Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/96C08AD8D59711EFAA02A50FC4F9AE02.roa
File: 96C08AD8D59711EFAA02A50FC4F9AE02.roa (raw, json)
Hash identifier: 7a1+kOcfBHSoyMXFfRJQpT5izMS8OlspnqJwlUbx1Bw=
Subject key identifier: 37:F7:19:CB:F0:13:49:1E:38:31:2F:E0:7B:D2:1C:D1:46:E0:2E:52
Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264
Certificate serial: 0C28
Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/96C08AD8D59711EFAA02A50FC4F9AE02.roa
Signing time: Mon 27 Jan 2025 12:03:32 +0000
ROA not before: Mon 27 Jan 2025 12:03:32 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 45814
IP address blocks: 14.192.128.0/24 maxlen: 24
14.192.129.0/24 maxlen: 24
14.192.131.0/24 maxlen: 24
14.192.133.0/24 maxlen: 24
14.192.136.0/24 maxlen: 24
14.192.137.0/24 maxlen: 24
14.192.143.0/24 maxlen: 24
14.192.144.0/24 maxlen: 24
14.192.145.0/24 maxlen: 24
14.192.146.0/24 maxlen: 24
14.192.147.0/24 maxlen: 24
14.192.148.0/24 maxlen: 24
14.192.149.0/24 maxlen: 24
14.192.150.0/24 maxlen: 24
14.192.151.0/24 maxlen: 24
14.192.155.0/24 maxlen: 24
14.192.156.0/24 maxlen: 24
14.192.157.0/24 maxlen: 24
14.192.158.0/24 maxlen: 24
14.192.159.0/24 maxlen: 24
43.247.120.0/24 maxlen: 24
43.247.121.0/24 maxlen: 24
43.247.122.0/24 maxlen: 24
103.20.132.0/24 maxlen: 24
103.20.134.0/24 maxlen: 24
103.20.135.0/24 maxlen: 24
2403:7980::/32 maxlen: 32
2403:7980::/36 maxlen: 36
Validation: Failed, certificate revoked on Wed 29 Jan 2025 21:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3112 (0xc28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264
Validity
Not Before: Jan 27 12:03:32 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=67977614-cd4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7d:4e:12:dd:c6:71:f3:72:cc:06:ea:35:c3:
b1:18:6d:63:5d:c2:4c:85:b7:38:ff:5f:ed:0f:00:
4c:e0:ce:cd:a0:b6:12:a8:d0:c1:5d:50:8d:9a:7a:
c4:64:22:f8:9c:5b:f1:04:08:21:f3:02:d9:74:05:
13:63:65:10:7b:6c:86:44:79:83:d7:9f:99:ab:b8:
4c:ee:5f:f1:1e:ad:7e:e5:2c:bd:ae:eb:43:f0:30:
49:6c:95:58:7d:ff:1e:7c:d6:08:b7:47:50:b6:34:
82:e6:75:55:41:6d:02:82:b8:3d:5c:1a:d1:ef:d5:
5c:77:d2:fd:cf:2d:16:5e:b8:a3:b3:a4:5a:e7:40:
0d:73:47:6b:07:17:aa:66:26:eb:48:c6:43:e0:a5:
ad:6b:8d:b3:a0:7b:74:db:0c:b0:a6:9f:6c:86:dd:
ec:44:ee:16:45:5c:f1:2f:b9:ff:1c:0c:b4:15:9a:
f6:03:f1:a4:11:19:47:81:60:34:1f:d3:2f:40:a2:
23:bf:cc:65:4c:f7:6c:06:54:24:71:b2:39:05:ab:
5d:e3:74:45:09:85:46:8c:4f:d4:cc:ca:7c:5c:3a:
28:ac:02:75:1b:5f:3b:b9:48:4b:4a:93:cc:8d:55:
d6:86:78:8c:89:87:00:9d:a4:c3:ac:07:28:3f:2c:
72:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F7:19:CB:F0:13:49:1E:38:31:2F:E0:7B:D2:1C:D1:46:E0:2E:52
X509v3 Authority Key Identifier:
keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/96C08AD8D59711EFAA02A50FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.192.128.0/23
14.192.131.0/24
14.192.133.0/24
14.192.136.0/23
14.192.143.0-14.192.151.255
14.192.155.0-14.192.159.255
43.247.120.0-43.247.122.255
103.20.132.0/24
103.20.134.0/23
IPv6:
2403:7980::/32
Signature Algorithm: sha256WithRSAEncryption
0d:e0:d6:4b:c7:33:19:e9:f5:9b:7e:e3:02:9e:0b:35:49:50:
f8:fe:f6:1f:dc:50:eb:fb:a1:b7:5b:9e:85:eb:3c:ee:a1:eb:
0b:7f:9f:63:9b:29:76:88:51:d5:85:e6:b5:58:01:5a:78:79:
f5:d7:87:09:90:cc:9f:2e:37:e6:de:67:79:e6:74:01:a2:a0:
a1:ec:db:79:b1:07:3b:eb:16:aa:68:1d:24:e1:48:6e:48:e0:
f5:b2:68:43:6f:90:b0:c4:d4:ae:b1:a4:c7:45:17:bc:24:c5:
0c:9c:a3:f5:2a:1a:47:bf:19:5d:47:ac:81:16:86:01:e3:3e:
4c:0f:51:0c:2e:90:1d:86:c5:f1:a4:72:9a:91:78:f6:6a:4d:
6a:34:7e:d1:d9:f2:5a:38:f7:78:02:fe:9c:24:e8:7e:df:26:
31:0e:7b:f6:5a:fe:8a:92:a1:31:fe:77:b9:5b:11:47:a0:1f:
c8:d1:ab:33:ed:48:b7:47:35:e8:71:b1:b4:a6:3c:5c:66:2f:
c7:e6:8b:2a:a9:91:d3:a4:ea:b3:b9:0e:fd:d0:e0:47:51:e2:
78:38:49:37:33:d3:7a:34:2c:2c:4c:47:5e:5d:c1:35:3e:47:
65:e1:83:c7:b4:2c:2c:f5:8b:66:22:ae:25:a9:94:d2:1f:cb:
dd:71:d5:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 04:33:47 2025 by rpki-client