Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/6D457B6E5E0B11EE80A52770C4F9AE02.roa
File: 6D457B6E5E0B11EE80A52770C4F9AE02.roa (raw, json)
Hash identifier: xCN9GweTiGQlCiCFS95VwoNKq+wXXKw+qzt4JhWrEfw=
Subject key identifier: B5:8E:53:B9:76:D1:0C:3E:14:80:C3:71:EB:6A:7E:25:8C:07:27:F7
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 168C
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/6D457B6E5E0B11EE80A52770C4F9AE02.roa
Signing time: Wed 25 Sep 2024 11:04:15 +0000
ROA not before: Wed 25 Sep 2024 11:04:15 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 43.254.12.0/22 maxlen: 24
115.167.68.0/22 maxlen: 24
115.167.108.0/22 maxlen: 24
175.110.76.0/22 maxlen: 24
175.110.92.0/22 maxlen: 24
175.110.98.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.165.0/24 maxlen: 24
180.178.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 06:54:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5772 (0x168c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Sep 25 11:04:15 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66f3ee2f-6517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1d:29:22:bf:d9:ce:7f:41:a0:eb:d2:65:e9:
95:25:ec:1e:e1:66:7d:50:13:ec:c4:d6:e7:96:04:
f1:c6:c3:40:90:01:50:7c:31:52:66:3c:21:a0:67:
b0:0b:61:03:e4:2d:62:99:2d:50:79:ed:56:83:a3:
be:c9:52:4e:48:88:e3:68:24:54:8f:65:8f:9c:41:
7c:36:ac:6a:6d:42:e3:a2:14:3d:1e:bf:6e:1f:d7:
eb:23:cc:ac:f6:4a:8e:0d:e4:51:f0:a1:7a:30:f2:
42:99:17:90:0c:ab:e7:14:32:66:e8:28:56:25:87:
f4:7a:4f:7c:5e:fe:a9:82:65:4d:aa:db:bb:76:4f:
00:da:7b:d0:8b:27:0b:5e:5c:63:8b:83:ce:e1:1a:
e9:4a:ff:31:62:74:7b:0b:e5:2f:16:b1:5b:da:dc:
cf:b0:9f:4b:c8:ed:1c:b2:5d:d7:43:7f:43:14:ba:
8f:71:2b:8e:ad:38:3b:fb:2b:73:e0:d8:ef:3c:21:
6e:e9:f5:fa:f5:33:6c:ba:b8:7c:5c:fa:ba:7a:ec:
ac:33:b8:d1:1b:2c:e9:a2:65:0b:1c:5d:dd:74:99:
72:62:9d:12:8f:43:f4:a1:59:60:2a:f1:7c:5c:41:
86:fa:de:04:7f:07:9a:8d:64:86:76:ae:ff:ca:25:
2e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:8E:53:B9:76:D1:0C:3E:14:80:C3:71:EB:6A:7E:25:8C:07:27:F7
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/6D457B6E5E0B11EE80A52770C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.254.12.0/22
115.167.68.0/22
115.167.108.0/22
175.110.76.0/22
175.110.92.0/22
175.110.98.0/24
180.178.144.0/24
180.178.146.0/24
180.178.165.0/24
180.178.167.0/24
Signature Algorithm: sha256WithRSAEncryption
51:97:76:c4:ef:a3:e2:93:cc:bd:a3:51:d9:ca:0a:fc:e4:b4:
8a:1e:aa:54:ba:6c:5a:ae:68:0c:e2:fb:bd:b3:2d:8a:29:a9:
7d:91:54:c4:92:7a:1b:62:21:f2:55:52:a7:e9:39:ea:9f:1c:
74:24:fa:12:ce:f8:dd:b5:c1:12:b5:5f:22:d7:fe:46:45:42:
da:52:b4:1f:4b:1a:1b:6a:69:24:9b:db:0d:ef:44:b4:86:9e:
9d:95:0c:60:2f:4f:37:a4:69:4c:b0:32:d5:34:29:8c:47:b0:
87:50:bc:73:e3:96:d9:fb:1c:66:1a:1d:36:b9:87:2f:89:0e:
73:a7:13:dd:f8:19:53:18:c5:1a:93:ec:26:9d:ad:04:e9:18:
0d:c1:cc:4f:e7:46:16:c3:0b:c0:b5:44:bc:d5:35:69:62:1c:
90:1f:48:8f:19:07:8b:94:4b:5f:69:36:c6:02:4c:77:54:79:
f4:7b:83:4a:36:3a:71:58:e1:3f:3b:58:06:b2:26:2e:dd:ea:
a7:7a:36:c8:c5:5b:aa:ca:66:9d:92:20:48:fa:27:35:04:2a:
37:b8:3e:4c:f0:74:83:b3:9e:a2:a5:ba:74:bc:4a:e3:49:9f:
53:19:a1:9d:4b:0f:6f:64:5a:6a:6a:b7:4f:e2:d8:b4:96:aa:
4f:32:29:c2
-----BEGIN CERTIFICATE-----
MIIFpzCCBI+gAwIBAgICFowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQwOTI1MTEwNDE1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmYzZWUyZi02NTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArh0pIr/Zzn9BoOvSZemVJewe4WZ9UBPsxNbnlgTxxsNAkAFQfDFSZjwhoGew
C2ED5C1imS1Qee1Wg6O+yVJOSIjjaCRUj2WPnEF8NqxqbULjohQ9Hr9uH9frI8ys
9kqODeRR8KF6MPJCmReQDKvnFDJm6ChWJYf0ek98Xv6pgmVNqtu7dk8A2nvQiycL
Xlxji4PO4RrpSv8xYnR7C+UvFrFb2tzPsJ9LyO0csl3XQ39DFLqPcSuOrTg7+ytz
4NjvPCFu6fX69TNsurh8XPq6euysM7jRGyzpomULHF3ddJlyYp0Sj0P0oVlgKvF8
XEGG+t4EfweajWSGdq7/yiUu5wIDAQABo4ICyzCCAscwHQYDVR0OBBYEFLWOU7l2
0Qw+FIDDcetqfiWMByf3MB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvNkQ0NTdCNkU1
RTBCMTFFRTgwQTUyNzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVQYIKwYBBQUHAQcBAf8E
RjBEMEIEAgABMDwDBAIr/gwDBAJzp0QDBAJzp2wDBAKvbkwDBAKvblwDBACvbmID
BAC0spADBAC0spIDBAC0sqUDBAC0sqcwDQYJKoZIhvcNAQELBQADggEBAFGXdsTv
o+KTzL2jUdnKCvzktIoeqlS6bFquaAzi+72zLYopqX2RVMSSehtiIfJVUqfpOeqf
HHQk+hLO+N21wRK1XyLX/kZFQtpStB9LGhtqaSSb2w3vRLSGnp2VDGAvTzekaUyw
MtU0KYxHsIdQvHPjltn7HGYaHTa5hy+JDnOnE934GVMYxRqT7CadrQTpGA3BzE/n
RhbDC8C1RLzVNWliHJAfSI8ZB4uUS19pNsYCTHdUefR7g0o2OnFY4T87WAayJi7d
6qd6NsjFW6rKZp2SIEj6JzUEKje4PkzwdIOznqKlunS8SuNJn1MZoZ1LD29kWmpq
t0/i2LSWqk8yKcI=
-----END CERTIFICATE-----
Generated at Sun Apr 13 02:19:09 2025 by rpki-client