24
111.65.54.0/24 maxlen: 24
111.65.55.0/24 maxlen: 24
111.65.56.0/24 maxlen: 24
111.65.57.0/24 maxlen: 24
111.65.58.0/24 maxlen: 24
111.65.59.0/24 maxlen: 24
111.65.60.0/24 maxlen: 24
111.65.61.0/24 maxlen: 24
111.65.62.0/24 maxlen: 24
111.65.63.0/24 maxlen: 24
111.65.64.0/24 maxlen: 24
111.65.65.0/24 maxlen: 24
111.65.66.0/24 maxlen: 24
111.65.67.0/24 maxlen: 24
111.65.68.0/24 maxlen: 24
111.65.69.0/24 maxlen: 24
111.65.70.0/24 maxlen: 24
111.65.71.0/24 maxlen: 24
111.65.72.0/24 maxlen: 24
111.65.73.0/24 maxlen: 24
111.65.74.0/24 maxlen: 24
111.65.75.0/24 maxlen: 24
111.65.76.0/24 maxlen: 24
111.65.77.0/24 maxlen: 24
111.65.78.0/24 maxlen: 24
111.65.79.0/24 maxlen: 24
119.234.0.0/16 maxlen: 16
119.234.3.0/24 maxlen: 24
119.234.4.0/22 maxlen: 22
119.234.4.0/24 maxlen: 24
119.234.5.0/24 maxlen: 24
119.234.6.0/24 maxlen: 24
119.234.7.0/24 maxlen: 24
119.234.8.0/21 maxlen: 21
119.234.8.0/24 maxlen: 24
119.234.9.0/24 maxlen: 24
119.234.10.0/24 maxlen: 24
119.234.11.0/24 maxlen: 24
119.234.16.0/20 maxlen: 20
119.234.32.0/19 maxlen: 19
119.234.64.0/18 maxlen: 18
119.234.128.0/17 maxlen: 17
180.255.128.0/17 maxlen: 17
180.255.129.0/24 maxlen: 24
180.255.254.0/24 maxlen: 24
180.255.255.0/24 maxlen: 24
202.78.56.0/24 maxlen: 24
202.78.57.0/24 maxlen: 24
202.78.58.0/24 maxlen: 24
2400:1c00:1::/48 maxlen: 48
2400:1c00:2::/48 maxlen: 48
2400:1c00:3::/48 maxlen: 48
2400:1c00:4::/48 maxlen: 48
2400:1c00:b::/48 maxlen: 48
2400:1c00:c::/48 maxlen: 48
2400:1c00:1a::/48 maxlen: 48
2400:1c00:1b::/48 maxlen: 48
2400:1c00:1c::/48 maxlen: 48
2400:1c00:1e::/48 maxlen: 48
2400:1c00:1f::/48 maxlen: 48
2400:1c00:20::/44 maxlen: 44
2400:1c00:30::/44 maxlen: 44
2400:1c00:40::/44 maxlen: 44
2400:1c00:50::/44 maxlen: 44
2400:1c00:64::/48 maxlen: 48
2400:1c00:66::/48 maxlen: 48
2400:1c00:70::/44 maxlen: 44
2400:1c00:80::/43 maxlen: 43
2400:1c00:a0::/43 maxlen: 43
2400:1c00:f0::/44 maxlen: 44
2400:1c00:100::/44 maxlen: 44
2400:1c00:110::/44 maxlen: 44
2400:1c00:120::/44 maxlen: 44
2400:1c00:130::/44 maxlen: 44
2400:1c00:140::/44 maxlen: 44
2400:1c00:150::/44 maxlen: 44
2400:1c00:160::/44 maxlen: 44
2400:1c00:190::/44 maxlen: 44
2400:1c00:1a0::/44 maxlen: 44
2400:1c00:1b0::/44 maxlen: 44
2400:1c00:1d0::/44 maxlen: 44
2400:1c00:1e0::/44 maxlen: 44
2400:1c00:220::/44 maxlen: 44
2400:1c00:230::/44 maxlen: 44
2400:1c00:310::/45 maxlen: 45
2400:1c00:318::/45 maxlen: 45
Validation: Failed, certificate revoked on Sat 01 Jun 2024 08:20:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13150 (0x335e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91AA48F/serialNumber=BE0E7A890F7281C654632E8BE80EBBF9FFB56503
Validity
Not Before: Aug 28 14:50:38 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=64ecb43e-c809
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f9:b2:f8:43:08:c7:67:d3:fb:e2:06:6a:c2:
