Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/66C2F416B39A11EFBA1F445AC4F9AE02.roa
File: 66C2F416B39A11EFBA1F445AC4F9AE02.roa (raw, json)
Hash identifier: SaraqBuc1RFSdkYTQoexFlVeg3Wl8EjCjtGt9MgQmps=
Subject key identifier: 59:0B:94:3B:45:AA:1B:4C:6A:CB:8E:1A:AD:63:0A:05:C3:23:54:89
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1EA3
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/66C2F416B39A11EFBA1F445AC4F9AE02.roa
Signing time: Fri 06 Dec 2024 06:23:50 +0000
ROA not before: Fri 06 Dec 2024 06:23:50 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 55154
IP address blocks: 103.151.27.0/24 maxlen: 24
113.203.211.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
113.203.255.0/24 maxlen: 24
115.167.3.0/24 maxlen: 24
115.167.5.0/24 maxlen: 24
115.167.9.0/24 maxlen: 24
115.167.12.0/22 maxlen: 24
115.167.28.0/24 maxlen: 24
115.167.50.0/24 maxlen: 24
115.167.52.0/24 maxlen: 24
115.167.53.0/24 maxlen: 24
115.167.54.0/24 maxlen: 24
115.167.55.0/24 maxlen: 24
115.167.101.0/24 maxlen: 24
115.167.102.0/24 maxlen: 24
115.167.103.0/24 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.89.0/24 maxlen: 24
175.110.91.0/24 maxlen: 24
175.110.97.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.177.0/24 maxlen: 24
180.178.178.0/24 maxlen: 24
180.178.179.0/24 maxlen: 24
180.178.183.0/24 maxlen: 24
180.178.187.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.230.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Dec 2024 11:20:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7843 (0x1ea3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 6 06:23:50 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67529876-7b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a9:b0:40:cd:c3:d1:64:61:2f:cf:dd:ea:30:
1d:d2:df:9c:d8:22:76:d4:17:b3:a5:b6:a0:3a:f6:
47:a4:1b:67:a8:fa:82:12:1e:76:76:ea:04:86:5b:
d3:7e:bb:5b:50:31:1e:54:cc:32:6f:be:98:e5:ff:
9e:54:6a:eb:00:9d:74:e4:2e:23:52:f6:cb:79:c6:
b3:19:f0:94:75:ad:07:b5:1e:c3:c3:d6:3a:eb:ee:
29:cd:47:14:59:d8:a0:99:ca:10:21:b0:1a:9b:81:
f0:d3:e4:65:8f:99:22:a4:4e:10:b0:07:56:b5:1b:
53:6c:4d:3b:1c:d9:7c:dc:38:68:65:b4:9d:cf:66:
a4:9c:75:93:d1:f2:91:e8:6c:fe:fa:2f:23:95:bc:
28:99:73:98:7b:e5:e2:cf:e2:43:3c:d9:25:e6:0e:
1f:54:c2:42:6f:8a:e3:e9:a5:00:d4:39:10:d3:c4:
05:70:93:56:24:5f:c2:99:36:bc:78:cf:65:36:74:
6d:c3:69:9d:8c:87:69:a9:ac:5c:15:1a:ec:89:f8:
8e:c3:ba:80:c9:22:40:05:0f:1e:ed:b5:81:1f:0c:
69:71:ff:79:04:c6:da:35:e3:62:f2:59:d5:83:af:
22:d6:c9:12:3b:8b:01:e0:39:12:d0:4f:49:68:0d:
68:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:0B:94:3B:45:AA:1B:4C:6A:CB:8E:1A:AD:63:0A:05:C3:23:54:89
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/66C2F416B39A11EFBA1F445AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
113.203.211.0/24
113.203.213.0/24
113.203.215.0/24
113.203.219.0/24
113.203.224.0/23
113.203.227.0/24
113.203.241.0/24
113.203.243.0/24
113.203.248.0/24
113.203.253.0/24
113.203.255.0/24
115.167.3.0/24
115.167.5.0/24
115.167.9.0/24
115.167.12.0/22
115.167.28.0/24
115.167.50.0/24
115.167.52.0/22
115.167.101.0-115.167.103.255
115.167.125.0/24
175.110.80.0/22
175.110.89.0/24
175.110.91.0/24
175.110.97.0/24
175.110.104.0/24
175.110.106.0/24
180.178.147.0/24
180.178.149.0/24
180.178.166.0/24
180.178.169.0-180.178.171.255
180.178.176.0/22
180.178.183.0/24
180.178.187.0/24
180.178.189.0/24
223.29.225.0/24
223.29.228.0/24
223.29.230.0/23
223.29.235.0/24
223.29.237.0-223.29.239.255
Signature Algorithm: sha256WithRSAEncryption
29:da:3c:6d:b2:03:be:04:1b:83:63:69:49:67:a8:47:fa:cf:
21:58:44:3b:9b:ea:4a:a0:80:97:4d:48:93:52:92:d2:c7:f1:
b1:bd:3e:dc:bb:5e:07:b3:0a:22:e8:f7:f0:22:bb:62:50:ba:
22:af:83:87:a4:94:1b:d6:f9:f5:ec:ce:6e:79:97:02:cb:86:
76:aa:87:a0:52:1e:fe:de:b9:4f:0a:73:3d:0b:1f:ae:d8:33:
db:bb:63:9d:5f:5e:55:a3:3c:d7:11:4b:b9:a4:52:7c:fb:23:
f6:3a:76:4b:c2:76:8b:2a:3d:37:fb:3d:ab:e5:88:6c:e9:1f:
c3:a1:ce:17:14:5a:4e:f9:17:e7:58:8b:fa:9d:f3:20:80:fe:
bd:18:ae:ad:47:b1:ab:ec:3a:49:4c:26:93:9a:5f:59:7b:a1:
1f:24:d5:b8:1c:61:df:02:a4:9f:2d:72:85:ad:a4:94:87:56:
0f:5c:7a:41:b8:cd:22:ec:9b:e8:52:79:1c:58:86:b6:5a:4e:
e6:c1:6c:48:39:c3:80:81:ce:f1:e4:70:b5:38:03:8b:da:83:
6a:5b:5d:52:28:a2:eb:76:6a:48:9c:f7:75:6c:21:37:94:76:
67:b4:b1:1c:cb:b3:4f:61:b7:11:ee:28:19:e3:a9:99:91:23:
7a:31:7d:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:48:26 2025 by rpki-client