Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/0A44E7F6BBE411EF83F24166C4F9AE02.roa
File: 0A44E7F6BBE411EF83F24166C4F9AE02.roa (raw, json)
Hash identifier: +8QzJxHxerDaxAfsPzzDMUyXerf04wiuzK+mu8tRjPU=
Subject key identifier: 0C:DD:72:32:A0:FD:73:82:49:57:2B:B5:A1:50:13:10:F7:E3:D0:AB
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 2006
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/0A44E7F6BBE411EF83F24166C4F9AE02.roa
Signing time: Wed 18 Dec 2024 05:10:34 +0000
ROA not before: Wed 18 Dec 2024 05:10:34 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 103.11.63.0/24 maxlen: 24
103.151.26.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.209.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.211.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.214.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.223.0/24 maxlen: 24
113.203.229.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
113.203.255.0/24 maxlen: 24
115.167.6.0/24 maxlen: 24
115.167.16.0/22 maxlen: 24
115.167.31.0/24 maxlen: 24
115.167.48.0/24 maxlen: 24
115.167.64.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
115.167.118.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
175.110.81.0/24 maxlen: 24
175.110.82.0/24 maxlen: 24
175.110.83.0/24 maxlen: 24
175.110.97.0/24 maxlen: 24
175.110.98.0/24 maxlen: 24
175.110.99.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
175.110.107.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.110.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.164.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.176.0/22 maxlen: 22
180.178.180.0/24 maxlen: 24
180.178.181.0/24 maxlen: 24
180.178.182.0/24 maxlen: 24
180.178.183.0/24 maxlen: 24
180.178.184.0/22 maxlen: 22
180.178.185.0/24 maxlen: 24
180.178.186.0/24 maxlen: 24
180.178.187.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Dec 2024 11:23:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8198 (0x2006)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 18 05:10:34 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6762594a-bd0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e1:a3:55:ee:7e:3b:59:0a:a1:16:35:7d:3b:
4a:30:11:41:4e:46:0d:a7:19:ac:be:92:0d:a3:f7:
ba:d3:f4:55:3e:16:48:01:63:e6:6a:10:f3:0a:2c:
2d:ef:cf:a2:26:a8:9a:5e:4e:75:b3:82:51:fb:65:
18:aa:47:bf:f3:3b:8f:6b:2f:d8:45:ba:5b:04:8e:
e4:37:75:c2:b2:f8:2f:46:d7:55:24:ec:c2:46:06:
a3:fe:8d:65:cd:dd:92:d1:31:2f:8f:c7:e0:8d:1e:
ce:63:83:50:83:d1:d1:7f:f4:d8:17:e3:31:8f:c6:
66:3e:fe:eb:bb:4e:59:50:b0:3a:4a:f1:c7:c8:2f:
1f:89:b1:81:3a:ae:a1:62:f4:18:18:77:9b:73:9f:
71:e3:c0:67:25:19:56:1b:b2:0b:f5:6c:e4:12:24:
86:cf:96:32:c2:a3:b0:de:b7:db:1e:52:dc:82:96:
e8:c0:44:15:b7:55:99:b0:26:76:cf:04:df:95:73:
63:80:6d:65:3a:2a:1a:6a:05:e1:8b:1b:1d:b3:34:
c9:98:2e:94:fe:4b:ef:42:7a:8c:fb:eb:9b:54:70:
0f:3b:e6:db:89:b5:4b:a0:07:dd:7a:88:ff:6e:33:
cd:a7:dc:8e:d1:68:0d:b9:ed:8b:51:b1:20:27:c8:
30:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:DD:72:32:A0:FD:73:82:49:57:2B:B5:A1:50:13:10:F7:E3:D0:AB
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/0A44E7F6BBE411EF83F24166C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.63.0/24
103.151.26.0/24
113.203.208.0-113.203.220.255
113.203.222.0/23
113.203.229.0-113.203.231.255
113.203.241.0-113.203.242.255
113.203.248.0/24
113.203.253.0/24
113.203.255.0/24
115.167.6.0/24
115.167.16.0/22
115.167.31.0/24
115.167.48.0/24
115.167.64.0/24
115.167.66.0/24
115.167.118.0/24
115.167.124.0/24
175.110.81.0-175.110.83.255
175.110.97.0-175.110.99.255
175.110.104.0/22
175.110.109.0-175.110.110.255
180.178.142.0/24
180.178.144.0/24
180.178.146.0-180.178.150.255
180.178.160.0-180.178.164.255
180.178.166.0/24
180.178.169.0-180.178.171.255
180.178.176.0/20
202.92.26.0/24
223.29.225.0/24
223.29.239.0/24
Signature Algorithm: sha256WithRSAEncryption
33:d6:78:0f:f3:41:26:38:2f:06:f2:93:b2:30:92:ae:3d:06:
6d:25:2c:43:41:86:d5:bf:f1:4f:a8:a4:e2:e9:d6:3a:aa:f5:
55:4e:e3:0d:be:87:63:a4:24:e0:06:c7:cb:6f:3b:b6:33:98:
74:98:72:8e:39:9b:dd:75:22:c9:63:2e:a1:d8:01:c4:f0:e1:
c1:2e:89:a6:73:6f:54:0d:ba:b6:21:4d:69:6a:ca:e0:e5:4c:
86:77:a5:0c:e8:9c:f3:e4:cc:d2:4e:bb:ea:41:b5:77:48:6a:
69:9b:26:c5:dc:16:cc:04:85:0d:d7:43:b9:7d:97:28:48:b4:
f5:56:c3:1b:a7:3d:b4:64:60:4d:c7:8f:2a:d9:72:c4:4c:61:
6f:87:04:e7:df:49:ee:40:24:65:6a:5f:b6:4a:e4:d6:b3:ba:
b1:b0:8d:25:02:60:35:8b:c9:18:50:2b:54:52:44:d1:02:54:
9e:bf:01:60:ab:42:99:34:9d:48:e2:1a:77:6e:68:de:23:8b:
7c:98:55:57:c3:fc:6e:a4:6a:90:3f:7e:bb:0c:df:23:99:b0:
e3:02:2d:aa:69:6e:08:49:f4:0c:c1:38:b0:d8:6c:74:98:c2:
cd:6f:59:8e:97:b2:aa:3d:4b:d1:b2:7c:3c:f6:7d:73:86:25:
30:87:da:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:09:54 2025 by rpki-client