Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/36F18E58180111EFBF81FA63C4F9AE02.roa
File: 36F18E58180111EFBF81FA63C4F9AE02.roa (raw, json)
Hash identifier: Bq3RWqqvtZZlMA6vbauG77ZQuQUlgphNEPbCAqR/5Kc=
Subject key identifier: 8D:B1:78:ED:72:CE:B8:FA:15:E7:AB:38:3B:84:BE:49:A2:63:86:2E
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1403
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/36F18E58180111EFBF81FA63C4F9AE02.roa
Signing time: Wed 03 Jul 2024 09:27:50 +0000
ROA not before: Wed 03 Jul 2024 09:27:50 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 6079
IP address blocks: 103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.223.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.226.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.229.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.233.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
113.203.249.0/24 maxlen: 24
113.203.250.0/24 maxlen: 24
113.203.251.0/24 maxlen: 24
113.203.252.0/22 maxlen: 22
115.167.2.0/24 maxlen: 24
115.167.73.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.97.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.152.0/21 maxlen: 21
180.178.160.0/24 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.165.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.167.0/24 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.177.0/24 maxlen: 24
180.178.178.0/24 maxlen: 24
180.178.179.0/24 maxlen: 24
180.178.180.0/22 maxlen: 22
180.178.184.0/22 maxlen: 22
180.178.185.0/24 maxlen: 24
180.178.186.0/24 maxlen: 24
180.178.187.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jul 2024 10:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5123 (0x1403)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jul 3 09:27:50 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66851996-4c65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b5:6c:fa:80:e0:46:a3:44:bd:c3:ba:d3:93:
b8:ac:d5:8d:33:95:46:b2:e7:3f:3a:27:a8:a5:af:
c4:b1:af:ef:88:87:58:26:98:84:fd:54:13:05:eb:
14:8e:89:d7:62:ab:49:4f:5c:68:28:7c:64:6a:60:
f7:36:4c:a1:bf:bc:97:e3:14:a6:d0:2e:d9:22:46:
6e:86:8d:4a:3f:32:b7:61:e7:ef:77:64:1e:f1:8f:
8f:08:37:81:57:09:ad:60:8c:98:80:fc:76:35:c6:
d5:3f:33:18:d2:0d:ec:34:d6:d6:0f:36:06:66:39:
a8:a8:16:24:06:c1:b9:43:29:1a:ba:44:29:da:0c:
9f:c5:3d:c2:68:88:68:01:d6:29:e3:d3:ec:a1:cb:
e5:e6:0d:a1:e9:b7:d4:99:a4:73:7f:8d:99:ed:ff:
0a:75:4d:7b:b3:d8:ea:a3:1a:8f:3d:e9:bf:cd:4b:
ff:12:2d:a0:25:e2:be:50:e6:6a:09:ed:14:f8:c5:
25:60:1f:5b:ba:01:cf:03:d4:d1:85:9a:64:4d:81:
27:5c:89:43:55:0d:ff:75:d7:da:fb:5e:42:2b:f0:
1a:9d:94:fa:17:6b:10:dc:41:94:34:38:5f:be:60:
c7:22:1e:03:2e:4d:59:f9:44:55:8e:72:59:4a:12:
17:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:B1:78:ED:72:CE:B8:FA:15:E7:AB:38:3B:84:BE:49:A2:63:86:2E
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/36F18E58180111EFBF81FA63C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
113.203.208.0/24
113.203.210.0/24
113.203.212.0/23
113.203.216.0-113.203.218.255
113.203.220.0/24
113.203.223.0-113.203.226.255
113.203.228.0/22
113.203.233.0/24
113.203.242.0/24
113.203.244.0/23
113.203.248.0/21
115.167.2.0/24
115.167.73.0/24
115.167.78.0/24
175.110.88.0/22
175.110.97.0/24
175.110.104.0/23
180.178.144.0/24
180.178.146.0/24
180.178.148.0-180.178.150.255
180.178.152.0-180.178.160.255
180.178.163.0/24
180.178.165.0-180.178.171.255
180.178.176.0-180.178.187.255
180.178.189.0/24
180.178.191.0/24
202.92.18.0/24
202.92.20.0/24
223.29.231.0/24
223.29.235.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
17:fc:f3:14:60:1c:1b:cd:0f:7f:1b:68:39:1c:24:ad:5d:e0:
94:06:3e:60:9c:1d:5b:c4:15:f8:75:f7:0c:54:ec:0e:9b:52:
06:6f:e1:5f:ae:81:2f:76:1f:58:ef:7d:62:f5:e0:e6:90:f2:
55:90:1b:43:af:ee:0d:3d:8a:49:bc:2a:b5:3b:46:09:79:12:
c3:eb:f6:c8:8c:8f:0f:bb:d8:e5:80:ae:94:fa:2e:78:0f:ce:
cc:f7:2b:72:c2:3b:0f:56:f4:d8:de:69:fe:2c:8a:ba:21:b1:
0b:82:73:64:d4:4a:1f:4f:76:db:88:c3:f4:2f:f1:92:a7:01:
46:49:ba:81:b3:4a:d3:7a:f1:73:f8:a3:d7:70:b3:29:1d:74:
74:f1:ba:3b:67:4c:b0:a9:7d:57:71:71:62:b4:95:8c:7d:61:
20:da:ca:14:22:c1:91:41:5c:f7:de:0e:69:f1:a6:a2:e0:f6:
42:05:1f:08:3a:cb:7a:98:da:1b:80:bc:6a:ec:de:7c:82:d0:
d2:85:85:01:5c:6e:13:05:9f:b7:f2:67:f0:b4:b2:aa:70:79:
53:b0:45:47:03:11:ec:6b:ef:7d:6d:8f:8c:d1:92:ad:89:03:
10:eb:70:30:e8:bf:e4:27:31:79:90:35:4c:59:05:5c:fb:f1:
a0:0d:d8:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:14:28 2025 by rpki-client