Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/232861CC668911EF84D75829C4F9AE02.roa
File: 232861CC668911EF84D75829C4F9AE02.roa (raw, json)
Hash identifier: rlwp7ZQKGE4aYKNbPQeMBazDmtblM7yHK5T7gqv4eac=
Subject key identifier: 68:2D:EA:CB:9E:0F:0F:91:A5:27:09:8F:23:62:3D:3D:47:D4:FB:0E
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 14DA
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/232861CC668911EF84D75829C4F9AE02.roa
Signing time: Fri 30 Aug 2024 04:34:54 +0000
ROA not before: Fri 30 Aug 2024 04:34:54 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 10753
IP address blocks: 113.203.209.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
113.203.246.0/24 maxlen: 24
115.167.1.0/24 maxlen: 24
115.167.24.0/22 maxlen: 22
115.167.48.0/24 maxlen: 24
115.167.52.0/22 maxlen: 24
115.167.77.0/24 maxlen: 24
115.167.100.0/22 maxlen: 24
115.167.104.0/22 maxlen: 24
115.167.112.0/22 maxlen: 24
175.110.64.0/22 maxlen: 24
175.110.72.0/22 maxlen: 24
175.110.84.0/22 maxlen: 24
175.110.96.0/24 maxlen: 24
180.178.151.0/24 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 10:09:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5338 (0x14da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Aug 30 04:34:54 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66d14bee-188d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ee:be:74:49:87:26:ee:07:26:62:f9:23:4f:
84:f2:32:bb:7b:20:55:e1:5d:ab:a7:f7:d4:e4:5e:
29:74:b6:4a:55:a3:4b:25:95:b2:5f:8d:75:61:ff:
d8:1d:7c:e1:fb:eb:58:b7:41:be:cc:f9:1a:c4:94:
b6:fe:ad:85:54:50:05:e9:17:26:ec:3f:93:a8:52:
b0:2d:5d:f7:00:c3:df:76:e5:c0:5a:ee:9d:bf:87:
ad:b6:fa:41:15:03:84:53:63:52:a2:c0:bc:4f:bc:
ec:e1:23:a6:ec:8f:3b:c0:89:c5:3b:e1:15:c0:08:
8a:af:f3:94:1f:fa:5b:e9:5e:1d:aa:09:37:b2:57:
d5:c8:61:6c:83:01:e3:ca:5d:86:f5:56:af:a5:ec:
31:53:77:9d:ed:7b:4e:be:5b:75:52:1e:95:f2:da:
69:d3:31:f3:8c:ce:dc:eb:67:9c:9d:40:c9:40:28:
35:86:2a:7d:1c:40:e7:ef:60:98:61:92:40:aa:7c:
47:a1:3c:92:16:8e:fd:48:9c:45:d1:27:d1:4f:d6:
e6:8f:ab:ad:1f:a8:98:ad:41:29:45:5d:eb:fd:1c:
9e:17:1c:92:df:20:93:9b:52:6b:28:e8:c3:f7:13:
c7:c0:17:6d:1d:9e:ce:e6:de:eb:c4:73:f2:91:57:
f5:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:2D:EA:CB:9E:0F:0F:91:A5:27:09:8F:23:62:3D:3D:47:D4:FB:0E
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/232861CC668911EF84D75829C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.209.0/24
113.203.241.0/24
113.203.246.0/24
115.167.1.0/24
115.167.24.0/22
115.167.48.0/24
115.167.52.0/22
115.167.77.0/24
115.167.100.0-115.167.107.255
115.167.112.0/22
175.110.64.0/22
175.110.72.0/22
175.110.84.0/22
175.110.96.0/24
180.178.151.0/24
180.178.161.0/24
180.178.188.0/24
180.178.190.0/24
223.29.225.0-223.29.228.255
Signature Algorithm: sha256WithRSAEncryption
18:78:38:fb:1c:bc:a5:e2:5f:88:35:b6:7f:3e:1d:3b:a1:af:
16:3f:d1:7a:bc:19:85:1f:35:b6:c6:65:3e:52:d7:e2:5d:72:
f8:c3:b1:8b:1d:1e:4b:8f:7d:c1:07:92:81:42:30:f4:8b:1b:
26:b8:c4:dc:2d:22:bc:2d:46:b2:82:1c:85:3d:93:99:4b:2e:
25:f0:19:b9:2a:4b:bc:0b:5e:d4:b4:64:51:40:ba:b9:25:d4:
6f:05:33:99:fd:9a:f0:27:a0:98:fa:a5:7d:5b:73:f4:d3:06:
72:0f:46:6e:c7:59:9b:d1:8e:0a:ae:94:bd:66:a9:57:bd:ef:
f4:e9:0d:be:f0:61:78:65:da:6e:1e:bd:8f:4f:74:03:96:07:
26:f0:fa:d6:f9:5c:b3:29:ba:6a:b4:1e:1c:ef:a5:1b:5f:2b:
80:5c:f1:16:10:51:3a:a6:22:1e:f7:ec:14:ca:9c:f3:85:4f:
9c:12:5e:f0:11:c0:d3:f3:ba:4c:68:5a:16:e0:2e:2a:31:7f:
7c:e5:34:b9:de:a0:41:c7:7a:39:1b:bd:46:80:d1:2c:2c:6c:
df:5b:b1:1b:b1:b2:21:42:39:8a:86:41:39:35:c7:8d:81:3c:
3a:11:d1:49:27:ad:07:39:dc:36:71:cb:3b:99:71:58:99:6d:
4b:52:4a:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:14:31 2025 by rpki-client