Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/6EB82FDE480011EF8D2F4A27C4F9AE02.roa
File: 6EB82FDE480011EF8D2F4A27C4F9AE02.roa (raw, json)
Hash identifier: ryOGqoJ9UHY3i2ZRZ9RNdtCu8PuWGmIXxKMrCnnWq8g=
Subject key identifier: 85:17:00:D0:5C:EC:E8:45:36:F7:BD:32:01:D9:A0:FE:74:DB:64:FB
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1486
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/6EB82FDE480011EF8D2F4A27C4F9AE02.roa
Signing time: Mon 22 Jul 2024 08:00:17 +0000
ROA not before: Mon 22 Jul 2024 08:00:17 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 113.203.209.0/24 maxlen: 24
113.203.211.0/24 maxlen: 24
113.203.214.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.246.0/24 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.60.0/22 maxlen: 22
115.167.65.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.68.0/22 maxlen: 22
175.110.80.0/22 maxlen: 22
180.178.142.0/24 maxlen: 24
180.178.151.0/24 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.164.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jul 2024 07:22:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5254 (0x1486)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jul 22 08:00:17 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=669e1190-e3d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:8e:ad:d4:42:d9:90:a6:34:c5:64:be:a8:f1:
cf:a2:e4:43:86:e7:0c:8f:ae:19:3d:72:f5:4b:45:
0f:58:96:cd:36:f4:02:bb:84:ad:8f:66:1a:87:34:
18:4e:a3:31:8a:bf:d7:2c:df:f1:fd:e2:5f:d5:cf:
59:75:6d:24:34:fb:b2:50:90:e7:b0:08:70:3a:85:
8a:88:96:06:0d:24:48:5a:7d:70:1b:5a:77:36:00:
6c:33:49:c5:5f:93:99:28:c3:02:4f:31:43:a4:3a:
08:9d:fc:07:65:08:6e:65:b0:25:15:67:91:20:00:
25:e0:a7:5c:a6:27:73:14:6c:d4:e3:47:b9:37:db:
72:da:32:3a:cf:d8:71:00:5d:c3:56:f6:2d:97:5a:
80:57:0a:92:35:11:26:e4:1d:e7:09:a9:c4:30:4f:
f0:92:ef:0e:8d:fa:d6:a3:47:3f:11:a5:8a:6a:e0:
44:c6:00:43:03:7b:29:f8:e2:f3:93:ed:53:be:5c:
d5:8e:22:86:68:16:1a:42:72:82:20:64:e4:37:e8:
f5:b0:0c:8d:6a:75:e7:ae:ea:00:14:3c:6f:b4:4f:
d1:40:48:51:d1:f3:f8:fe:f5:47:fb:c5:0c:aa:b1:
f5:35:7e:86:3b:9a:37:af:05:83:2a:48:c4:36:00:
87:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:17:00:D0:5C:EC:E8:45:36:F7:BD:32:01:D9:A0:FE:74:DB:64:FB
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/6EB82FDE480011EF8D2F4A27C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.209.0/24
113.203.211.0/24
113.203.214.0/23
113.203.219.0/24
113.203.222.0/24
113.203.227.0/24
113.203.241.0/24
113.203.243.0/24
113.203.246.0/24
115.167.49.0/24
115.167.60.0/22
115.167.65.0/24
115.167.124.0/23
175.110.68.0/22
175.110.80.0/22
180.178.142.0/24
180.178.151.0/24
180.178.161.0-180.178.162.255
180.178.164.0/24
180.178.188.0/24
180.178.190.0/24
223.29.225.0/24
223.29.227.0/24
223.29.239.0/24
Signature Algorithm: sha256WithRSAEncryption
09:9a:2e:73:62:67:c6:83:4c:ff:73:45:ef:1b:eb:15:c2:43:
cf:0c:69:0c:8d:da:6d:4e:44:e9:fe:96:81:b8:0d:92:cf:3a:
5d:24:06:1e:5f:29:a6:99:c8:21:5e:0c:e9:39:c9:cc:74:1e:
86:d6:b4:7f:88:cd:dc:fc:7f:1f:6e:0e:cf:43:6b:14:0c:25:
7d:7a:b5:3f:5e:09:d5:db:c4:76:7a:d0:b5:c3:1b:96:ec:73:
e5:ef:b3:c0:05:f8:3d:8c:92:af:78:fd:60:71:5b:51:99:27:
65:17:14:8e:bd:71:11:af:f7:a8:96:c9:b7:7b:42:7d:79:29:
69:32:0b:d6:41:7a:30:dd:3d:cc:99:a2:8d:73:2c:3d:02:7a:
20:88:45:8a:1f:1a:a1:5b:ea:af:4f:ff:aa:ba:a4:6c:28:77:
30:03:8d:b9:a4:40:88:b5:3d:43:dc:80:28:6a:24:73:7d:66:
e0:e5:d9:95:4a:5c:f9:99:28:24:f1:61:7a:dc:a6:a0:ae:94:
5a:46:43:18:21:3b:56:ce:da:c5:87:2f:00:b6:bc:0f:a5:9a:
ba:e5:92:4f:7e:d4:6e:03:35:aa:be:50:a6:e6:44:9a:55:f9:
e3:6f:c7:d9:75:72:3e:4e:f6:c2:bf:e7:74:9b:f1:0e:ac:51:
c6:ee:b3:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:19:10 2025 by rpki-client