Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/206D0384B92711EFB450C829C4F9AE02.roa
File: 206D0384B92711EFB450C829C4F9AE02.roa (raw, json)
Hash identifier: QX3/1gAe+oR/KNt1a8dxKYpLuqKuUU1MnR9tiDQk7Jg=
Subject key identifier: 58:4E:D5:0A:B0:ED:0B:89:D9:21:7D:CF:BA:C6:2B:A2:E6:8F:4B:1C
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1FA7
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/206D0384B92711EFB450C829C4F9AE02.roa
Signing time: Fri 13 Dec 2024 07:51:57 +0000
ROA not before: Fri 13 Dec 2024 07:51:57 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 205220
IP address blocks: 113.203.218.0/24 maxlen: 24
113.203.226.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.252.0/22 maxlen: 22
115.167.117.0/24 maxlen: 24
115.167.119.0/24 maxlen: 24
115.167.122.0/24 maxlen: 24
115.167.123.0/24 maxlen: 24
175.110.90.0/24 maxlen: 24
175.110.107.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.110.0/24 maxlen: 24
180.178.180.0/22 maxlen: 22
180.178.184.0/22 maxlen: 22
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Dec 2024 17:39:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8103 (0x1fa7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 13 07:51:57 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=675be79d-7ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b3:12:03:8f:df:43:0e:7b:65:93:b7:33:ae:
8e:2d:eb:d3:a3:be:08:73:15:fb:0f:85:27:c9:8f:
b8:b0:42:a4:8b:c8:6b:51:d3:24:84:cb:f9:72:c6:
c5:fd:9f:cd:f8:bc:d9:d8:da:75:2e:68:f5:54:15:
f0:89:d4:e9:de:5b:08:57:fe:9f:7a:7d:b0:ee:a7:
7f:ac:ba:be:53:dd:90:4e:2e:e4:27:c7:d1:5e:0a:
70:79:31:ae:2d:1a:92:ba:55:ea:60:0b:db:2d:4d:
b0:57:50:23:28:a4:21:53:99:b3:2b:63:eb:63:47:
fd:c2:c4:69:61:3d:a5:57:d7:67:2f:6b:c7:e1:03:
46:c4:fd:a1:cf:df:c4:f8:1d:8d:31:47:e7:3e:ba:
1f:7f:92:23:32:25:21:76:32:f1:50:64:7a:12:5d:
3e:a1:73:89:be:4d:ba:84:26:13:4e:03:0a:33:63:
70:3d:bc:99:6c:a0:70:05:60:02:a0:78:70:cd:a8:
4b:9e:25:93:67:03:25:c2:44:ae:2f:03:29:74:24:
29:70:68:bd:bc:a3:5a:97:43:f8:56:f6:b6:e8:f9:
63:79:3a:b8:a4:92:87:1e:ab:cc:2c:f3:21:56:e5:
82:69:18:7a:71:0f:09:e0:82:e1:64:f0:f9:f7:6c:
19:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:4E:D5:0A:B0:ED:0B:89:D9:21:7D:CF:BA:C6:2B:A2:E6:8F:4B:1C
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/206D0384B92711EFB450C829C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.218.0/24
113.203.226.0/24
113.203.228.0/24
113.203.244.0/24
113.203.252.0/22
115.167.117.0/24
115.167.119.0/24
115.167.122.0/23
175.110.90.0/24
175.110.107.0/24
175.110.109.0-175.110.110.255
180.178.180.0-180.178.187.255
202.92.18.0/24
202.92.20.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:31:d7:ca:54:be:95:93:be:1d:9c:17:53:73:bc:10:7f:ae:
cb:e4:d4:87:34:d6:df:b3:92:d0:99:3d:86:8e:52:98:2b:2b:
c5:21:d0:1b:8d:75:51:9b:49:2a:fe:7f:ec:77:ee:20:35:13:
cb:5f:11:7f:ae:39:8e:f0:b6:21:1d:b7:9e:58:2a:2f:84:d2:
5f:9f:68:1e:1d:ea:bc:e7:fe:68:51:96:29:d3:2c:07:90:e8:
d2:9b:3a:6e:4d:b6:7d:c3:f6:ec:2a:96:35:cf:e7:c9:d6:21:
6c:4a:83:d2:89:b2:88:59:1e:1d:93:46:87:b4:06:01:9c:fb:
91:a0:58:56:9b:2b:fa:2d:6a:a2:0c:b6:74:94:86:d8:b4:fb:
93:ec:4b:e5:af:0c:64:59:4c:f4:6a:05:aa:0a:64:51:d6:17:
ab:9c:d0:6a:c7:b9:1b:3a:ea:3e:97:82:2c:ae:7b:51:de:1a:
af:36:e7:53:0d:53:56:55:a6:83:2a:06:06:65:e2:74:85:06:
45:16:4b:c1:94:11:13:c2:a6:7f:4a:13:67:d3:43:fc:62:fa:
9d:3b:b2:81:1e:fc:2b:d7:10:31:75:09:1e:57:68:ac:4e:13:
c0:a1:99:37:58:ba:7c:ae:db:7e:95:d0:46:57:73:0e:ea:de:
c1:37:0a:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:00:22 2025 by rpki-client