9e:a3:22:81:3c:89:85:0f:06:52:62:b1:a0:d2:42:
b2:1e:75:a6:56:c9:d7:0f:93:d5:48:92:b2:a1:3c:
9c:11:0c:1d:02:81:71:38:4c:99:2e:7e:e2:55:fc:
52:3e:c9:f6:c5:45:6c:38:ec:bf:65:b6:31:9c:17:
f8:ad:56:c9:fe:e4:da:29:3a:60:34:10:e4:0b:7d:
c3:41:26:45:f4:2a:58:73:30:ec:69:93:a9:38:19:
db:6d:98:a4:9c:ce:94:0a:5b:ca:26:a8:f2:99:50:
8c:40:dc:8d:d0:e3:3e:23:d2:0f:0d:5a:b9:77:72:
f4:de:19:b1:fa:82:01:c4:7f:a7:ac:b0:71:fb:b7:
4a:92:84:9c:b9:34:7f:4e:5c:be:79:82:a8:37:17:
6b:2e:f7:fd:07:7b:dd:ca:a3:e3:1c:98:e5:ec:2b:
79:33:47:db:51:fe:1c:ce:68:6c:bb:67:87:a7:8c:
0f:9d:ba:07:a9:c8:44:67:fe:5d:30:4c:04:94:5d:
97:72:40:ee:7c:d2:a1:4c:f5:4f:7c:74:69:db:0c:
39:ff:1f:e4:ff:8a:ca:2f:24:47:79:58:f5:02:b5:
33:ea:8e:4b:cc:8b:83:64:49:55:9a:70:11:a9:5e:
ee:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:8C:55:EA:7A:42:D6:7D:4C:5B:07:2E:1D:2A:E2:75:D8:F0:CB:37
X509v3 Authority Key Identifier:
keyid:BE:0E:7A:89:0F:72:81:C6:54:63:2E:8B:E8:0E:BB:F9:FF:B5:65:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vg56iQ9ygcZUYy6L6A67-f-1ZQM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA48F/8C81A8561D8D11E2866C50EB08B02CD2/25AEF904D01011EC9C4BAE3BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.100.128.0/17
111.65.31.0-111.65.79.255
119.234.0.0/16
180.255.128.0/17
202.78.56.0-202.78.58.255
IPv6:
2400:1c00:1::-2400:1c00:4:ffff:ffff:ffff:ffff:ffff
2400:1c00:b::-2400:1c00:c:ffff:ffff:ffff:ffff:ffff
2400:1c00:1a::-2400:1c00:1c:ffff:ffff:ffff:ffff:ffff
2400:1c00:1e::-2400:1c00:5f:ffff:ffff:ffff:ffff:ffff
2400:1c00:64::/48
2400:1c00:66::/48
2400:1c00:70::-2400:1c00:bf:ffff:ffff:ffff:ffff:ffff
2400:1c00:f0::-2400:1c00:16f:ffff:ffff:ffff:ffff:ffff
2400:1c00:190::-2400:1c00:1bf:ffff:ffff:ffff:ffff:ffff
2400:1c00:1d0::-2400:1c00:1ef:ffff:ffff:ffff:ffff:ffff
2400:1c00:220::/43
2400:1c00:310::/44
Signature Algorithm: sha256WithRSAEncryption
3c:95:85:a0:c1:59:42:99:7d:5a:2d:8b:74:ce:bc:68:f7:8e:
f8:87:01:a5:b6:3e:75:e0:4b:64:d4:09:ef:00:c6:ac:e6:99:
fd:86:fc:27:d5:54:05:ba:cf:98:21:48:d0:1f:d5:f0:aa:b1:
05:4c:e0:05:48:55:fb:01:20:06:25:2f:20:cd:28:84:59:88:
ef:6c:cb:8b:44:99:03:9c:ac:8a:ac:1c:f8:48:00:f6:4d:32:
31:f5:c3:5b:b2:50:da:a5:05:a9:08:db:db:97:ed:75:2d:f1:
a1:39:59:0b:d2:6a:82:c8:3d:89:78:4f:e5:45:8b:35:35:43:
f0:60:ff:f6:57:d8:28:13:37:b8:ff:cb:df:08:55:20:0c:1e:
60:4c:35:47:98:41:9b:79:19:75:7a:93:e6:23:1b:6c:b6:38:
1b:af:6e:90:87:87:81:24:b6:73:cf:bf:8d:76:44:3d:5e:60:
37:f9:5a:7f:cc:0a:e1:12:f1:d3:9e:6d:fc:2a:13:9a:46:5c:
eb:12:6f:bc:47:8b:24:6e:6b:9d:01:ce:1d:74:11:6e:1f:ee:
75:77:31:10:88:9b:0b:34:f4:9b:5c:11:6e:d2:f1:e7:0a:18:
40:0e:7f:31:51:e0:9a:27:1c:0b:dd:d5:36:4b:53:68:c7:a6:
1f:6d:07:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 15:32:47 2024 by rpki-client on console.sobornost.net