Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/7A9A5F5A96B811EF8635BC19C4F9AE02.roa
File: 7A9A5F5A96B811EF8635BC19C4F9AE02.roa (raw, json)
Hash identifier: scT2u5twAjgXwv67w546012SPqUQyAZ/r7z1O1QRmJY=
Subject key identifier: 17:59:07:F4:54:36:EE:50:37:3F:C7:A6:AF:0E:A0:43:DA:38:A4:12
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1AC6
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/7A9A5F5A96B811EF8635BC19C4F9AE02.roa
Signing time: Wed 30 Oct 2024 12:14:15 +0000
ROA not before: Wed 30 Oct 2024 12:14:15 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 55154
IP address blocks: 103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.211.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.214.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
115.167.3.0/24 maxlen: 24
115.167.5.0/24 maxlen: 24
115.167.28.0/24 maxlen: 24
115.167.52.0/24 maxlen: 24
115.167.53.0/24 maxlen: 24
115.167.54.0/24 maxlen: 24
115.167.55.0/24 maxlen: 24
115.167.65.0/24 maxlen: 24
115.167.67.0/24 maxlen: 24
115.167.76.0/24 maxlen: 24
115.167.101.0/24 maxlen: 24
115.167.103.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
175.110.64.0/22 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.151.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 17:16:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6854 (0x1ac6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Oct 30 12:14:15 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67222316-741c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c9:8a:e2:63:f2:f3:53:fe:f7:d5:fd:0e:c5:
9d:98:ce:f0:07:f9:4b:6e:ff:e5:a9:e7:4c:12:63:
48:87:db:e8:18:b2:a9:9d:a4:16:2e:4b:80:94:0a:
70:28:08:21:9f:6e:15:31:1f:eb:c7:24:d6:65:89:
87:9a:5a:61:a6:55:fc:b7:3f:16:4f:fc:30:a4:67:
a9:9c:fb:f2:00:cf:d9:80:16:b2:bf:b3:f4:f2:de:
a3:cc:b3:26:67:70:6c:c4:1d:46:d6:be:cf:24:d8:
2b:2f:84:ad:d7:52:0f:65:c2:d4:b2:b8:bb:d1:97:
a7:2f:7a:af:c4:44:90:84:17:ed:d4:a0:ab:66:bb:
c3:1a:43:02:43:41:2b:64:10:ce:f7:a9:7d:f8:53:
43:0e:37:4e:d2:4e:df:74:e2:df:f7:aa:0e:32:ac:
e3:4b:a3:81:92:82:67:94:48:1b:02:81:95:1a:ca:
32:8e:eb:2f:cb:db:c5:dd:d5:c1:9f:a4:65:68:67:
13:7f:07:d2:99:6c:9d:6f:e1:d4:16:62:e8:ab:02:
4d:af:60:49:b8:05:43:40:76:21:f6:ce:12:91:49:
ed:a8:15:14:bb:dc:23:22:06:79:10:38:4d:fe:82:
85:89:a0:ad:7c:36:c7:f3:5e:93:c9:23:e5:de:db:
3b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:59:07:F4:54:36:EE:50:37:3F:C7:A6:AF:0E:A0:43:DA:38:A4:12
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/7A9A5F5A96B811EF8635BC19C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
113.203.208.0/24
113.203.211.0/24
113.203.213.0-113.203.214.255
113.203.227.0/24
113.203.243.0/24
113.203.248.0/24
115.167.3.0/24
115.167.5.0/24
115.167.28.0/24
115.167.52.0/22
115.167.65.0/24
115.167.67.0/24
115.167.76.0/24
115.167.101.0/24
115.167.103.0/24
115.167.124.0/24
175.110.64.0/22
180.178.147.0-180.178.148.255
180.178.151.0/24
180.178.160.0/24
180.178.166.0/24
180.178.169.0/24
180.178.171.0/24
180.178.189.0/24
180.178.191.0/24
223.29.231.0/24
223.29.237.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:91:c9:20:1b:85:de:c8:a5:71:d9:ad:a8:74:56:d7:0e:2f:
f3:31:00:b4:86:60:6f:b5:65:5e:83:f0:27:72:51:03:bc:86:
53:8a:2c:78:04:f5:f3:a9:89:8e:57:db:2a:3e:59:8f:69:51:
f6:5b:92:2b:22:07:6d:e7:90:54:e3:b9:9d:63:2e:f1:82:f7:
84:b0:60:a4:d9:3f:b5:3d:c7:2a:c7:66:e8:09:8d:6a:ae:e8:
32:fd:e7:95:a4:36:39:2c:bc:27:71:5a:01:ea:74:b9:3a:81:
93:67:41:e8:2d:31:f5:f5:fd:c7:33:08:53:92:fc:fa:22:9e:
8d:69:e0:ca:ce:c8:3d:97:0a:cb:05:cd:d0:8b:d7:37:04:e3:
92:64:d8:b2:35:36:11:89:d6:9c:da:f5:82:0b:bc:0a:e9:1d:
82:4c:32:e1:b9:41:02:51:fd:60:cc:88:23:d9:f9:f3:59:46:
92:c7:f4:ef:9a:fd:c9:47:e5:88:44:90:14:ea:0b:62:b9:5a:
99:fa:bc:59:e1:de:91:82:f6:f8:27:e3:08:78:78:63:5d:f2:
4c:0a:64:1c:25:1b:8a:7c:93:e4:d4:51:c2:f5:51:00:52:0a:
ae:e8:d2:6a:49:d0:8a:88:87:c5:1b:07:20:2b:9f:37:9f:2e:
8f:1b:be:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:29:35 2025 by rpki-client