Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/0E8A885CB14011EEAB75E047C4F9AE02.roa
File: 0E8A885CB14011EEAB75E047C4F9AE02.roa (raw, json)
Hash identifier: mX4SMLLV0Bui3w5tmo+mDxvCoPvX4n21nDJWaLRocMU=
Subject key identifier: EE:6C:C1:7B:14:4D:A8:89:C5:94:EB:29:5E:4C:9E:C8:91:F4:FC:40
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0F77
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/0E8A885CB14011EEAB75E047C4F9AE02.roa
Signing time: Fri 12 Jan 2024 11:45:18 +0000
ROA not before: Fri 12 Jan 2024 11:45:18 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 103.11.61.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.229.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.254.0/24 maxlen: 24
113.203.255.0/24 maxlen: 24
180.178.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jan 2024 13:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3959 (0xf77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jan 12 11:45:18 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65a1264d-73b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:4b:14:24:76:ea:bf:9c:a2:e0:f9:8a:65:23:
c7:eb:24:4f:41:26:6f:b4:67:e2:74:5b:ad:59:8a:
67:b8:e4:4b:99:62:bc:7b:f1:1a:bd:c5:8d:22:e2:
5d:39:fe:f0:b0:e4:78:01:52:f0:58:aa:d2:eb:0f:
1f:c4:16:57:8d:3d:65:fa:ab:25:7c:41:2f:aa:33:
a3:79:0e:df:59:0f:4b:73:39:30:8a:71:75:59:75:
45:db:5b:95:b9:7e:12:70:ae:b9:0f:6d:f0:12:8b:
f7:24:3b:47:38:e9:07:75:07:51:69:e4:60:31:55:
94:7a:dd:f0:03:30:90:80:e8:a0:9d:77:9c:c5:1c:
86:a6:28:8c:4b:96:8a:fc:be:10:cd:65:d8:c6:cb:
b2:27:97:e0:2f:6d:80:e1:b5:fb:46:79:6e:b7:a1:
aa:2d:00:36:3a:55:72:a2:20:a7:48:cc:b0:a6:c8:
f6:48:68:74:75:6d:e9:dd:a9:56:22:58:15:46:5d:
ed:f3:54:8a:70:b1:97:e4:0a:65:ab:1a:b0:d2:5f:
1b:47:5d:4e:fd:f6:9c:a8:34:d0:3d:ea:51:96:59:
7e:74:ea:30:6f:ed:4e:09:cc:72:43:26:66:f3:d4:
90:f9:8d:73:3f:5e:a7:c3:8a:ed:24:70:d5:dc:a8:
3e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:6C:C1:7B:14:4D:A8:89:C5:94:EB:29:5E:4C:9E:C8:91:F4:FC:40
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/0E8A885CB14011EEAB75E047C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.61.0/24
113.203.210.0/24
113.203.228.0/23
113.203.244.0/24
113.203.254.0/23
180.178.165.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:22:7a:a6:d4:51:5b:ae:9a:42:bd:e3:80:9b:18:0d:62:80:
9b:ba:1d:4e:88:a3:8b:3b:ca:13:a1:a8:c4:0d:a4:b4:28:21:
ee:c0:de:7b:ec:f7:e8:49:65:48:df:d7:09:a5:c4:4d:db:25:
51:27:71:e1:c2:a5:ce:7d:d3:2b:40:b2:aa:97:e3:5e:35:98:
dc:ae:85:24:b2:ec:a6:a2:c3:63:c8:cf:11:9c:65:b4:f7:3d:
a6:ca:a3:f2:76:1c:17:16:c7:82:70:bb:31:94:fa:d5:6b:d2:
c5:df:30:76:d3:f7:b2:b2:80:03:9c:78:60:1c:29:41:fc:3a:
62:fc:b8:16:00:46:62:48:2a:55:a4:95:5c:39:41:e1:09:b9:
4c:0e:25:95:68:db:26:d5:da:99:64:19:7b:0b:b1:01:40:ee:
42:38:07:b2:79:6f:13:e9:1c:6a:e2:0a:50:61:91:0a:e0:43:
38:5b:d9:d1:24:ba:ec:d0:02:dd:24:d2:f1:05:3c:b8:e7:02:
cc:b9:00:b9:3a:91:0c:7b:de:31:e8:b2:ac:46:b4:7c:63:f5:
e9:82:43:ba:80:ab:83:e4:51:74:e6:3c:9e:5e:d9:bd:97:49:
fc:57:4a:49:8c:7d:af:40:88:e8:ae:a5:7f:6c:8b:3e:28:48:
b1:34:2e:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 16 16:09:57 2024 by rpki-client on console-fra.rpki-client.org