Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/2EAA9364257311EF8A337C3CC4F9AE02.roa
File: 2EAA9364257311EF8A337C3CC4F9AE02.roa (raw, json)
Hash identifier: fu2WViovdgKDSnFbUlDRdXq4zJYSY/V5AIgCfEuWXQk=
Subject key identifier: 8E:A4:DD:45:F2:36:D4:95:14:67:BE:03:A2:DF:ED:F9:B7:5F:0B:32
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 128E
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/2EAA9364257311EF8A337C3CC4F9AE02.roa
Signing time: Sat 08 Jun 2024 08:43:31 +0000
ROA not before: Sat 08 Jun 2024 08:43:31 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 113.203.208.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.223.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.226.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.229.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.233.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
113.203.249.0/24 maxlen: 24
113.203.250.0/24 maxlen: 24
113.203.251.0/24 maxlen: 24
113.203.252.0/22 maxlen: 24
115.167.2.0/24 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.65.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
115.167.73.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.152.0/21 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.165.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.167.0/24 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.179.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/24 maxlen: 24
180.178.185.0/24 maxlen: 24
180.178.186.0/24 maxlen: 24
180.178.187.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jun 2024 11:39:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4750 (0x128e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jun 8 08:43:31 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=666419b2-ea55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:15:3d:4b:07:9d:30:e3:71:45:22:30:c5:a6:
3b:58:03:89:1b:c6:11:cc:59:41:e4:8b:b2:25:c5:
99:df:4d:0e:c6:fb:d5:f8:31:60:cd:42:a7:d8:6a:
72:72:6b:b6:90:dc:71:9c:4d:9c:ac:44:2d:26:2e:
11:e2:6d:4e:fd:e6:bd:be:7f:08:8d:81:ff:56:d6:
80:bb:28:22:b8:38:9f:22:db:2c:3a:f6:14:c1:91:
9e:ce:e2:71:25:db:7a:2b:17:95:88:20:7b:8c:2d:
dc:39:ec:be:8f:aa:14:05:5b:37:a7:fc:13:7d:0e:
17:d4:e1:8f:5e:25:63:13:b4:be:2d:19:10:c8:a7:
70:00:5f:96:78:b9:6b:c7:5c:2c:81:2d:71:bf:36:
34:7e:6c:31:ac:cc:10:6b:37:10:cb:b7:8b:0a:01:
1a:2d:5b:b6:9c:18:3b:73:0e:c2:1f:e9:87:d1:80:
20:d0:e0:2a:5a:45:df:b0:b4:b4:ee:1c:ea:d0:89:
0b:9b:c6:05:b0:5b:c1:82:88:93:c6:55:0a:4a:6c:
ff:3d:54:35:e5:36:29:9e:53:6f:0c:64:d3:aa:24:
e8:9d:c1:5d:df:31:2a:28:31:d4:cc:4f:c2:47:2b:
c4:50:dd:ed:39:bd:6c:1c:6b:05:b0:bb:ed:46:31:
1b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:A4:DD:45:F2:36:D4:95:14:67:BE:03:A2:DF:ED:F9:B7:5F:0B:32
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/2EAA9364257311EF8A337C3CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.208.0/24
113.203.210.0/24
113.203.212.0/23
113.203.216.0-113.203.218.255
113.203.220.0/24
113.203.223.0-113.203.226.255
113.203.228.0/22
113.203.233.0/24
113.203.242.0/24
113.203.244.0/23
113.203.248.0/21
115.167.2.0/24
115.167.49.0/24
115.167.65.0-115.167.66.255
115.167.73.0/24
115.167.78.0/24
180.178.142.0/24
180.178.144.0/24
180.178.146.0/24
180.178.148.0-180.178.150.255
180.178.152.0-180.178.160.255
180.178.163.0/24
180.178.165.0-180.178.170.255
180.178.179.0-180.178.187.255
180.178.189.0/24
202.92.18.0/24
202.92.20.0/24
223.29.225.0/24
223.29.227.0/24
223.29.231.0/24
223.29.235.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
2c:92:e8:a1:8e:03:8b:e5:26:d8:fa:d6:1c:19:21:bf:1c:49:
5f:b0:21:75:b3:f1:c5:32:fa:2f:07:bc:f2:ca:5b:69:99:04:
55:77:0a:fd:51:a7:b6:e2:c9:4d:b2:7d:9e:c7:2d:ed:05:75:
ef:fe:e3:9a:19:5a:19:74:cb:5b:0a:d1:7c:b6:df:ae:f2:5f:
4f:06:18:cf:4a:d6:d5:5e:f9:a5:74:fc:f5:4f:a7:2f:a6:fc:
8b:f2:d7:80:a9:04:7d:94:4b:29:2f:1f:58:ab:21:08:07:5f:
cc:2b:09:d3:b7:f1:63:fa:df:23:95:a2:34:d6:b7:92:7c:e9:
64:9b:fe:6c:13:a1:87:de:5b:42:24:69:23:75:3f:84:ef:45:
a7:b2:db:bf:88:dc:f7:79:9f:1d:ad:e5:a8:aa:2b:b1:97:67:
c3:c0:2b:25:d4:2a:3d:3a:0f:a4:09:00:fd:58:d5:d9:d9:fd:
1c:67:05:b3:d4:4b:b0:0a:43:0e:e7:5d:3b:c1:4d:5e:96:77:
2c:ae:86:87:d7:68:67:28:08:35:fa:d9:be:ff:0b:49:a1:d5:
dc:7c:cc:89:35:52:a9:25:ce:15:d2:7b:12:a9:a6:17:32:ba:
bf:50:04:0b:ba:77:c6:8b:d3:04:9d:e0:42:b0:a6:c4:c5:6c:
b5:9d:25:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:19:07 2025 by rpki-client