Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/6A35E5EA968511EF8771C038C4F9AE02.roa
File: 6A35E5EA968511EF8771C038C4F9AE02.roa (raw, json)
Hash identifier: YqyXFD4fC4fuLulDNGxxMYWpMLp76UP5lQTetGHwNHM=
Subject key identifier: C6:EB:34:0F:31:8E:D6:C1:1C:ED:01:25:12:C8:27:F4:C8:21:57:AB
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1A31
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/6A35E5EA968511EF8771C038C4F9AE02.roa
Signing time: Wed 30 Oct 2024 06:08:43 +0000
ROA not before: Wed 30 Oct 2024 06:08:43 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 43.226.224.0/22 maxlen: 24
103.11.63.0/24 maxlen: 24
113.203.209.0/24 maxlen: 24
113.203.211.0/24 maxlen: 24
113.203.214.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
113.203.246.0/24 maxlen: 24
115.167.6.0/24 maxlen: 24
115.167.9.0/24 maxlen: 24
115.167.26.0/24 maxlen: 24
115.167.29.0/24 maxlen: 24
115.167.30.0/24 maxlen: 24
115.167.31.0/24 maxlen: 24
115.167.48.0/24 maxlen: 24
115.167.50.0/24 maxlen: 24
115.167.52.0/22 maxlen: 22
115.167.60.0/22 maxlen: 22
115.167.65.0/24 maxlen: 24
115.167.67.0/24 maxlen: 24
115.167.76.0/24 maxlen: 24
115.167.102.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.97.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.151.0/24 maxlen: 24
180.178.152.0/21 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.164.0/24 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.229.0/24 maxlen: 24
223.29.230.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 07:06:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6705 (0x1a31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Oct 30 06:08:43 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6721cd6b-e8e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b1:e1:57:75:6a:9c:98:7a:0f:02:d9:64:31:
d0:93:cb:9d:14:ca:af:f5:5e:e9:04:15:e8:91:ef:
cb:b7:e4:ec:9a:db:6a:4e:5f:a9:f5:20:eb:64:d7:
16:94:1b:f0:3b:af:bf:98:6b:32:91:6b:2e:45:e1:
b1:03:50:1e:4a:8a:dc:6d:32:f1:6e:0f:c9:ca:a4:
1c:33:eb:2d:11:b7:f6:31:ff:bd:f6:51:b4:01:da:
8c:83:0c:70:8b:1e:05:b4:8b:58:1a:32:36:81:ed:
f3:b8:ec:9d:fc:52:5e:8a:e5:1c:3b:90:84:68:3a:
cd:0a:76:a0:74:0e:de:7a:76:c4:b7:29:fd:97:ad:
14:e8:b7:07:0e:3d:b1:14:b6:8b:0c:34:56:00:4b:
d8:e4:6e:87:d3:76:0e:b1:c0:0d:bb:37:f6:ea:57:
74:23:e3:5d:ec:8d:23:9f:cb:d1:4d:57:0b:ee:0f:
5e:12:82:ac:ed:46:9f:f6:79:fc:a4:62:b0:77:3d:
89:76:4a:51:2f:08:45:74:9a:de:6f:69:c9:03:a6:
37:60:b1:a0:bd:56:46:cb:e6:a4:c8:76:cf:82:bf:
bc:1d:91:04:e1:bf:22:36:dc:e1:cb:f6:2b:d6:da:
96:dc:c5:99:02:24:c2:ce:1d:76:7f:f8:a4:5b:67:
90:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:EB:34:0F:31:8E:D6:C1:1C:ED:01:25:12:C8:27:F4:C8:21:57:AB
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/6A35E5EA968511EF8771C038C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.224.0/22
103.11.63.0/24
113.203.209.0/24
113.203.211.0/24
113.203.214.0/23
113.203.219.0/24
113.203.222.0/24
113.203.224.0/24
113.203.241.0/24
113.203.246.0/24
115.167.6.0/24
