Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/742C4068507A11EF9966F237C4F9AE02.roa
File: 742C4068507A11EF9966F237C4F9AE02.roa (raw, json)
Hash identifier: 8gLv1fiH1fwhZXTTSaNGkw9bQl9RxIdhyvZ6E4DGswo=
Subject key identifier: 63:0D:08:27:54:25:99:6D:9B:1C:34:D7:7B:7D:C4:1A:54:29:41:D7
Certificate issuer: /CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37
Certificate serial: 346C
Authority key identifier: 1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/742C4068507A11EF9966F237C4F9AE02.roa
Signing time: Fri 02 Aug 2024 02:55:58 +0000
ROA not before: Fri 02 Aug 2024 02:55:58 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 198949
IP address blocks: 45.119.92.0/24 maxlen: 24
45.119.93.0/24 maxlen: 24
45.119.94.0/24 maxlen: 24
45.119.95.0/24 maxlen: 24
45.127.0.0/24 maxlen: 24
45.127.1.0/24 maxlen: 24
45.127.2.0/24 maxlen: 24
45.127.3.0/24 maxlen: 24
103.214.76.0/24 maxlen: 24
103.214.77.0/24 maxlen: 24
103.214.78.0/24 maxlen: 24
103.214.79.0/24 maxlen: 24
202.128.224.0/24 maxlen: 24
202.128.225.0/24 maxlen: 24
202.128.227.0/24 maxlen: 24
202.128.228.0/24 maxlen: 24
202.128.229.0/24 maxlen: 24
202.128.230.0/24 maxlen: 24
202.128.231.0/24 maxlen: 24
202.128.234.0/24 maxlen: 24
202.128.235.0/24 maxlen: 24
202.128.236.0/24 maxlen: 24
202.128.237.0/24 maxlen: 24
202.128.238.0/24 maxlen: 24
202.128.239.0/24 maxlen: 24
202.128.240.0/24 maxlen: 24
202.128.241.0/24 maxlen: 24
202.128.242.0/24 maxlen: 24
202.128.243.0/24 maxlen: 24
202.128.244.0/24 maxlen: 24
202.128.245.0/24 maxlen: 24
202.128.246.0/24 maxlen: 24
202.128.247.0/24 maxlen: 24
202.128.248.0/24 maxlen: 24
202.128.249.0/24 maxlen: 24
202.128.250.0/24 maxlen: 24
202.128.251.0/24 maxlen: 24
202.128.252.0/24 maxlen: 24
202.128.253.0/24 maxlen: 24
202.128.254.0/24 maxlen: 24
202.181.252.0/24 maxlen: 24
202.181.253.0/24 maxlen: 24
202.181.254.0/24 maxlen: 24
202.181.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Aug 2024 03:13:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13420 (0x346c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C9D76/serialNumber=1E5A6321B11AA0846FA89BF139BCECDBAD38BE37
Validity
Not Before: Aug 2 02:55:58 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=66ac4abe-f2b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:69:00:a0:96:fe:41:ca:04:6f:e8:fb:b2:25:
21:49:c4:64:f9:df:e5:47:60:82:ad:11:8d:a2:bf:
5e:51:bd:02:23:6d:af:f9:aa:e9:9e:7f:c5:36:3c:
3d:38:d7:e9:bc:42:cd:2c:d4:fb:be:46:aa:40:2a:
dd:f2:f0:1b:b9:58:5e:fc:88:b1:dd:bd:50:a6:1c:
32:7e:2c:27:e1:95:8d:01:24:76:6b:54:ec:85:c4:
3f:4e:25:1e:07:3b:cd:8b:4f:67:ca:58:72:ca:30:
95:60:5c:4b:08:40:b8:11:81:8e:07:36:1f:88:bf:
2f:de:1c:f9:43:db:2a:e8:90:6e:3b:02:93:06:28:
be:f3:db:f9:b9:d8:2a:e5:9b:e2:c4:37:af:c9:93:
13:09:c0:0f:8c:18:2d:e2:bf:cf:aa:1b:52:3f:0b:
ae:e6:e8:ee:99:ee:25:0a:aa:76:7d:72:2f:6d:67:
be:3e:fb:4b:e2:db:22:fe:83:f2:b4:e5:b6:46:36:
4c:4a:bc:bc:17:43:ea:b6:71:29:dc:f9:3d:81:c2:
30:99:9d:57:6c:70:2e:e6:0c:a4:77:53:3b:8d:7c:
a3:bc:c4:7a:f8:78:b4:86:dc:4a:72:b4:cf:27:a1:
9c:b0:e8:6a:10:12:b3:8c:4b:da:75:ce:de:66:4f:
74:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:0D:08:27:54:25:99:6D:9B:1C:34:D7:7B:7D:C4:1A:54:29:41:D7
X509v3 Authority Key Identifier:
keyid:1E:5A:63:21:B1:1A:A0:84:6F:A8:9B:F1:39:BC:EC:DB:AD:38:BE:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/HlpjIbEaoIRvqJvxObzs2604vjc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlpjIbEaoIRvqJvxObzs2604vjc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9D76/6287A1141D6911E288ABA9A608B02CD2/742C4068507A11EF9966F237C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.119.92.0/22
45.127.0.0/22
103.214.76.0/22
202.128.224.0/23
202.128.227.0-202.128.231.255
202.128.234.0-202.128.254.255
202.181.252.0/22
Signature Algorithm: sha256WithRSAEncryption
46:cf:79:a3:29:eb:b4:e5:0d:d0:0e:dc:d9:d6:46:0d:5b:b5:
40:67:1d:51:86:64:1a:c5:25:94:cc:51:3e:12:3b:5f:fa:3c:
fc:02:57:bd:4e:5e:1a:59:63:07:07:13:0f:9b:5e:a6:9e:95:
35:f6:48:13:ab:6d:d0:5b:c4:c0:d5:2a:47:86:3e:4a:21:44:
87:26:6b:d2:6e:8c:38:ec:86:5c:a1:78:3b:b8:5b:31:b2:f8:
02:49:6e:e9:02:c3:d2:96:ae:90:05:cb:60:8b:0d:b7:f9:08:
72:c2:72:59:8b:34:59:51:c2:d0:6f:80:f9:03:45:21:ce:61:
58:90:40:4a:23:ad:12:4a:b2:4a:fb:a5:61:90:7a:0d:6a:8d:
4e:42:12:9e:6f:ae:91:a8:d5:f6:74:06:5d:b3:eb:e4:46:9c:
21:e6:36:ed:15:ef:e4:40:76:a4:f4:d2:a4:dc:ca:05:fc:d5:
44:ef:5c:be:4a:c3:87:fd:12:1b:f2:19:8c:ac:d1:38:d4:a1:
eb:94:57:9e:1e:9c:07:24:44:35:6a:21:d1:03:62:c2:36:7c:
46:80:44:a6:b1:14:9f:dd:79:52:21:bf:a0:17:bf:1c:bb:fc:
d9:ad:c4:c2:2c:e3:89:6c:de:62:dc:6f:de:ed:f9:62:9c:c2:
ed:2f:69:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 05:45:08 2024 by rpki-client on console.sobornost.net