Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/507D9EE032E911EF8DD9B084C4F9AE02.roa
File: 507D9EE032E911EF8DD9B084C4F9AE02.roa (raw, json)
Hash identifier: 82adoQ1tYsWUM5VTHNBogL8zRXbmlKtNxMeI6ICzX9Q=
Subject key identifier: 03:26:E9:FA:A3:3C:F4:27:15:E5:C1:04:EF:9C:7A:49:C6:AF:83:B7
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 13FF
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/507D9EE032E911EF8DD9B084C4F9AE02.roa
Signing time: Wed 03 Jul 2024 05:45:56 +0000
ROA not before: Wed 03 Jul 2024 05:45:56 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 113.203.239.0/24 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.60.0/22 maxlen: 22
115.167.65.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
175.110.68.0/22 maxlen: 22
175.110.80.0/22 maxlen: 22
175.110.88.0/22 maxlen: 24
180.178.142.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jul 2024 09:27:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5119 (0x13ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jul 3 05:45:56 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6684e594-c253
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:53:7b:f5:a9:00:c6:80:da:05:69:a5:a2:c0:
88:82:7f:f6:1d:f6:6a:e0:79:f2:09:89:cb:01:48:
d6:83:36:2b:56:88:10:1c:49:57:26:d7:f3:81:ac:
c5:42:32:98:d1:74:d1:19:2e:0f:31:01:6a:dc:70:
f6:06:56:8e:11:0b:92:e7:01:2b:d9:fe:87:b9:ea:
9e:26:99:15:ab:90:69:3f:34:94:65:c8:94:04:5c:
fc:a9:c0:7b:26:98:43:d9:1c:23:c4:dc:65:f6:8e:
71:1d:09:e9:de:fe:85:c6:9d:16:98:6f:b6:9a:fd:
a8:7f:99:90:d2:73:9a:71:83:73:be:a1:ac:0d:5e:
83:94:10:bf:82:17:e8:f6:a3:7f:5a:18:6c:29:76:
45:bb:e4:8a:9f:3b:cb:be:4d:0a:35:cf:94:1b:6d:
37:d7:65:67:c2:a6:e9:56:22:bf:2c:95:0d:3b:ba:
95:84:96:39:7a:d6:86:18:fd:ad:e3:f6:f4:a1:54:
2a:18:ea:ee:84:4c:17:f2:d3:e4:89:44:c2:95:54:
23:76:e4:c6:8e:4c:58:fd:ef:93:99:29:ac:83:60:
09:41:15:e0:97:9f:17:82:f5:1b:ce:7f:30:2b:5e:
d1:f9:13:d1:42:51:54:e9:91:47:e5:ea:6c:2f:bf:
53:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:26:E9:FA:A3:3C:F4:27:15:E5:C1:04:EF:9C:7A:49:C6:AF:83:B7
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/507D9EE032E911EF8DD9B084C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.239.0/24
115.167.49.0/24
115.167.60.0/22
115.167.65.0/24
115.167.124.0/24
175.110.68.0/22
175.110.80.0/22
175.110.88.0/22
180.178.142.0/24
223.29.225.0/24
223.29.227.0/24
Signature Algorithm: sha256WithRSAEncryption
23:70:dc:11:40:e2:d4:6d:0d:c8:a1:da:3b:ff:40:5b:c3:ca:
50:f4:c2:a6:59:eb:b3:2e:08:b7:03:73:c8:16:a6:e8:80:54:
02:c3:d0:66:05:f6:e8:62:e9:05:32:26:b3:b4:8e:80:0e:12:
68:6f:6b:da:e3:db:7d:3e:2a:9e:d5:7d:47:2a:4f:4a:2d:80:
61:a0:fa:87:a1:cd:88:28:4b:4c:76:3d:9f:ab:09:0d:4e:7e:
14:10:08:4d:6c:18:1e:64:cc:f6:8b:44:f0:8f:02:75:09:32:
ea:1f:ad:f9:05:36:9b:2c:20:de:da:5a:8a:d2:f6:ba:1a:d0:
14:db:ae:0b:e9:8a:3a:09:70:25:dc:ce:84:f4:91:8c:67:c9:
45:4a:a2:90:4d:2c:49:c5:d0:59:76:a0:49:69:1a:62:bc:6d:
65:de:e0:52:bd:9f:ee:30:9a:39:15:3f:32:58:6e:a8:ba:45:
ad:4b:7e:53:7d:ec:29:5e:a1:1f:a9:7d:bb:7d:1d:19:84:67:
fc:dd:99:a8:96:5d:08:01:e5:18:c4:b7:56:69:d7:7b:29:25:
ac:82:6d:07:68:a9:59:4e:7b:c4:0c:ff:3b:c1:54:1e:d8:de:
4c:e8:69:24:18:86:58:be:77:4e:85:d6:bc:b1:09:c9:1b:17:
33:b7:13:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:05:06 2025 by rpki-client