Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/168B6B9CBBD611EFB1B6B525C4F9AE02.roa
File: 168B6B9CBBD611EFB1B6B525C4F9AE02.roa (raw, json)
Hash identifier: IAs+hmg9YnVy6d0iDEGfTJnAaze0vRvQTVLbl6t3d/E=
Subject key identifier: C9:6B:0A:3E:C7:4A:6D:CC:A6:6E:66:A4:F3:8D:98:2F:75:86:80:C7
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1FC8
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/168B6B9CBBD611EFB1B6B525C4F9AE02.roa
Signing time: Mon 16 Dec 2024 17:49:25 +0000
ROA not before: Mon 16 Dec 2024 17:49:25 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 205220
IP address blocks: 113.203.218.0/24 maxlen: 24
113.203.226.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.252.0/22 maxlen: 22
115.167.117.0/24 maxlen: 24
115.167.119.0/24 maxlen: 24
115.167.122.0/24 maxlen: 24
115.167.123.0/24 maxlen: 24
175.110.90.0/24 maxlen: 24
175.110.107.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.110.0/24 maxlen: 24
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Dec 2024 08:17:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8136 (0x1fc8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 16 17:49:25 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67606824-9fc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1f:58:1d:b0:33:60:b0:18:e3:e7:bc:f7:46:
3d:16:c9:8f:80:be:2b:67:03:a4:d2:fd:95:ac:14:
3e:87:d8:ad:fd:e8:57:4e:19:b2:ea:01:15:4e:b9:
3e:e4:70:6c:10:36:9c:9e:f3:8d:e4:f3:6d:2c:5a:
86:ca:e6:92:7e:49:dc:a4:de:10:c2:b4:96:18:90:
fa:1a:16:51:56:6f:81:9b:51:21:5c:9f:a9:e6:50:
68:60:0a:fd:79:56:54:9b:d1:ca:2b:77:b9:6c:5a:
5d:36:b8:70:f2:56:3c:10:72:af:74:d7:52:c3:bf:
f4:80:41:26:14:37:63:a4:0b:6e:6a:ef:36:87:d1:
33:9e:cc:a4:d4:0b:1a:7f:24:ae:9c:1e:66:46:97:
a4:29:0f:aa:0b:73:f1:26:bc:c5:1f:fb:32:81:09:
ae:64:b5:26:df:36:f8:f9:d8:47:b6:dc:c7:51:89:
95:a5:d9:d0:79:09:9b:68:2f:7a:1b:0b:26:8e:8e:
7d:d1:67:0d:02:83:57:ed:86:ed:38:e7:25:ba:78:
c0:90:41:86:6f:f1:8c:86:5a:35:12:7e:9b:c8:f0:
80:ef:78:0a:4a:fd:dc:0a:a9:4a:8c:28:fe:4d:09:
d9:6a:86:26:f8:30:05:86:fe:b0:99:0b:06:4c:90:
90:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:6B:0A:3E:C7:4A:6D:CC:A6:6E:66:A4:F3:8D:98:2F:75:86:80:C7
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/168B6B9CBBD611EFB1B6B525C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.218.0/24
113.203.226.0/24
113.203.228.0/24
113.203.244.0/24
113.203.252.0/22
115.167.117.0/24
115.167.119.0/24
115.167.122.0/23
175.110.90.0/24
175.110.107.0/24
175.110.109.0-175.110.110.255
202.92.18.0/24
202.92.20.0/24
Signature Algorithm: sha256WithRSAEncryption
66:22:4f:42:54:0a:1f:ea:cd:82:b1:3b:5a:87:2c:61:be:f3:
66:da:a4:52:cf:e7:b6:c9:dd:79:69:54:b0:68:58:5b:bc:14:
65:18:d7:40:56:af:6b:30:5d:9c:62:77:58:ef:a8:94:88:61:
81:57:a8:4b:ee:08:3f:6c:59:63:6e:08:ec:e9:c0:94:24:c6:
5e:dd:23:ac:d6:90:ec:1f:b7:2c:2c:b2:ed:48:df:f1:04:12:
88:ba:76:db:3b:ed:64:d9:c8:a5:3e:b2:5f:5e:c5:7d:65:b4:
8f:58:71:f0:d3:bf:e2:12:56:45:f1:07:ed:82:6e:e7:aa:14:
e6:e7:2a:9d:f7:fb:e6:40:46:f7:4f:75:54:52:83:15:59:e9:
b9:8a:4c:4d:b4:b6:9c:95:5f:02:08:b1:07:28:c0:9c:ec:b0:
6f:a6:aa:e1:f6:8e:06:3e:74:37:a8:a2:07:62:97:db:d5:ff:
5b:cd:62:0f:a5:51:4e:b5:88:51:c5:6a:74:7a:7a:1b:b1:3a:
ec:d1:03:58:19:05:19:21:72:17:fd:3b:30:1a:12:04:08:e1:
6b:18:ed:7b:98:a4:08:c1:30:09:48:f9:51:38:b4:81:a4:ef:
3f:65:60:6c:6d:17:03:a6:8c:24:b2:2c:59:60:19:bf:a3:d8:
97:63:ff:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:58:00 2025 by rpki-client