Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/565E017E955911EF8A317A45C4F9AE02.roa
File: 565E017E955911EF8A317A45C4F9AE02.roa (raw, json)
Hash identifier: peLyw6QX8hGM5loVrBcCcjO0NlFpKBFxe3PUZ8t/Rk0=
Subject key identifier: 2F:88:7A:6D:A2:F5:47:75:D0:C3:B6:88:81:53:4C:AC:B5:F6:DC:27
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1C16
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/565E017E955911EF8A317A45C4F9AE02.roa
Signing time: Mon 11 Nov 2024 10:38:27 +0000
ROA not before: Mon 11 Nov 2024 10:38:27 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 10753
IP address blocks: 115.167.1.0/24 maxlen: 24
115.167.24.0/24 maxlen: 24
115.167.25.0/24 maxlen: 24
115.167.26.0/24 maxlen: 24
115.167.27.0/24 maxlen: 24
115.167.100.0/24 maxlen: 24
115.167.104.0/22 maxlen: 24
115.167.112.0/22 maxlen: 24
175.110.72.0/22 maxlen: 24
175.110.84.0/22 maxlen: 24
175.110.96.0/24 maxlen: 24
180.178.152.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 12 Nov 2024 04:43:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7190 (0x1c16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Nov 11 10:38:27 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6731dea2-2931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a9:4f:cc:c0:9f:50:4b:f4:99:3c:04:d5:94:
14:5a:9e:f3:3c:f8:5f:41:dc:38:44:10:1f:94:59:
1f:eb:b1:ff:e5:88:35:47:c4:9c:92:06:ea:7e:b1:
23:23:08:ca:4a:8d:56:ff:18:95:8a:ac:41:46:fa:
e5:0f:a4:31:f8:01:a5:b4:b7:64:37:04:1b:e1:9f:
e0:5a:1d:88:a0:d2:a4:67:3d:7b:4d:45:52:97:36:
dc:ad:32:4e:ee:93:9a:bf:49:43:e2:62:96:a7:6f:
07:0d:bb:29:29:58:8a:05:d7:ab:99:5b:fc:91:55:
ef:16:c2:ea:a4:fd:b7:ce:d6:8b:07:8a:c4:b1:ae:
83:d4:e9:25:de:e0:c7:e0:ae:43:ae:54:0b:e0:c0:
51:95:e3:5c:0d:cb:1a:7f:42:9e:5e:b7:ee:57:58:
26:e6:97:4f:a8:4d:f9:bc:ca:5f:6e:f8:5c:bf:4e:
b7:ed:25:bf:78:68:5c:e0:e7:7a:1b:24:4e:c1:52:
8f:52:e1:96:56:ca:69:84:40:31:4c:96:78:79:72:
9b:20:39:03:a9:14:1d:de:fd:a5:85:e4:6b:19:e7:
ef:b1:08:00:f6:82:d1:fc:84:9d:bd:69:da:86:71:
c4:15:bb:f9:37:a2:df:4c:59:eb:99:78:64:b3:38:
37:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:88:7A:6D:A2:F5:47:75:D0:C3:B6:88:81:53:4C:AC:B5:F6:DC:27
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/565E017E955911EF8A317A45C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.1.0/24
115.167.24.0/22
115.167.100.0/24
115.167.104.0/22
115.167.112.0/22
175.110.72.0/22
175.110.84.0/22
175.110.96.0/24
180.178.152.0/22
Signature Algorithm: sha256WithRSAEncryption
85:3a:ef:4a:18:60:f1:5b:ac:2b:23:c8:cf:d1:e1:08:a7:e2:
7f:62:f5:89:99:08:1b:ff:6c:46:4a:a0:32:2a:be:a2:de:be:
fa:d5:97:69:f5:bf:50:dc:c1:8e:2d:6d:42:56:af:a7:fa:b1:
8f:ee:4d:41:45:87:07:c8:0a:e5:b6:e3:36:19:4e:5e:0f:91:
e8:4d:35:96:69:a8:8a:0b:d2:67:12:05:99:12:7f:78:86:a6:
93:b5:77:7d:0a:e8:d3:52:c0:4d:38:ac:23:8b:7f:d7:d4:98:
3c:b6:62:2d:a3:7f:27:88:e9:f1:7d:a7:c7:75:40:1e:20:1d:
27:e1:d6:6b:15:6c:78:a6:3a:7f:8a:5d:4a:69:e7:6b:7a:e2:
85:34:b7:d9:fe:ef:1b:8e:93:d0:d1:97:b1:2e:0d:21:96:f6:
5c:24:c7:8b:4f:c5:3c:6c:3a:9a:72:87:3c:e7:2e:ea:72:4e:
8f:eb:04:c1:66:21:d7:e8:d9:c1:64:68:ed:54:63:f0:98:ca:
2a:77:9e:3f:e6:08:38:9a:78:68:a7:39:38:66:7d:84:93:a9:
a0:4c:d4:bc:7c:9d:45:21:c0:ab:5f:a2:27:ea:6d:2a:09:cf:
52:5f:eb:4e:6c:17:84:2c:f9:99:e7:ca:46:8f:e8:ff:77:02:
a4:83:f6:89
-----BEGIN CERTIFICATE-----
MIIFoTCCBImgAwIBAgICHBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQxMTExMTAzODI3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzMxZGVhMi0yOTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEApqlPzMCfUEv0mTwE1ZQUWp7zPPhfQdw4RBAflFkf67H/5Yg1R8SckgbqfrEj
IwjKSo1W/xiViqxBRvrlD6Qx+AGltLdkNwQb4Z/gWh2IoNKkZz17TUVSlzbcrTJO
7pOav0lD4mKWp28HDbspKViKBdermVv8kVXvFsLqpP23ztaLB4rEsa6D1Okl3uDH
4K5DrlQL4MBRleNcDcsaf0KeXrfuV1gm5pdPqE35vMpfbvhcv0637SW/eGhc4Od6
GyROwVKPUuGWVspphEAxTJZ4eXKbIDkDqRQd3v2lheRrGefvsQgA9oLR/ISdvWna
hnHEFbv5N6LfTFnrmXhkszg3TwIDAQABo4ICxTCCAsEwHQYDVR0OBBYEFC+Iem2i
9Ud10MO2iIFTTKy19twnMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvNTY1RTAxN0U5
NTU5MTFFRjhBMzE3QTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTwYIKwYBBQUHAQcBAf8E
QDA+MDwEAgABMDYDBABzpwEDBAJzpxgDBABzp2QDBAJzp2gDBAJzp3ADBAKvbkgD
BAKvblQDBACvbmADBAK0spgwDQYJKoZIhvcNAQELBQADggEBAIU670oYYPFbrCsj
yM/R4Qin4n9i9YmZCBv/bEZKoDIqvqLevvrVl2n1v1DcwY4tbUJWr6f6sY/uTUFF
hwfICuW24zYZTl4PkehNNZZpqIoL0mcSBZkSf3iGppO1d30K6NNSwE04rCOLf9fU
mDy2Yi2jfyeI6fF9p8d1QB4gHSfh1msVbHimOn+KXUpp52t64oU0t9n+7xuOk9DR
l7EuDSGW9lwkx4tPxTxsOppyhzznLupyTo/rBMFmIdfo2cFkaO1UY/CYyip3nj/m
CDiaeGinOThmfYSTqaBM1Lx8nUUhwKtfoifqbSoJz1Jf605sF4Qs+ZnnykaP6P93
AqSD9ok=
-----END CERTIFICATE-----
Generated at Sun Apr 13 02:26:26 2025 by rpki-client