Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/241DE68C977C11EFA8986820C4F9AE02.roa
File: 241DE68C977C11EFA8986820C4F9AE02.roa (raw, json)
Hash identifier: /byWX//VwRJ2t78bY7TWaR18q/3j1xrdrDk4zb0b9As=
Subject key identifier: C2:97:13:09:2D:9F:0F:39:79:62:D3:4B:E6:9F:0C:C8:D3:AA:BA:51
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1B5D
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/241DE68C977C11EFA8986820C4F9AE02.roa
Signing time: Mon 04 Nov 2024 11:31:05 +0000
ROA not before: Mon 04 Nov 2024 11:31:05 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 43.226.224.0/22 maxlen: 24
103.11.63.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
115.167.20.0/22 maxlen: 22
115.167.50.0/24 maxlen: 24
115.167.56.0/22 maxlen: 22
115.167.60.0/22 maxlen: 22
115.167.77.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.89.0/24 maxlen: 24
175.110.91.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.152.0/21 maxlen: 24
202.92.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Nov 2024 13:29:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7005 (0x1b5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Nov 4 11:31:05 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6728b079-afed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:99:fc:33:65:3f:41:6d:35:6a:f4:fc:c9:d9:
c7:b4:98:87:0f:b3:e4:83:ee:e5:a6:5b:c1:3f:65:
16:38:20:a1:5f:d9:55:5a:41:78:eb:3f:ae:f1:26:
bb:36:1f:d0:3a:98:63:66:5a:bc:5e:00:32:41:0a:
85:7c:06:8a:6d:b1:b9:a5:ee:76:bd:89:4f:a0:eb:
d1:5a:dc:5f:fc:e4:d4:6f:bc:6d:a4:4e:48:17:66:
d5:72:e7:d3:0e:8e:2b:e9:30:93:7c:4e:db:f2:ba:
27:7f:a2:fe:a7:64:1e:94:14:af:b3:06:25:38:a7:
bb:76:b9:83:90:8e:29:4d:b7:2a:63:f0:78:92:6f:
46:47:22:8d:3a:a6:95:94:b9:1a:de:c2:31:df:d7:
bc:26:5c:b3:34:56:4a:b0:46:37:b6:9c:09:5c:98:
fb:9a:bc:13:77:9f:a4:f2:b5:98:14:18:31:69:11:
9a:1d:63:4a:6e:9e:cc:86:b2:ad:86:18:82:a6:ca:
c1:56:70:c6:c9:29:8b:fb:ad:6d:ac:12:d9:00:f8:
45:84:d1:7d:a9:9e:d9:df:dc:87:c7:ed:c4:81:b4:
a9:d7:b3:69:3f:11:49:ff:e6:e3:08:f8:3d:97:e4:
82:b5:cf:c1:d5:aa:54:83:ae:1c:1b:01:c0:e6:6e:
15:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:97:13:09:2D:9F:0F:39:79:62:D3:4B:E6:9F:0C:C8:D3:AA:BA:51
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/241DE68C977C11EFA8986820C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.224.0/22
103.11.63.0/24
113.203.208.0/24
113.203.210.0/24
113.203.215.0/24
113.203.217.0/24
113.203.219.0-113.203.220.255
113.203.222.0/24
115.167.20.0/22
115.167.50.0/24
115.167.56.0/21
115.167.77.0-115.167.78.255
175.110.80.0/22
175.110.89.0/24
175.110.91.0/24
175.110.105.0/24
180.178.142.0/24
180.178.150.0/24
180.178.152.0/21
202.92.26.0/24
Signature Algorithm: sha256WithRSAEncryption
92:a9:f8:a8:e2:5e:13:8a:a5:2c:08:61:d3:a5:9c:bc:2d:f1:
ad:36:22:bc:7e:0c:64:fb:59:d0:18:36:1a:ed:6a:a6:02:d0:
b0:a0:fc:e6:5d:a3:76:d4:28:47:72:75:e9:8f:65:36:ae:5f:
9f:9d:0c:e4:07:7f:8f:6c:5d:f2:15:a6:89:24:5d:a3:ff:b0:
7d:da:56:de:65:20:d5:19:a3:71:91:ac:6e:b2:87:21:ae:2f:
4e:87:52:ac:cd:5a:77:3d:bc:47:e9:23:20:d1:1b:ee:b2:e2:
ab:24:32:44:4b:39:2f:0d:a1:39:80:d1:f3:f2:df:ec:14:0e:
01:20:2b:cb:da:a8:c5:84:65:58:72:d6:f6:94:fe:96:27:e4:
b5:cf:6f:73:21:71:07:4d:8a:e2:83:b1:18:a1:e2:c6:7e:06:
69:42:b3:0a:07:2a:85:75:d9:dc:a2:25:f4:77:2c:5a:91:ab:
99:1e:0d:e6:32:41:09:cb:4c:b3:96:74:86:85:b0:d5:b7:80:
d8:ce:d7:f2:8b:3e:52:1c:c9:12:3e:f2:99:70:da:3d:34:d2:
32:6d:2c:02:dc:a4:a8:a3:af:9c:33:cf:59:e9:cc:b4:12:bb:
74:55:8e:e6:4f:40:cd:a8:c4:ca:a1:c3:32:41:e9:b8:7c:4e:
4a:58:06:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:58:02 2025 by rpki-client