Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/4BC4BBC0169411EFB4F35415C4F9AE02.roa
File: 4BC4BBC0169411EFB4F35415C4F9AE02.roa (raw, json)
Hash identifier: 7d694CFc2/+NR+mfIOCZOu8kKEN30AKv6WD1/YMFdHo=
Subject key identifier: 82:DD:37:15:DE:58:4C:55:3C:14:05:7C:AB:FD:B6:67:7C:29:2D:1A
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1266
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/4BC4BBC0169411EFB4F35415C4F9AE02.roa
Signing time: Fri 24 May 2024 22:32:45 +0000
ROA not before: Fri 24 May 2024 22:32:45 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jun 2024 14:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4710 (0x1266)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: May 24 22:32:45 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6651158d-f0e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2e:73:3f:dd:55:85:fc:3a:fc:20:5d:e8:40:
83:1b:b7:55:06:df:82:a6:30:c2:d9:64:fc:58:f8:
c1:c8:a0:17:b2:e5:6c:c3:e7:4f:b8:b2:59:ec:26:
9b:d9:25:05:f5:1d:73:b7:1b:30:66:dd:b3:89:3c:
4b:a2:76:2f:fb:36:96:fe:96:a3:d6:da:d3:62:70:
c2:e3:77:31:eb:66:ad:0d:31:f6:a9:95:dd:da:f4:
fb:87:f6:11:ef:96:49:2a:5c:f6:ae:26:6f:8f:a2:
a8:e9:7c:37:48:8d:de:fe:5c:ac:0f:0e:aa:34:58:
38:ff:f4:d7:41:5e:19:29:37:38:0a:b0:af:38:57:
6b:5f:79:d4:1a:bf:d1:0a:70:cb:91:c5:17:cb:30:
dc:bc:31:33:c9:22:a0:07:e9:ed:3f:a7:90:7e:f7:
e0:18:6d:d1:4c:a3:d7:c4:5e:d5:73:5c:71:fa:e9:
99:cc:89:de:cf:f6:a9:d8:eb:f5:b7:d5:24:f1:38:
aa:39:b2:bc:2a:ae:ef:09:d3:61:12:19:37:8e:3a:
67:46:e8:fd:e0:05:4f:86:1f:26:41:24:f9:61:5a:
a8:c2:0b:fb:3b:52:10:c7:ba:8b:fa:5d:37:22:d0:
5e:90:a0:6b:50:0c:21:e8:f9:21:39:68:27:6b:b0:
31:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:DD:37:15:DE:58:4C:55:3C:14:05:7C:AB:FD:B6:67:7C:29:2D:1A
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/4BC4BBC0169411EFB4F35415C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
113.203.234.0-113.203.240.255
113.203.245.0/24
113.203.253.0/24
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.147.0/24
180.178.172.0/24
180.178.174.0/23
223.29.226.0/24
223.29.228.0/24
Signature Algorithm: sha256WithRSAEncryption
72:eb:f5:a8:4c:00:d5:ac:fd:08:b8:31:b6:69:8c:ad:77:ed:
a3:96:8f:23:d8:fd:74:0a:1c:30:e5:d3:10:07:a0:df:9b:dd:
01:af:4b:09:8f:fe:5c:73:b3:f6:a5:9e:12:1b:5f:ef:b0:f4:
7b:4c:5c:b2:d6:52:1e:d8:90:b3:29:72:40:fe:1e:bf:76:ed:
3f:ad:fc:31:37:79:4e:9a:ba:c1:9b:6a:95:cd:c2:95:c0:99:
09:6f:9e:71:2f:99:fd:7b:2b:3d:20:0b:23:59:60:73:0f:7a:
38:5a:65:50:3b:ea:9b:5f:57:52:8a:01:21:a6:21:af:95:a7:
e3:f5:9a:b9:27:e0:3d:6d:7c:5e:a0:31:2c:0d:48:58:fd:3d:
13:6e:48:87:ef:33:16:50:f7:a5:7f:8d:e6:02:09:eb:15:2d:
39:62:4f:fb:47:35:70:41:1f:c0:f9:26:5a:77:31:96:67:91:
77:e0:ee:4e:fb:40:f4:d8:49:1e:59:a7:af:65:4f:f7:d5:9f:
a3:bd:02:4d:70:c4:24:1d:41:8d:ad:ac:11:2c:e1:02:e3:eb:
37:a8:20:1f:b3:5b:78:82:d4:d3:bf:a0:69:83:44:ad:13:7d:
ad:15:83:8a:f3:69:1e:4d:33:92:e0:f1:bb:e8:38:b5:3c:36:
7b:02:30:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:12:14 2025 by rpki-client