Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/61969AB8807A11EFBE435E80C4F9AE02.roa
File: 61969AB8807A11EFBE435E80C4F9AE02.roa (raw, json)
Hash identifier: nNKk51wQ6ysbtbjAq5X4kdy92TkEKABzKwhjCji05Jg=
Subject key identifier: 07:FD:B3:AE:23:4C:6D:1C:50:D1:D3:6B:05:6C:27:1F:E8:88:E9:81
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 16FD
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/61969AB8807A11EFBE435E80C4F9AE02.roa
Signing time: Wed 02 Oct 2024 14:09:49 +0000
ROA not before: Wed 02 Oct 2024 14:09:49 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 205220
IP address blocks: 113.203.208.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.223.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.226.0/24 maxlen: 24
113.203.228.0/22 maxlen: 24
113.203.233.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
115.167.118.0/24 maxlen: 24
115.167.119.0/24 maxlen: 24
175.110.90.0/24 maxlen: 24
175.110.91.0/24 maxlen: 24
175.110.107.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.110.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Oct 2024 04:59:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5885 (0x16fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Oct 2 14:09:49 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66fd542d-0c69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d1:f8:1a:4a:9e:1c:23:4d:51:c2:e5:cb:a7:
aa:38:f9:62:25:61:af:d6:61:cc:3f:d8:f0:d3:19:
1e:14:3e:f6:2b:ce:0e:2f:79:5a:4c:df:a3:b0:d9:
35:0c:5c:0e:a2:a2:6e:65:41:29:6f:5a:fa:db:99:
4e:af:d1:b4:96:34:9f:46:3c:2c:24:b9:f4:8a:e1:
e8:4d:d6:c4:d8:a9:5f:a4:37:a2:f0:7e:7d:87:ee:
9f:fc:45:8a:13:20:5a:11:48:0a:ff:0a:d3:b3:d9:
d2:55:f2:e6:06:d5:ea:ae:b2:b1:66:1f:11:f7:05:
6f:fc:83:64:e3:73:3f:2c:84:61:fe:2d:3c:86:27:
19:16:e5:11:2d:c8:5d:dc:bf:1c:4e:48:ff:af:bb:
65:45:3e:84:5e:29:e4:1f:5a:55:ef:30:52:9a:2a:
42:1a:5b:d4:f3:f5:75:3e:97:fb:3f:63:3a:6c:24:
28:cc:1a:59:0e:3b:ba:96:98:8f:10:b6:f4:ad:60:
9c:7e:e9:a2:6d:9a:e2:a0:d8:8b:c7:8b:0e:b8:a8:
e3:e8:97:97:96:d4:9e:0e:68:ce:d8:ad:42:79:8e:
a8:44:1d:39:ae:7e:a8:0f:48:03:65:c7:4f:ea:e5:
28:6b:8b:34:4f:49:57:cf:c7:10:df:09:05:29:d3:
c6:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:FD:B3:AE:23:4C:6D:1C:50:D1:D3:6B:05:6C:27:1F:E8:88:E9:81
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/61969AB8807A11EFBE435E80C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.208.0/24
113.203.210.0/24
113.203.212.0/23
113.203.216.0-113.203.218.255
113.203.220.0/24
113.203.223.0-113.203.226.255
113.203.228.0/22
113.203.233.0/24
113.203.242.0/24
113.203.244.0/23
115.167.118.0/23
175.110.90.0/23
175.110.107.0/24
175.110.109.0-175.110.111.255
202.92.18.0/24
202.92.20.0/24
Signature Algorithm: sha256WithRSAEncryption
97:e6:17:02:97:4a:eb:ce:fd:5e:25:c6:34:38:7c:62:05:ea:
0d:96:61:22:57:0d:ae:35:02:de:e4:47:3a:36:f3:87:77:84:
f3:73:c4:d4:95:c8:8d:ea:76:ec:a2:d3:d1:85:2f:1a:ca:5a:
e4:da:41:7b:9a:0c:22:58:f7:73:a1:74:64:81:7d:b5:29:6a:
cf:a4:d2:45:cd:39:9b:da:db:cb:ca:48:ea:e1:47:97:c6:de:
21:a7:1b:06:f9:6e:c3:c1:a7:ab:f1:d0:74:ea:4f:fa:22:3f:
8c:0d:b7:54:a3:40:47:40:00:de:2a:c5:0b:40:a6:ad:d4:8c:
0f:f1:76:57:1e:12:4b:40:b7:01:23:95:97:a2:53:67:15:0f:
54:a8:cf:26:2b:71:67:fa:68:83:a2:de:dd:2b:00:41:fa:c2:
59:f8:3b:8a:b3:bc:db:bf:70:47:b2:04:9f:96:01:60:a8:be:
77:8b:4f:79:25:b6:24:75:d3:12:db:e5:90:8f:8c:05:f8:3f:
ed:14:4a:e7:db:7f:a0:28:d3:b0:56:b3:60:6a:30:da:4f:ea:
ed:a7:19:aa:13:e1:9c:f9:b1:b6:b9:9d:5b:0a:0b:c8:d3:ec:
f6:46:16:73:b2:b3:c8:78:8c:61:cf:96:75:e6:37:39:0b:be:
78:3f:9c:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:09:54 2025 by rpki-client