Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/126C7EC8E51811EF8FDF5949C4F9AE02.roa
File: 126C7EC8E51811EF8FDF5949C4F9AE02.roa (raw, json)
Hash identifier: aIRDITvYa7NxVmp8t0TVDLlrvFeXPmw+uiGTF8r4Axs=
Subject key identifier: 5A:4F:F1:D3:2A:94:EA:07:46:B8:A9:24:48:0D:84:00:E3:C6:0E:0D
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 2287
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/126C7EC8E51811EF8FDF5949C4F9AE02.roa
Signing time: Fri 07 Feb 2025 05:55:02 +0000
ROA not before: Fri 07 Feb 2025 05:55:02 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 16589
IP address blocks: 113.203.243.0/24 maxlen: 24
115.167.119.0/24 maxlen: 24
115.167.122.0/24 maxlen: 24
175.110.89.0/24 maxlen: 24
202.92.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Feb 2025 06:28:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8839 (0x2287)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Feb 7 05:55:02 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67a5a036-ad87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f5:f2:fc:e8:54:70:cd:93:06:02:1a:9a:bf:
66:5b:46:58:2b:34:c3:14:86:80:e5:98:1f:db:4d:
2b:ec:ac:7c:23:32:2a:7f:78:c2:9f:e0:57:1b:be:
7f:5f:02:61:24:bf:b3:25:57:c1:e8:8a:ef:f1:cf:
85:03:d2:e5:c5:14:3e:c6:3c:27:c2:c0:d1:fd:65:
43:16:ad:fb:90:76:f5:f1:fe:3c:ab:98:30:a4:4d:
6a:c0:f5:bc:1c:b8:a8:8e:eb:59:69:9a:b8:86:f0:
d1:4f:17:60:9b:7d:d6:11:d3:ce:97:57:f4:75:a6:
c0:04:ea:5e:27:af:f3:53:67:0b:d8:5b:59:72:ca:
99:e7:08:2a:e6:0d:ea:ba:c4:8c:5c:fa:1b:1b:e1:
d2:da:15:0d:7b:17:16:3c:1b:62:dd:3f:80:7d:7d:
4e:bc:3b:d9:65:88:c4:15:b0:4c:f3:f9:f6:d9:ae:
36:a1:22:62:7f:19:bd:27:c3:28:18:d5:8d:e1:e9:
d4:5b:8c:e6:d1:fa:e2:25:b4:73:b3:2b:b4:9a:bc:
06:f6:29:19:62:8a:a3:44:11:1e:f4:8e:f0:fc:de:
73:03:3a:36:da:e0:f3:c4:57:5d:ea:76:ec:67:d3:
8e:cc:a4:69:25:03:52:ce:7e:0c:48:69:e0:10:61:
1e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:4F:F1:D3:2A:94:EA:07:46:B8:A9:24:48:0D:84:00:E3:C6:0E:0D
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/126C7EC8E51811EF8FDF5949C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.243.0/24
115.167.119.0/24
115.167.122.0/24
175.110.89.0/24
202.92.18.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:79:bd:08:00:f3:23:48:bc:b2:6a:16:c8:75:f6:68:d1:d4:
ae:d9:4f:ac:01:58:0a:d9:2c:b8:3f:40:47:4f:e1:53:d5:c9:
a2:53:ed:9d:00:e4:0a:1a:5a:af:51:07:82:93:46:fa:97:0a:
84:4b:b5:41:b2:1f:63:6f:5e:06:36:16:54:ba:11:4d:74:c5:
3f:38:ad:d7:c8:1f:0a:67:82:cf:db:c7:57:24:c3:78:93:3f:
3d:bc:0a:1e:fe:bc:ed:d5:3b:da:46:2b:a2:48:ee:00:5b:bc:
c4:ba:8c:b9:a5:e2:12:60:6d:22:ae:83:cf:7b:00:e5:38:03:
ed:ee:6f:b2:86:9d:6f:e6:57:a8:94:26:51:44:78:a9:53:2a:
fd:23:57:cd:63:73:5b:f9:e3:f3:63:d8:d9:a3:56:93:48:ff:
a5:3b:f5:71:83:79:05:a3:d4:20:46:fa:60:31:dd:5c:3f:6a:
28:d8:4c:d7:65:64:6e:0c:68:e8:ae:83:35:f2:6a:76:2d:17:
70:8f:3f:e2:af:05:2f:1f:bb:1f:9d:6c:63:91:da:f5:41:ab:
9b:98:46:ae:09:85:12:a1:fa:6d:3e:7f:a2:8b:e1:29:8c:fd:
78:57:5c:4f:65:30:55:65:6b:35:c6:b6:15:61:ff:72:84:7c:
68:fc:1b:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:09:54 2025 by rpki-client