Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/2E0A419A703011EFB7417E20C4F9AE02.roa
File: 2E0A419A703011EFB7417E20C4F9AE02.roa (raw, json)
Hash identifier: L7hsiC+HXw1tYv0WB+DSvRo8J8GxaZTf6Rs4yVcoKcU=
Subject key identifier: C1:61:82:A6:F8:09:66:67:A1:7E:77:2B:32:D0:39:6C:7F:6B:DC:6D
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 15CB
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/2E0A419A703011EFB7417E20C4F9AE02.roa
Signing time: Wed 11 Sep 2024 11:22:51 +0000
ROA not before: Wed 11 Sep 2024 11:22:51 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 103.11.63.0/24 maxlen: 24
103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.233.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.252.0/22 maxlen: 24
115.167.2.0/24 maxlen: 24
115.167.3.0/24 maxlen: 24
115.167.12.0/22 maxlen: 24
115.167.16.0/22 maxlen: 24
115.167.20.0/22 maxlen: 24
115.167.50.0/24 maxlen: 24
115.167.56.0/22 maxlen: 24
115.167.73.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.116.0/22 maxlen: 24
115.167.120.0/22 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.97.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
175.110.107.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.110.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/22 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Sep 2024 17:11:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5579 (0x15cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Sep 11 11:22:51 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66e17d8a-93ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d5:31:e0:46:93:34:dc:6b:8e:a1:6d:7f:a2:
0f:9b:e3:3f:70:1a:73:05:11:c5:6e:0a:dc:79:8e:
d3:3b:63:c0:1c:23:af:50:b3:94:5e:cf:a5:6a:7c:
13:61:3d:f3:01:d2:4c:f7:58:72:a5:e0:1c:5b:8a:
40:4c:0f:13:f6:9d:fb:85:95:ce:b3:64:01:14:6a:
36:fb:25:cb:c9:1a:e9:37:ae:d6:d5:e1:ae:f3:62:
c7:dd:e1:b9:f4:18:38:16:aa:3d:c2:c1:31:bf:98:
4a:91:b1:20:46:2b:de:13:c7:72:ff:b9:96:e4:07:
9c:ba:f2:65:fa:e4:23:e4:58:69:ff:f1:24:53:87:
06:55:31:fd:d9:f5:ba:68:da:57:41:6e:c2:5f:b2:
28:e0:20:c7:f9:19:21:37:26:7f:05:67:04:cf:87:
86:ae:18:af:49:9d:30:36:a9:7a:96:29:5e:8a:08:
36:4d:17:49:c5:aa:d1:3a:e4:a8:a5:74:de:7a:1c:
bc:38:73:f8:f5:5c:08:ba:f0:d5:cb:a8:a6:14:b4:
db:5e:bc:83:79:ba:da:aa:a6:10:eb:4e:e5:0d:91:
89:ef:cf:58:ca:dd:b4:2f:03:74:23:d5:f6:16:1e:
d8:58:dd:e2:12:36:31:b5:5f:25:7b:9a:f1:fd:21:
3a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:61:82:A6:F8:09:66:67:A1:7E:77:2B:32:D0:39:6C:7F:6B:DC:6D
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/2E0A419A703011EFB7417E20C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.63.0/24
103.151.27.0/24
113.203.208.0/24
113.203.210.0/24
113.203.212.0/23
113.203.215.0-113.203.220.255
113.203.222.0/24
113.203.227.0/24
113.203.233.0/24
113.203.242.0-113.203.245.255
113.203.252.0/22
115.167.2.0/23
115.167.12.0-115.167.23.255
115.167.50.0/24
115.167.56.0/22
115.167.73.0/24
115.167.78.0/24
115.167.116.0-115.167.123.255
115.167.125.0/24
175.110.88.0/22
175.110.97.0/24
175.110.104.0/22
175.110.109.0-175.110.111.255
180.178.142.0/24
180.178.148.0-180.178.150.255
180.178.160.0/24
180.178.163.0/24
180.178.169.0-180.178.171.255
180.178.180.0-180.178.187.255
180.178.189.0/24
180.178.191.0/24
202.92.18.0/24
202.92.20.0/24
202.92.26.0/24
223.29.231.0/24
223.29.239.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:88:63:44:ff:2b:6e:96:fb:80:b1:a3:94:4f:8c:9d:c1:94:
2e:c5:b9:55:21:00:05:20:9f:a7:78:a0:39:36:cf:dd:2f:0b:
87:6c:30:d4:b2:f1:c0:32:6c:70:4d:a8:56:19:25:3c:d8:19:
9d:26:a9:0c:67:b1:8a:8d:f9:03:f5:73:5d:fe:ad:23:1e:b6:
53:7c:2d:d2:96:ae:ba:45:bd:69:6f:84:98:5b:e4:10:f1:94:
7b:9c:23:20:84:ee:1b:8a:11:11:55:5e:62:b9:70:4f:84:1f:
31:08:5a:6e:c1:e1:45:a7:07:81:89:c7:39:43:c2:e3:9a:83:
ac:62:93:b5:ec:ed:a4:90:f2:8b:be:73:9e:c3:6d:91:62:00:
78:74:57:00:65:f3:cd:28:dc:1b:23:2b:89:b9:af:80:eb:f8:
8d:d2:63:af:06:b7:d2:c9:98:59:ba:7e:53:75:b8:ca:f8:91:
82:b9:7b:be:cd:8a:9c:a5:d2:1f:b6:25:95:89:fe:08:a0:b1:
68:8a:7c:cc:c5:91:05:3f:62:a5:c6:30:59:bf:97:89:d6:b3:
c8:51:6d:29:f6:e3:ab:a3:f5:f8:17:b1:59:f1:07:ed:75:f4:
17:7b:99:f5:94:e0:fa:65:30:cb:e6:4d:fc:3f:7e:b9:fa:43:
1b:f7:09:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:24:01 2025 by rpki-client