Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/31613788173211EFA1B7F327C4F9AE02.roa
File: 31613788173211EFA1B7F327C4F9AE02.roa (raw, json)
Hash identifier: WMky7XBvkve383+X5mV/9ksgFX9gqjPVsrkHRK8Swvg=
Subject key identifier: 06:83:55:67:61:ED:C3:5B:53:D9:52:69:85:98:FB:D7:57:90:CF:76
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 125E
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/31613788173211EFA1B7F327C4F9AE02.roa
Signing time: Fri 24 May 2024 22:32:38 +0000
ROA not before: Fri 24 May 2024 22:32:38 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 38547
IP address blocks: 115.167.72.0/24 maxlen: 24
115.167.74.0/24 maxlen: 24
115.167.75.0/24 maxlen: 24
202.92.16.0/24 maxlen: 24
202.92.17.0/24 maxlen: 24
202.92.23.0/24 maxlen: 24
202.92.24.0/24 maxlen: 24
202.92.24.32/27 maxlen: 27
202.92.25.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
202.92.27.0/24 maxlen: 24
202.92.28.0/24 maxlen: 24
202.92.29.0/24 maxlen: 24
202.92.30.0/24 maxlen: 24
202.92.31.0/24 maxlen: 24
2400:9560:1::/48 maxlen: 48
2400:9560:5::/48 maxlen: 48
2400:9560:9::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 03 Sep 2024 10:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4702 (0x125e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: May 24 22:32:38 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66511586-bf33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:86:c8:ff:47:a0:07:4a:3e:26:09:a8:af:21:
0a:1f:92:86:50:be:a8:55:b1:5e:97:59:aa:1d:d0:
83:7d:9f:d9:8c:76:90:0c:1c:06:68:93:5e:06:fc:
42:09:d8:de:26:7c:09:99:61:1a:93:cd:d7:3e:e3:
52:a4:f1:9a:4b:d2:dc:b1:ad:66:c7:63:fd:c1:fd:
2a:34:9f:3d:e0:0a:3d:8b:d0:18:29:9c:79:9d:1f:
c4:b9:f4:7a:83:7b:4e:58:bf:ca:de:db:4f:4e:2e:
ca:be:f8:6d:39:17:20:26:84:21:78:1f:fe:c7:1d:
80:25:56:96:f0:14:b5:bc:3d:15:ae:ce:a4:66:9d:
8d:1a:2b:7d:ab:aa:ad:7e:c2:2f:b8:88:32:39:bd:
03:3b:4c:4c:04:39:3e:2d:4a:41:8a:be:dc:bd:f8:
cf:64:6b:f2:b3:d5:f5:3d:30:89:22:10:66:4b:e1:
97:da:0c:4c:7e:85:ac:c0:8a:d1:de:cd:4d:0b:1e:
67:c6:a6:d0:26:e6:a2:8f:9e:a4:b9:49:0c:a8:7a:
f7:36:a2:7a:c8:3f:ce:fb:75:85:d3:8a:24:87:a0:
f6:03:2f:2b:40:94:75:af:9f:9b:1b:f8:31:d3:5c:
fa:78:59:5c:1b:92:9f:56:4d:bc:39:1d:f5:84:76:
9f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:83:55:67:61:ED:C3:5B:53:D9:52:69:85:98:FB:D7:57:90:CF:76
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/31613788173211EFA1B7F327C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.72.0/24
115.167.74.0/23
202.92.16.0/23
202.92.23.0-202.92.31.255
IPv6:
2400:9560:1::/48
2400:9560:5::/48
2400:9560:9::/48
Signature Algorithm: sha256WithRSAEncryption
a5:bd:e4:9c:5e:37:3c:6d:31:88:2d:d5:67:3a:07:8f:c9:19:
d1:7c:de:d0:81:15:ea:ef:69:6c:a9:3d:ff:de:a3:29:48:ce:
7c:62:da:71:4e:85:af:40:ef:34:94:a0:c8:69:5d:a7:2d:e7:
ce:b4:55:de:01:4e:86:c4:a7:6b:42:3c:fa:aa:c4:97:06:19:
be:f8:43:31:db:97:6a:1a:91:6e:27:65:56:7a:8c:bf:cc:38:
f6:46:23:9d:ff:bb:85:40:f9:75:d0:4d:ad:f2:9e:ab:5f:ff:
ba:e3:d7:5a:d9:d0:53:9f:d2:2d:e9:c5:8b:0b:68:0b:31:38:
57:86:9e:01:c1:89:df:99:61:9e:00:dd:61:cf:16:7e:be:fb:
0f:73:c2:66:62:ea:03:ba:40:48:79:e2:3e:9e:89:2d:83:40:
09:62:48:e8:4b:4e:19:3b:af:20:00:49:6d:12:32:ce:fe:c9:
b4:67:7a:08:87:c0:fa:8b:8f:42:94:73:ab:9a:9e:ca:b9:4e:
ad:76:bc:9d:cc:5e:3d:6c:2d:d9:b5:3f:16:ff:e9:20:8c:42:
8a:da:85:4a:18:63:4f:e6:94:5e:8a:62:7a:fa:11:e4:87:54:
0d:de:5c:94:e3:53:b0:0c:91:b6:18:42:c8:0d:9c:ee:d1:63:
84:9f:25:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:24:00 2025 by rpki-client