115.167.9.0/24
115.167.26.0/24
115.167.29.0-115.167.31.255
115.167.48.0/24
115.167.50.0/24
115.167.52.0/22
115.167.60.0/22
115.167.65.0/24
115.167.67.0/24
115.167.76.0/24
115.167.102.0/24
115.167.124.0/23
175.110.80.0/22
175.110.97.0/24
175.110.104.0-175.110.106.255
180.178.142.0/24
180.178.146.0/23
180.178.149.0-180.178.159.255
180.178.161.0-180.178.164.255
180.178.168.0/24
180.178.170.0/24
180.178.188.0/24
180.178.190.0/24
202.92.26.0/24
223.29.225.0-223.29.230.255
223.29.238.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:71:4c:d9:60:e8:7c:58:b4:a3:9f:e3:39:8c:b3:a2:0e:7a:
44:96:3e:a5:57:50:3f:e5:f4:30:15:ff:6e:ec:f6:d1:75:0d:
68:97:4c:59:6a:0c:e9:f6:4b:38:53:c3:ce:cd:fe:3c:e2:f2:
74:42:34:54:03:aa:19:d3:05:49:69:7c:14:fa:fb:dc:f9:d7:
5f:fa:8b:a7:7d:6a:bc:d5:ac:77:70:c5:11:70:db:2c:67:98:
58:fc:ea:cb:55:2e:4a:d3:c8:3a:f9:73:f6:d9:fd:73:fd:49:
2b:e2:62:8d:7f:0e:99:ac:d1:4e:59:fb:e9:05:f4:d7:06:02:
0d:14:03:20:20:19:b9:38:5c:3c:ed:fd:21:6e:ff:33:f2:ad:
51:02:f7:56:64:a3:f3:84:be:59:65:dc:61:83:a6:9c:98:22:
b3:19:5a:b4:d8:0c:b0:8f:60:2a:e9:85:bf:b9:ab:93:6e:45:
f1:b5:3c:e9:33:2d:6e:6e:cc:63:2c:d0:93:b2:79:a0:df:3a:
b1:bf:78:c1:a2:66:56:f2:93:66:ac:61:df:83:b1:67:8c:21:
c5:0a:62:0f:aa:a7:c9:b7:11:39:82:b5:08:a0:27:33:03:d4:
d1:a5:6d:b4:af:60:47:98:30:45:95:30:d8:da:c0:af:d3:89:
b0:2e:1c:de
-----BEGIN CERTIFICATE-----
MIIGezCCBWOgAwIBAgICGjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQxMDMwMDYwODQzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzIxY2Q2Yi1lOGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAr7HhV3VqnJh6DwLZZDHQk8udFMqv9V7pBBXoke/Lt+TsmttqTl+p9SDrZNcW
lBvwO6+/mGsykWsuReGxA1AeSorcbTLxbg/JyqQcM+stEbf2Mf+99lG0AdqMgwxw
ix4FtItYGjI2ge3zuOyd/FJeiuUcO5CEaDrNCnagdA7eenbEtyn9l60U6LcHDj2x
FLaLDDRWAEvY5G6H03YOscANuzf26ld0I+Nd7I0jn8vRTVcL7g9eEoKs7Uaf9nn8
pGKwdz2JdkpRLwhFdJreb2nJA6Y3YLGgvVZGy+akyHbPgr+8HZEE4b8iNtzhy/Yr
1tqW3MWZAiTCzh12f/ikW2eQowIDAQABo4IDnzCCA5swHQYDVR0OBBYEFMbrNA8x
jtbBHO0BJRLIJ/TIIVerMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvNkEzNUU1RUE5
Njg1MTFFRjg3NzFDMDM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggEnBggrBgEFBQcBBwEB
/wSCARYwggESMIIBDgQCAAEwggEGAwQCK+LgAwQAZws/AwQAccvRAwQAccvTAwQB
ccvWAwQAccvbAwQAccveAwQAccvgAwQAccvxAwQAccv2AwQAc6cGAwQAc6cJAwQA
c6caMAwDBABzpx0DBAVzpwADBABzpzADBABzpzIDBAJzpzQDBAJzpzwDBABzp0ED
BABzp0MDBABzp0wDBABzp2YDBAFzp3wDBAKvblADBACvbmEwDAMEA69uaAMEAK9u
agMEALSyjgMEAbSykjAMAwQAtLKVAwQFtLKAMAwDBAC0sqEDBAC0sqQDBAC0sqgD
BAC0sqoDBAC0srwDBAC0sr4DBADKXBowDAMEAN8d4QMEAN8d5gMEAd8d7jANBgkq
hkiG9w0BAQsFAAOCAQEAjXFM2WDofFi0o5/jOYyzog56RJY+pVdQP+X0MBX/buz2
0XUNaJdMWWoM6fZLOFPDzs3+POLydEI0VAOqGdMFSWl8FPr73PnXX/qLp31qvNWs
d3DFEXDbLGeYWPzqy1UuStPIOvlz9tn9c/1JK+JijX8OmazRTln76QX01wYCDRQD
ICAZuThcPO39IW7/M/KtUQL3VmSj84S+WWXcYYOmnJgisxlatNgMsI9gKumFv7mr
k25F8bU86TMtbm7MYyzQk7J5oN86sb94waJmVvKTZqxh34OxZ4whxQpiD6qnybcR
OYK1CKAnMwPU0aVttK9gR5gwRZUw2NrAr9OJsC4c3g==
-----END CERTIFICATE-----
Generated at Sun Apr 13 02:16:54 2025 by rpki-client