Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/1B7DB1FC817811EFA00B964BC4F9AE02.roa
File: 1B7DB1FC817811EFA00B964BC4F9AE02.roa (raw, json)
Hash identifier: JmDhq1a7g+5uhd/ksfeLxLPSg6O+f/CMunNbHF7rWXQ=
Subject key identifier: B4:49:B0:1F:6C:AF:FD:60:53:86:47:58:7A:DC:C0:41:E9:FD:96:36
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 172C
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/1B7DB1FC817811EFA00B964BC4F9AE02.roa
Signing time: Tue 08 Oct 2024 12:40:18 +0000
ROA not before: Tue 08 Oct 2024 12:40:18 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 43.226.224.0/22 maxlen: 24
103.11.63.0/24 maxlen: 24
103.151.27.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.248.0/22 maxlen: 24
113.203.252.0/22 maxlen: 24
115.167.2.0/24 maxlen: 24
115.167.3.0/24 maxlen: 24
115.167.5.0/24 maxlen: 24
115.167.6.0/24 maxlen: 24
115.167.9.0/24 maxlen: 24
115.167.12.0/22 maxlen: 24
115.167.16.0/22 maxlen: 24
115.167.20.0/22 maxlen: 24
115.167.50.0/24 maxlen: 24
115.167.56.0/22 maxlen: 24
115.167.60.0/22 maxlen: 24
115.167.64.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
115.167.73.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.116.0/24 maxlen: 24
115.167.117.0/24 maxlen: 24
115.167.120.0/22 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.152.0/21 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.176.0/22 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/22 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.234.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Oct 2024 15:10:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5932 (0x172c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Oct 8 12:40:18 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67052832-4525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f7:17:3c:b7:98:e9:6c:0a:ec:d8:be:08:cd:
fe:08:75:8d:a7:99:fa:3c:87:5b:7c:14:bd:cc:16:
f1:36:46:8c:b7:78:12:36:46:15:15:ac:b1:4e:7f:
41:32:6d:cc:61:d2:51:75:03:46:f5:59:d0:a8:8d:
7b:7a:8e:05:a7:fc:22:98:1e:7c:df:2c:59:b5:22:
24:6d:1e:ce:76:8c:b8:cc:b4:a6:ba:e1:59:2a:4e:
98:48:13:db:7e:d6:34:15:b5:89:6b:74:89:43:6c:
a0:b9:b7:32:67:4f:1b:6a:6e:e5:c2:30:3b:97:16:
bb:d9:68:ea:8f:bd:80:52:c6:51:22:79:2f:a1:04:
ac:4b:90:86:fa:e8:fe:f4:3d:cf:c4:d2:48:62:e8:
6e:29:56:10:44:ed:71:65:4a:d0:7c:0e:8e:5c:f1:
f3:1a:cb:b6:29:1a:11:40:ea:d4:e2:0f:0c:ac:18:
23:b5:7b:b5:d2:d4:1b:ad:a7:06:bc:f2:5b:ff:17:
54:ce:eb:0b:53:89:85:e5:5b:80:3b:67:9a:09:04:
e8:4a:eb:d7:4d:2e:85:4a:15:79:49:b4:de:d2:6e:
20:a2:1f:79:fc:79:c1:22:f3:18:96:81:07:b6:6a:
b9:7f:ef:58:17:bc:07:77:80:5f:f6:82:75:ab:c7:
04:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:49:B0:1F:6C:AF:FD:60:53:86:47:58:7A:DC:C0:41:E9:FD:96:36
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/1B7DB1FC817811EFA00B964BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.224.0/22
103.11.63.0/24
103.151.27.0/24
113.203.215.0/24
113.203.219.0/24
113.203.222.0/24
113.203.227.0/24
113.203.243.0/24
113.203.248.0/21
115.167.2.0/23
115.167.5.0-115.167.6.255
115.167.9.0/24
115.167.12.0-115.167.23.255
115.167.50.0/24
115.167.56.0-115.167.64.255
115.167.66.0/24
115.167.73.0/24
115.167.78.0/24
115.167.116.0/23
115.167.120.0/22
115.167.125.0/24
175.110.104.0/24
180.178.142.0/24
180.178.148.0-180.178.150.255
180.178.152.0-180.178.160.255
180.178.163.0/24
180.178.166.0/24
180.178.168.0/22
180.178.176.0-180.178.187.255
180.178.189.0/24
180.178.191.0/24
202.92.26.0/24
223.29.231.0/24
223.29.234.0-223.29.239.255
Signature Algorithm: sha256WithRSAEncryption
74:82:af:ce:a1:67:8a:08:5e:d5:f8:16:dd:a0:20:7d:21:ac:
ac:02:ba:9b:2a:4e:ad:d4:3f:6b:22:ff:0a:59:65:a3:72:05:
ae:01:cd:c1:e4:02:e0:48:73:8f:a6:30:5e:df:70:8e:c7:78:
df:26:c2:cb:87:46:60:aa:d0:08:3e:48:bd:06:7d:bb:da:0f:
62:24:ab:e2:12:29:82:29:1d:60:05:ed:26:19:f3:75:0d:f0:
0c:57:c6:a2:43:58:55:a1:85:b9:ca:d3:45:a9:be:84:b9:8d:
71:db:37:e9:13:92:ba:b4:e4:7c:57:00:74:c1:5a:30:12:7e:
84:6c:c8:aa:4c:8b:6e:60:bb:74:c9:51:70:07:ab:9d:a7:52:
49:4a:03:00:f9:fc:ab:c4:c0:be:9b:bc:0b:7f:eb:b0:18:8f:
e3:7d:e1:76:ab:09:b5:3d:52:51:7d:9a:41:e9:43:09:99:d3:
18:b4:21:ad:fc:ef:80:78:49:4f:51:3a:d2:d9:d3:fe:cd:5f:
45:e5:0a:ef:82:9b:88:8c:8b:e5:47:16:1e:c4:23:4b:d3:e3:
2e:50:7c:73:83:0a:ad:cd:4e:29:36:6c:51:41:db:e6:6a:99:
e0:73:78:a0:8a:66:ef:0c:3f:1e:79:85:78:9b:3e:e9:8f:b9:
59:73:5e:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:43:40 2025 by rpki-client