Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/50C6B5C0668911EFA53BBF29C4F9AE02.roa
File: 50C6B5C0668911EFA53BBF29C4F9AE02.roa (raw, json)
Hash identifier: 31MhKg2yQ2fTzGbd/BnuqkAQ6y5jZhkMVTt9xeDzxd4=
Subject key identifier: B3:07:A7:90:63:06:95:6C:CD:CB:B5:34:80:DB:A4:39:0D:F0:8C:74
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 14E6
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/50C6B5C0668911EFA53BBF29C4F9AE02.roa
Signing time: Fri 30 Aug 2024 04:41:41 +0000
ROA not before: Fri 30 Aug 2024 04:41:41 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 113.203.211.0/24 maxlen: 24
113.203.214.0/24 maxlen: 24
115.167.65.0/24 maxlen: 24
115.167.67.0/24 maxlen: 24
115.167.76.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.164.0/24 maxlen: 24
223.29.229.0/24 maxlen: 24
223.29.230.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Oct 2024 11:43:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5350 (0x14e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Aug 30 04:41:41 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66d14d84-5fcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b2:5b:fe:92:43:5a:d9:e8:37:6f:43:5e:95:
56:30:3b:f1:48:3f:a6:f1:03:ce:84:dd:d4:ff:70:
00:74:e0:ab:89:3e:fa:6a:aa:c1:f0:8e:8e:4e:aa:
9c:c6:af:32:c0:5b:e1:8b:d5:ad:8e:de:b8:8e:a3:
6e:09:fb:ec:6d:11:bc:aa:e2:d9:23:2b:03:3f:04:
eb:e3:bb:5c:a0:22:c2:cf:f9:d5:35:8c:f5:7b:5c:
6e:81:67:2b:ab:cd:fa:c1:b5:f0:64:25:3e:b7:4b:
a7:48:d6:04:21:8f:8f:2f:23:6d:ea:7b:e4:04:03:
c8:3c:2b:e7:c7:e4:ae:e4:31:a7:02:3b:a3:24:ba:
2f:2d:35:1b:91:8f:a1:6d:d5:2b:0e:ef:61:a6:85:
85:8f:fe:fa:df:68:b0:4d:3e:f3:23:7c:7d:6b:e9:
1b:ea:ed:7b:2e:79:e6:b3:24:bc:a3:06:c3:bc:26:
aa:c0:50:03:d8:be:a4:7d:9b:8e:7c:24:b5:2d:78:
85:69:e8:fb:f2:de:21:85:69:df:83:98:6d:4e:4d:
e1:b2:c0:16:e9:36:d2:dd:45:6a:32:b8:05:69:f0:
0e:da:93:89:04:5d:f6:40:1c:75:56:01:6d:b2:ae:
2d:dd:06:20:1d:f5:49:2b:fb:7e:25:bf:d3:c1:d4:
a9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:07:A7:90:63:06:95:6C:CD:CB:B5:34:80:DB:A4:39:0D:F0:8C:74
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/50C6B5C0668911EFA53BBF29C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.211.0/24
113.203.214.0/24
115.167.65.0/24
115.167.67.0/24
115.167.76.0/24
115.167.124.0/24
180.178.147.0/24
180.178.162.0/24
180.178.164.0/24
223.29.229.0-223.29.230.255
223.29.239.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:3a:07:77:cf:20:56:46:c5:30:58:99:c9:f5:78:a4:7f:aa:
6c:97:5c:de:d9:a0:f5:4b:14:69:c6:1e:d7:c2:74:0d:48:6e:
b2:cc:09:3b:6c:c4:2c:fa:97:a8:5c:09:b1:7c:a9:fd:6c:9a:
d4:5d:b9:23:c5:12:64:68:88:32:2e:0b:fd:7c:5f:44:6a:41:
5b:de:37:45:f6:81:c4:79:e9:f1:8e:3e:92:e1:3e:a1:b3:90:
5e:87:ee:87:16:ad:b3:a7:9f:c9:a4:73:2c:62:cc:c0:5c:bc:
d6:dd:a8:3a:af:ba:96:fc:32:14:c2:a4:28:04:80:da:8a:c2:
5b:20:f2:21:c7:fa:6e:61:29:e9:6b:d4:cb:7f:e3:5f:a1:ad:
b1:cc:2c:3a:35:62:ad:9b:eb:ed:c2:53:97:c0:a8:40:6a:0c:
84:e5:32:5a:fc:8b:1d:6c:09:24:46:b1:d3:b7:8c:5b:ac:72:
e5:c2:89:dd:37:d7:89:b1:8a:01:3c:e9:61:18:f7:e1:f6:dd:
64:2c:cd:1d:6a:4a:81:94:cb:bc:1d:00:a8:74:cf:41:0e:21:
aa:94:76:dc:02:ef:59:35:66:89:2f:86:94:94:a7:15:93:6b:
70:9b:44:45:4d:d4:3e:41:eb:36:df:de:99:4d:b6:c5:99:f4:
e4:bf:8e:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:55:44 2025 by rpki-client