Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/64A41D06259F11EFB2D0EA55C4F9AE02.roa
File: 64A41D06259F11EFB2D0EA55C4F9AE02.roa (raw, json)
Hash identifier: FjnRVDVhfxGESflvCMuLk3oPa8HfZ9o35TQg0O5HqFA=
Subject key identifier: 02:01:CD:80:2B:0A:A1:DE:03:FD:E7:B4:5B:E2:15:8D:A2:87:C8:20
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1309
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/64A41D06259F11EFB2D0EA55C4F9AE02.roa
Signing time: Sat 08 Jun 2024 13:59:59 +0000
ROA not before: Sat 08 Jun 2024 13:59:59 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 115.167.49.0/24 maxlen: 24
115.167.65.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jun 2024 07:46:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4873 (0x1309)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jun 8 13:59:59 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=666463df-94ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:62:86:fb:34:a1:12:15:3a:84:36:24:7c:1b:
fb:18:ad:b8:65:4e:e3:6c:4a:de:bb:ce:53:be:d8:
b5:b1:79:7e:7f:34:0a:b5:49:e1:6a:cc:c8:49:8d:
4a:ea:cf:8a:f4:79:a7:55:f2:e2:23:21:41:d2:c6:
36:c0:1d:bf:e0:ce:46:fd:c2:9b:8d:34:70:a1:db:
48:b2:6f:08:c2:41:76:fb:da:40:ee:2d:63:a5:c1:
ac:36:6a:b9:e3:89:4a:4e:4d:dc:72:49:8d:78:22:
bc:90:17:f3:19:75:86:54:37:b7:e5:29:c9:44:d1:
c8:3a:cf:5a:a6:c2:48:a4:3e:f5:12:6d:75:14:18:
e5:bc:fb:b5:bd:78:c4:8c:ce:b7:ed:06:d5:7e:a4:
92:37:b1:85:2d:a8:d5:6d:bf:96:73:9b:87:05:f4:
67:08:fd:45:fa:29:e4:cf:ca:85:73:fe:48:8b:60:
34:dd:7f:60:22:55:db:7e:03:f7:1c:80:43:a0:e7:
36:1b:88:ae:77:b4:4e:23:f4:d8:1b:05:57:2b:bb:
8d:72:db:36:b8:fd:13:b6:df:b6:08:61:4d:43:f9:
b5:00:d1:aa:88:de:4d:16:7e:56:f8:d4:d6:57:3a:
fe:15:27:93:e2:0f:3e:a3:bb:7e:b7:51:f6:87:08:
c6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:01:CD:80:2B:0A:A1:DE:03:FD:E7:B4:5B:E2:15:8D:A2:87:C8:20
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/64A41D06259F11EFB2D0EA55C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.49.0/24
115.167.65.0-115.167.66.255
180.178.142.0/24
223.29.225.0/24
223.29.227.0/24
Signature Algorithm: sha256WithRSAEncryption
83:54:e9:76:b2:f8:36:33:ca:4e:22:fe:86:c0:cb:e7:47:f7:
91:0e:44:94:e4:18:dc:a4:c5:f1:fc:9b:aa:99:56:cb:38:e5:
47:81:20:08:39:10:55:5e:be:d0:b7:34:8e:8e:2b:bf:64:28:
06:16:d9:31:ef:db:db:17:a5:e6:79:b8:78:45:ef:c3:33:0e:
53:04:65:d2:53:db:ef:22:c0:77:f1:a7:62:bd:09:61:ed:48:
7f:d9:81:f7:eb:75:f4:89:8f:ec:5c:17:ec:a0:3b:2e:c7:37:
76:59:7c:79:60:78:5a:6a:0c:20:8d:9a:8f:f3:9a:24:26:1b:
11:bc:a1:be:04:de:ca:6a:52:87:16:4c:3b:ae:a1:b5:90:eb:
5a:23:99:85:1b:86:3d:3f:69:0c:3d:20:ab:b4:94:58:da:ec:
77:50:ea:67:b5:f5:34:c3:f3:ab:f6:c3:58:96:f2:b9:ac:f2:
b6:8e:cd:d1:77:4a:e4:ec:7b:57:0e:a5:72:f5:64:44:13:d3:
18:81:78:4e:8e:c5:fa:d5:0f:e9:b8:2c:de:30:c7:0b:f1:86:
41:9a:cd:47:02:e8:4b:c4:7b:c2:d7:fd:fc:ff:84:2a:9e:61:
a8:c2:2a:36:8d:6f:2c:f8:a2:05:83:5d:4b:70:d9:71:07:1d:
f9:65:83:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:58:02 2025 by rpki-client