Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/66F773C6858711EFA7F54B6BC4F9AE02.roa
File: 66F773C6858711EFA7F54B6BC4F9AE02.roa (raw, json)
Hash identifier: o9UKsLy2Nq7Sc0715ShD53fJvOcDxg+1tzQpTNIvF5o=
Subject key identifier: 86:2C:BB:F8:54:FD:D2:58:AE:6E:C5:A3:FC:BF:64:EF:A3:D1:F0:F2
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1751
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/66F773C6858711EFA7F54B6BC4F9AE02.roa
Signing time: Thu 10 Oct 2024 07:53:57 +0000
ROA not before: Thu 10 Oct 2024 07:53:57 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 43.226.224.0/22 maxlen: 24
103.11.63.0/24 maxlen: 24
103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.248.0/22 maxlen: 24
113.203.252.0/22 maxlen: 24
115.167.2.0/24 maxlen: 24
115.167.3.0/24 maxlen: 24
115.167.5.0/24 maxlen: 24
115.167.6.0/24 maxlen: 24
115.167.9.0/24 maxlen: 24
115.167.12.0/22 maxlen: 24
115.167.16.0/22 maxlen: 24
115.167.20.0/22 maxlen: 24
115.167.50.0/24 maxlen: 24
115.167.56.0/22 maxlen: 24
115.167.60.0/22 maxlen: 24
115.167.64.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
115.167.73.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.116.0/24 maxlen: 24
115.167.117.0/24 maxlen: 24
115.167.120.0/22 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.152.0/21 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.165.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.167.0/24 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.176.0/22 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/22 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 10:12:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5969 (0x1751)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Oct 10 07:53:57 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67078815-0b35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f3:3d:73:16:24:85:dd:af:36:42:3d:7a:33:
e8:03:ac:b8:5f:7f:f2:f6:1f:39:76:55:8d:0c:c7:
89:f2:ae:85:37:4c:5f:43:88:e0:ee:9b:7a:42:bb:
a5:80:0e:be:87:1b:b1:7d:b9:6d:cc:5d:dd:84:b6:
21:29:cc:03:84:69:30:27:1c:e2:cd:66:ba:00:bb:
48:2c:a5:a7:84:0b:ee:b2:36:dc:71:de:53:30:eb:
0b:2a:6f:db:00:32:b8:bf:23:71:83:b7:87:09:0f:
12:7f:bd:ab:94:1e:36:44:da:ae:16:1b:36:d0:b8:
ea:25:e3:30:96:b1:be:b2:8d:69:a8:4d:e7:5f:65:
bb:2b:f4:ee:f2:3a:da:70:d6:49:b2:24:1e:b0:76:
f5:90:a0:e9:c1:04:f3:4b:bc:b4:8a:af:9f:e4:53:
3a:ef:d7:15:31:47:de:8a:ad:f7:63:9f:1b:46:f5:
37:92:70:2a:f9:f1:47:23:51:08:4a:36:df:64:0e:
78:c0:59:7b:24:a2:26:ef:0a:38:99:7d:5f:76:89:
c8:12:74:38:7c:36:f8:a9:29:ce:c6:99:82:07:63:
8c:db:9a:53:9b:84:21:d5:91:69:d1:d5:25:f1:d1:
c5:e6:ca:0b:ac:4f:b5:8c:04:0f:1b:3d:a4:f3:01:
22:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:2C:BB:F8:54:FD:D2:58:AE:6E:C5:A3:FC:BF:64:EF:A3:D1:F0:F2
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/66F773C6858711EFA7F54B6BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.224.0/22
103.11.63.0/24
103.151.27.0/24
113.203.208.0/24
113.203.210.0/24
113.203.213.0/24
113.203.215.0/24
113.203.217.0/24
113.203.219.0-113.203.220.255
113.203.222.0/24
113.203.224.0/23
113.203.227.0/24
113.203.243.0/24
113.203.248.0/21
115.167.2.0/23
115.167.5.0-115.167.6.255
115.167.9.0/24
115.167.12.0-115.167.23.255
115.167.50.0/24
115.167.56.0-115.167.64.255
115.167.66.0/24
115.167.73.0/24
115.167.78.0/24
115.167.116.0/23
115.167.120.0/22
115.167.125.0/24
175.110.104.0/24
180.178.142.0/24
180.178.144.0/24
180.178.146.0/24
180.178.148.0-180.178.150.255
180.178.152.0-180.178.160.255
180.178.163.0/24
180.178.165.0-180.178.171.255
180.178.176.0-180.178.187.255
180.178.189.0/24
180.178.191.0/24
202.92.26.0/24
223.29.231.0/24
223.29.235.0-223.29.239.255
Signature Algorithm: sha256WithRSAEncryption
5a:49:d8:a3:ed:d5:23:d5:35:b5:35:f6:70:a1:64:d3:15:aa:
04:c4:c7:92:1e:bd:03:fc:f4:d3:fb:10:9d:e6:6a:e1:20:52:
75:07:22:19:fa:5e:05:de:ff:e5:33:d4:d4:76:d9:e0:c7:c0:
98:dc:15:17:ee:fe:35:03:2f:13:aa:5e:09:f6:51:79:f1:00:
dc:e0:7f:7b:c2:1d:97:be:31:4d:05:13:85:fa:d5:4f:b9:d9:
fe:6c:30:50:4e:9d:e9:b9:ba:9a:b1:b7:37:b1:d6:92:1e:21:
54:ee:47:86:25:ce:a3:8e:6b:7d:90:a5:00:9f:f1:30:99:6c:
70:2d:77:d3:aa:74:c9:87:d2:d0:05:d9:8b:02:c6:8f:79:35:
54:a8:55:17:b5:d7:95:8f:20:0e:56:ef:b4:0f:33:a3:21:14:
22:36:16:9f:ee:7c:30:87:4f:96:2c:7f:94:2e:9b:31:84:18:
2b:60:5c:72:84:72:bd:f8:23:c8:62:84:cc:67:7a:fb:5d:ad:
ee:00:16:9c:f5:fc:41:65:bf:bf:9e:ee:55:5f:ff:cb:40:77:
b9:81:34:cf:61:b5:2a:fc:3a:fc:29:5a:51:d3:31:a2:bd:81:
f8:c1:cc:9d:57:ab:fb:e7:0f:3e:73:a4:60:bf:a7:db:7e:6c:
b7:09:8b:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:57:59 2025 by rpki-client