Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8129D47486FD11EFBE370334C4F9AE02.roa
File: 8129D47486FD11EFBE370334C4F9AE02.roa (raw, json)
Hash identifier: 7pL0Vsu1laAIhrQ0TCFUTQW7hMAAa5OlyK+cJLRspvw=
Subject key identifier: FC:C8:67:3D:D2:BA:98:EF:D9:53:32:9D:B4:BB:9A:27:9D:D4:18:9D
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1799
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8129D47486FD11EFBE370334C4F9AE02.roa
Signing time: Thu 10 Oct 2024 12:25:17 +0000
ROA not before: Thu 10 Oct 2024 12:25:17 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 55154
IP address blocks: 103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
115.167.3.0/24 maxlen: 24
115.167.9.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
115.167.73.0/24 maxlen: 24
115.167.101.0/24 maxlen: 24
115.167.103.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Oct 2024 07:58:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6041 (0x1799)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Oct 10 12:25:17 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6707c7ad-a2cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:88:b0:42:f0:e8:05:11:d4:f2:02:02:6f:64:
b2:f3:44:0a:83:aa:2e:15:4f:cb:c2:1f:e6:b8:4d:
cc:47:8f:34:15:d5:20:90:36:16:ff:e9:d6:ee:ef:
a4:2e:4b:22:27:1b:60:fa:ee:0b:92:6a:6f:97:3e:
7d:12:4a:4c:9c:ac:57:cb:92:a7:55:1d:9a:c8:1f:
b0:7d:74:a2:60:89:6c:c5:91:ac:6a:68:05:00:5c:
88:96:e4:4e:89:01:8f:10:42:f8:17:0a:42:3c:a0:
44:f2:2c:4f:58:b0:60:96:4b:92:c8:b3:dd:47:83:
4c:1f:c0:e7:2f:18:24:65:79:80:1d:25:6f:fe:f7:
61:cb:ce:f7:d3:cc:39:08:ad:3b:51:e5:ec:fa:fb:
a6:d7:87:03:9f:1d:48:10:e1:66:bd:75:62:79:a7:
f3:ca:9e:d2:18:95:0d:b4:7a:bd:6a:89:d0:22:d5:
48:fd:24:25:5f:5e:e9:61:f6:a4:df:a0:bc:17:c5:
58:31:18:51:68:9f:58:43:01:ea:d0:9e:f6:65:be:
aa:be:dd:cf:c2:d2:5d:a5:29:7d:3e:0a:9e:e9:3e:
66:3b:2e:ef:bf:bc:2d:fb:d2:fc:2e:c7:a3:e2:f9:
38:77:f7:5d:4f:44:5c:80:ee:29:81:8f:ea:fb:32:
ae:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:C8:67:3D:D2:BA:98:EF:D9:53:32:9D:B4:BB:9A:27:9D:D4:18:9D
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8129D47486FD11EFBE370334C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
113.203.208.0/24
113.203.213.0/24
113.203.248.0/24
115.167.3.0/24
115.167.9.0/24
115.167.66.0/24
115.167.73.0/24
115.167.101.0/24
115.167.103.0/24
180.178.166.0/24
180.178.169.0/24
180.178.171.0/24
180.178.189.0/24
180.178.191.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:54:40:98:d9:e3:32:67:3f:3e:f7:5a:1d:33:85:70:da:2d:
dc:e6:60:a7:17:38:bb:9b:19:bd:94:bb:21:2a:d9:77:54:66:
72:65:f9:59:6d:ca:30:2d:80:f7:90:15:64:7b:b9:fe:e6:49:
05:e7:3b:f1:29:a5:41:36:bc:54:16:a0:10:63:f9:68:77:f6:
09:c8:30:b3:12:89:2a:53:53:6a:c6:a1:dc:9c:38:e8:37:48:
c5:ae:9a:99:15:d8:cc:be:26:fd:22:81:1d:b1:a9:df:ea:20:
a0:07:36:06:53:50:40:63:5c:45:75:19:3e:ab:c2:0a:bb:e6:
81:5f:00:ad:10:ff:ee:5e:1a:8b:0d:6c:08:eb:44:92:18:a4:
2a:e7:e2:43:f5:01:85:2e:d4:ab:2f:b2:38:23:c4:75:bb:6a:
f4:b2:34:e0:82:96:03:f7:da:0a:3b:e2:ec:7b:df:89:c6:ed:
69:a3:77:19:cd:93:c6:06:5a:b1:e3:e5:21:d0:3b:48:20:9c:
b1:63:fa:ab:5a:de:77:5c:80:a3:b7:7e:6a:0f:fe:5e:3a:f6:
5c:6f:b7:81:4e:25:64:eb:37:14:02:48:d7:96:0c:66:98:fe:
f9:82:ea:f4:52:66:42:71:32:2c:33:3e:37:7a:28:3a:84:be:
6f:3e:1b:52
-----BEGIN CERTIFICATE-----
MIIFxTCCBK2gAwIBAgICF5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQxMDEwMTIyNTE3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzA3YzdhZC1hMmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqoiwQvDoBRHU8gICb2Sy80QKg6ouFU/Lwh/muE3MR480FdUgkDYW/+nW7u+k
LksiJxtg+u4Lkmpvlz59EkpMnKxXy5KnVR2ayB+wfXSiYIlsxZGsamgFAFyIluRO
iQGPEEL4FwpCPKBE8ixPWLBglkuSyLPdR4NMH8DnLxgkZXmAHSVv/vdhy87308w5
CK07UeXs+vum14cDnx1IEOFmvXVieafzyp7SGJUNtHq9aonQItVI/SQlX17pYfak
36C8F8VYMRhRaJ9YQwHq0J72Zb6qvt3PwtJdpSl9Pgqe6T5mOy7vv7wt+9L8Lsej
4vk4d/ddT0RcgO4pgY/q+zKukQIDAQABo4IC6TCCAuUwHQYDVR0OBBYEFPzIZz3S
upjv2VMynbS7mied1BidMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvODEyOUQ0NzQ4
NkZEMTFFRkJFMzcwMzM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwcwYIKwYBBQUHAQcBAf8E
ZDBiMGAEAgABMFoDBABnlxsDBABxy9ADBABxy9UDBABxy/gDBABzpwMDBABzpwkD
BABzp0IDBABzp0kDBABzp2UDBABzp2cDBAC0sqYDBAC0sqkDBAC0sqsDBAC0sr0D
BAC0sr8wDQYJKoZIhvcNAQELBQADggEBAD9UQJjZ4zJnPz73Wh0zhXDaLdzmYKcX
OLubGb2UuyEq2XdUZnJl+VltyjAtgPeQFWR7uf7mSQXnO/EppUE2vFQWoBBj+Wh3
9gnIMLMSiSpTU2rGodycOOg3SMWumpkV2My+Jv0igR2xqd/qIKAHNgZTUEBjXEV1
GT6rwgq75oFfAK0Q/+5eGosNbAjrRJIYpCrn4kP1AYUu1KsvsjgjxHW7avSyNOCC
lgP32go74ux734nG7WmjdxnNk8YGWrHj5SHQO0ggnLFj+qta3ndcgKO3fmoP/l46
9lxvt4FOJWTrNxQCSNeWDGaY/vmC6vRSZkJxMiwzPjd6KDqEvm8+G1I=
-----END CERTIFICATE-----
Generated at Sun Apr 13 02:09:51 2025 by rpki-client