Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/1ACC4A7A8C4511EF9647F344C4F9AE02.roa
File: 1ACC4A7A8C4511EF9647F344C4F9AE02.roa (raw, json)
Hash identifier: mGVaw5iQ/i3Cf9Ag5TjkIDMnp5Kfnp/omLph6DJRzlQ=
Subject key identifier: F3:37:A8:01:0D:FF:90:3A:45:42:3A:25:FD:5F:7E:69:97:43:8E:A4
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 18FB
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/1ACC4A7A8C4511EF9647F344C4F9AE02.roa
Signing time: Thu 24 Oct 2024 11:33:11 +0000
ROA not before: Thu 24 Oct 2024 11:33:11 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 205220
IP address blocks: 113.203.212.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.223.0/24 maxlen: 24
113.203.226.0/24 maxlen: 24
113.203.228.0/22 maxlen: 24
113.203.233.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.252.0/22 maxlen: 22
115.167.117.0/24 maxlen: 24
115.167.118.0/24 maxlen: 24
115.167.119.0/24 maxlen: 24
115.167.122.0/24 maxlen: 24
115.167.123.0/24 maxlen: 24
175.110.90.0/24 maxlen: 24
175.110.91.0/24 maxlen: 24
175.110.107.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.110.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.165.0/24 maxlen: 24
180.178.167.0/24 maxlen: 24
180.178.176.0/22 maxlen: 22
180.178.180.0/22 maxlen: 22
180.178.184.0/22 maxlen: 22
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Nov 2024 11:27:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6395 (0x18fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Oct 24 11:33:11 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=671a3077-de91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a5:55:ab:55:43:4b:e4:50:cd:2f:4c:13:d7:
c3:b5:ca:52:40:45:8e:89:cb:ee:d6:04:f7:08:9f:
9c:50:ae:f2:db:20:fb:82:30:5b:5b:ca:71:1e:3f:
63:47:2e:8d:23:e1:1a:ba:1d:bd:91:47:75:76:8c:
07:79:13:e3:ec:bc:e9:82:b9:88:35:4c:c0:f6:48:
a9:67:88:00:8e:d2:41:bb:11:54:f2:66:b4:1b:60:
59:75:3a:d6:2a:f2:0c:ce:d9:5b:ae:3a:8c:ca:33:
82:38:8a:64:2f:1e:2b:08:87:59:80:e2:8c:47:fd:
31:b8:c0:f1:c0:b0:c5:10:40:32:e0:dd:6e:8e:6e:
32:11:f5:67:5f:95:11:f4:d7:3d:b1:8b:7d:4e:fe:
3c:f9:db:73:f2:a3:82:16:11:9d:e3:2f:27:8a:ba:
f1:13:8c:18:61:f8:ac:58:15:b3:1e:62:d7:b6:d1:
8e:ad:7f:9c:97:c8:de:e3:cc:cd:4c:6f:e9:b2:b4:
f5:9a:39:97:8f:b9:09:52:3f:73:3a:b8:d1:df:66:
f5:5d:e7:c3:b6:1e:26:b6:3a:ba:7d:b1:68:f1:b0:
2a:c9:59:f1:50:fe:21:0f:c8:dd:7b:ea:66:12:2a:
f5:cb:b5:68:ec:0f:ae:1c:b2:6f:06:7b:a3:ac:ec:
57:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:37:A8:01:0D:FF:90:3A:45:42:3A:25:FD:5F:7E:69:97:43:8E:A4
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/1ACC4A7A8C4511EF9647F344C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.212.0/24
113.203.216.0/24
113.203.218.0/24
113.203.223.0/24
