Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/AE9B05E2EF7411EF9646E84EC4F9AE02.roa
File: AE9B05E2EF7411EF9646E84EC4F9AE02.roa (raw, json)
Hash identifier: Xt8L9KDcuVYgWV5vych/cdYgNjgduMn7Bvo0q5ybYyw=
Subject key identifier: 56:82:9C:3D:E5:9F:1E:8E:7B:EE:25:EA:03:96:64:58:48:82:32:E6
Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264
Certificate serial: 0CA3
Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/AE9B05E2EF7411EF9646E84EC4F9AE02.roa
Signing time: Sat 01 Mar 2025 17:48:52 +0000
ROA not before: Sat 01 Mar 2025 17:48:52 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 133933
IP address blocks: 14.192.128.0/24 maxlen: 24
14.192.129.0/24 maxlen: 24
14.192.133.0/24 maxlen: 24
14.192.136.0/24 maxlen: 24
14.192.139.0/24 maxlen: 24
14.192.143.0/24 maxlen: 24
14.192.145.0/24 maxlen: 24
14.192.146.0/24 maxlen: 24
14.192.147.0/24 maxlen: 24
14.192.148.0/24 maxlen: 24
14.192.156.0/24 maxlen: 24
14.192.157.0/24 maxlen: 24
14.192.159.0/24 maxlen: 24
43.247.120.0/24 maxlen: 24
43.247.121.0/24 maxlen: 24
43.247.122.0/24 maxlen: 24
43.247.123.0/24 maxlen: 24
103.20.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Mar 2025 04:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3235 (0xca3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264
Validity
Not Before: Mar 1 17:48:52 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=67c34884-68fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:5e:15:65:7d:39:04:37:c5:06:ee:19:c2:a5:
92:6d:d0:32:63:06:70:30:d0:b8:ce:85:2d:2b:56:
d2:91:21:d5:a5:dc:1c:5c:72:26:7b:84:c3:30:ca:
8c:fc:8c:33:41:41:11:33:b9:8e:90:0a:e7:36:50:
fd:54:57:de:0e:06:0d:1a:37:75:26:a9:13:b7:e1:
de:15:12:a4:42:c1:ba:5e:49:83:5c:2c:61:55:dd:
df:b0:1f:33:99:55:8d:4e:46:ec:08:ba:b9:ff:22:
80:b6:38:c5:c1:a0:35:d1:8b:5b:97:48:a7:99:0e:
db:a3:3f:f1:bc:88:04:c5:81:2e:f0:33:59:1c:95:
58:4d:b1:b8:44:a4:89:39:ed:65:81:42:ea:5e:53:
d9:d4:bb:1c:7d:e6:31:02:ba:2c:5e:04:3e:fb:bb:
69:35:5f:97:03:e7:26:de:50:2c:de:bc:dd:4d:7e:
8b:81:a5:3e:8b:ea:fe:0d:3c:1a:2c:da:5b:66:a1:
3c:b6:e2:90:99:cf:22:13:c5:7c:20:c6:cc:68:0e:
aa:34:fc:31:e7:b5:79:1d:98:bc:9a:8a:b3:7c:86:
b5:df:98:4e:bf:21:b6:65:d9:4d:14:dd:df:dc:ae:
f6:a5:18:ed:1f:ed:5e:68:34:9d:d1:92:11:27:90:
f0:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:82:9C:3D:E5:9F:1E:8E:7B:EE:25:EA:03:96:64:58:48:82:32:E6
X509v3 Authority Key Identifier:
keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/AE9B05E2EF7411EF9646E84EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.192.128.0/23
14.192.133.0/24
14.192.136.0/24
14.192.139.0/24
14.192.143.0/24
14.192.145.0-14.192.148.255
14.192.156.0/23
14.192.159.0/24
43.247.120.0/22
103.20.134.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:82:0a:67:31:8f:0d:49:88:d9:cf:e3:06:57:f6:da:41:ce:
af:4c:41:0c:b9:02:aa:19:d4:2e:13:3e:5f:88:e0:a8:77:c4:
74:21:b5:6f:4d:3d:f4:02:84:b9:32:8c:e5:8f:5a:d5:82:fc:
4d:9c:23:ca:6b:34:5b:96:88:8b:aa:b4:76:f0:67:bc:70:3e:
f9:37:cc:45:d0:6a:1b:e6:7b:a9:e9:83:f2:2f:1b:bd:6c:68:
e7:5c:18:d7:07:c0:b2:96:5c:35:e6:6c:fe:d3:48:a9:c4:ca:
bc:93:2c:28:52:37:33:10:84:38:db:3a:47:be:5a:ce:1a:75:
37:55:6d:04:79:66:f9:34:9d:61:9a:20:1c:a5:37:26:a6:24:
fd:ae:20:e8:4b:f5:25:ae:ad:eb:90:7e:08:94:ff:d1:4d:78:
64:45:c5:ff:e2:a3:49:9b:1e:c9:7d:84:6b:70:4f:63:57:c7:
49:7f:d9:15:94:54:96:d8:a4:6e:1e:7c:36:3c:c8:21:b0:f5:
db:ab:5a:ef:0e:1e:1b:6f:55:49:fb:57:d2:ac:27:d5:85:d1:
d1:d0:b8:fb:4e:76:14:4b:be:5c:58:02:60:23:3f:79:14:aa:
87:fb:03:47:02:89:fb:a9:e8:3b:cc:8c:0a:4d:75:18:89:19:
57:37:a6:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:05:39 2025 by rpki-client