113.203.226.0/24
113.203.228.0/22
113.203.233.0/24
113.203.242.0/24
113.203.244.0/23
113.203.252.0/22
115.167.117.0-115.167.119.255
115.167.122.0/23
175.110.90.0/23
175.110.107.0/24
175.110.109.0-175.110.111.255
180.178.144.0/24
180.178.165.0/24
180.178.167.0/24
180.178.176.0-180.178.187.255
202.92.18.0/24
202.92.20.0/24
223.29.235.0-223.29.236.255
Signature Algorithm: sha256WithRSAEncryption
1c:38:58:13:43:be:3d:03:5d:0d:f7:6c:8d:a0:74:b2:5b:32:
39:32:0f:58:ca:53:02:29:bb:76:29:02:35:ad:f5:40:33:14:
f0:bb:ce:85:3a:78:08:b3:f4:74:7a:ec:e4:e0:d1:c4:7e:1f:
77:1b:60:01:4f:5b:12:08:b2:0b:35:66:43:99:c6:55:a2:83:
ba:15:f3:6c:38:bd:76:ea:52:09:76:a0:51:70:76:29:7c:dd:
70:39:95:df:a4:4b:18:c4:86:0c:84:9d:2f:33:e9:4e:4f:3a:
b5:2d:e2:8f:58:f3:87:84:53:24:f8:84:a9:7e:9d:eb:6d:cc:
1f:a2:76:a1:a8:45:b5:1f:56:25:35:80:39:02:c0:e2:e4:75:
1f:91:17:a1:9a:3a:28:a4:90:9d:f5:49:6f:f3:a3:22:98:74:
0f:8a:ae:1c:c1:50:9e:2f:3f:4f:bd:0b:1e:6b:9c:b8:03:38:
8e:01:a5:68:0b:9a:a1:ae:3f:54:fc:34:8e:92:47:d2:01:6f:
15:3e:45:21:2e:28:fe:91:72:a9:96:cf:37:26:8e:96:6e:87:
57:78:f3:e2:c9:1d:3a:32:95:e4:ae:66:50:aa:53:b3:f5:36:
57:9b:63:f8:2f:e6:de:dd:91:d3:8d:71:73:8e:ca:89:1a:6b:
2c:b7:b9:78
-----BEGIN CERTIFICATE-----
MIIGFDCCBPygAwIBAgICGPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQxMDI0MTEzMzExWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzFhMzA3Ny1kZTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxKVVq1VDS+RQzS9ME9fDtcpSQEWOicvu1gT3CJ+cUK7y2yD7gjBbW8pxHj9j
Ry6NI+Eauh29kUd1dowHeRPj7LzpgrmINUzA9kipZ4gAjtJBuxFU8ma0G2BZdTrW
KvIMztlbrjqMyjOCOIpkLx4rCIdZgOKMR/0xuMDxwLDFEEAy4N1ujm4yEfVnX5UR
9Nc9sYt9Tv48+dtz8qOCFhGd4y8nirrxE4wYYfisWBWzHmLXttGOrX+cl8je48zN
TG/psrT1mjmXj7kJUj9zOrjR32b1XefDth4mtjq6fbFo8bAqyVnxUP4hD8jde+pm
Eir1y7Vo7A+uHLJvBnujrOxXhQIDAQABo4IDODCCAzQwHQYDVR0OBBYEFPM3qAEN
/5A6RUI6Jf1ffmmXQ46kMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvMUFDQzRBN0E4
QzQ1MTFFRjk2NDdGMzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgcEGCCsGAQUFBwEHAQH/
BIGxMIGuMIGrBAIAATCBpAMEAHHL1AMEAHHL2AMEAHHL2gMEAHHL3wMEAHHL4gME
AnHL5AMEAHHL6QMEAHHL8gMEAXHL9AMEAnHL/DAMAwQAc6d1AwQDc6dwAwQBc6d6
AwQBr25aAwQAr25rMAwDBACvbm0DBASvbmADBAC0spADBAC0sqUDBAC0sqcwDAME
BLSysAMEArSyuAMEAMpcEgMEAMpcFDAMAwQA3x3rAwQA3x3sMA0GCSqGSIb3DQEB
CwUAA4IBAQAcOFgTQ749A10N92yNoHSyWzI5Mg9YylMCKbt2KQI1rfVAMxTwu86F
OngIs/R0euzk4NHEfh93G2ABT1sSCLILNWZDmcZVooO6FfNsOL126lIJdqBRcHYp
fN1wOZXfpEsYxIYMhJ0vM+lOTzq1LeKPWPOHhFMk+ISpfp3rbcwfonahqEW1H1Yl
NYA5AsDi5HUfkRehmjoopJCd9Ulv86MimHQPiq4cwVCeLz9PvQsea5y4AziOAaVo
C5qhrj9U/DSOkkfSAW8VPkUhLij+kXKpls83Jo6WbodXePPiyR06MpXkrmZQqlOz
9TZXm2P4L+be3ZHTjXFzjsqJGmsst7l4
-----END CERTIFICATE-----
Generated at Sun Apr 13 01:43:41 2025 by rpki-client