Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/83214568DC9911EFB726B064C4F9AE02.roa
File: 83214568DC9911EFB726B064C4F9AE02.roa (raw, json)
Hash identifier: DYUrau8dMfWdp4x54JAGyScXBKetMt8muOpbKCQhcDk=
Subject key identifier: 54:22:74:84:0B:71:20:6D:83:F9:34:5D:79:E8:1B:EE:8E:27:8B:AB
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 220C
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/83214568DC9911EFB726B064C4F9AE02.roa
Signing time: Mon 27 Jan 2025 10:31:19 +0000
ROA not before: Mon 27 Jan 2025 10:31:19 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 205663
IP address blocks: 115.167.9.0/24 maxlen: 24
175.110.90.0/24 maxlen: 24
175.110.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Jan 2025 04:44:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8716 (0x220c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jan 27 10:31:19 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67976077-4fc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:fb:2e:8b:2a:a4:af:85:42:81:9e:0b:14:8c:
68:e5:d6:79:46:55:e1:d0:eb:29:a6:c9:e2:8d:73:
5f:74:b4:d5:57:23:1f:ab:35:26:9e:9c:44:0b:e3:
34:ca:66:23:a0:ae:1a:5e:6e:24:37:fe:12:3e:81:
ea:e6:5b:7f:e8:4b:22:6f:84:5e:24:00:35:a6:ef:
b6:e0:86:4f:93:c6:df:b6:5f:d6:a4:e0:9f:28:d8:
bd:2e:3d:57:3c:23:99:fb:cf:a9:3f:09:31:d6:ea:
49:79:60:0b:e5:48:ed:cd:1d:9e:e0:cf:00:6a:dc:
5d:e5:14:6c:66:48:7c:22:b2:e4:67:3a:87:43:7b:
5e:b7:1f:e8:5e:b4:07:a3:3c:53:9e:3b:9e:0a:8d:
ea:ad:2e:9d:2e:f2:7b:66:c7:51:68:47:06:7b:41:
6f:c9:ee:1b:38:bc:90:5c:24:43:a5:1e:ea:40:1b:
4a:ea:41:6e:27:90:db:04:40:21:3e:03:8e:51:7e:
8a:e1:2e:6f:93:a5:6a:9d:00:e7:fb:34:0c:ba:47:
c6:c3:6b:6b:1c:9e:10:24:12:ea:c7:43:a3:de:36:
0d:6c:d7:e1:2a:80:89:aa:2c:ae:90:74:98:b0:96:
ce:7c:46:3b:e8:5a:99:98:ba:45:1c:62:08:fa:e6:
f5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:22:74:84:0B:71:20:6D:83:F9:34:5D:79:E8:1B:EE:8E:27:8B:AB
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/83214568DC9911EFB726B064C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.9.0/24
175.110.90.0/23
Signature Algorithm: sha256WithRSAEncryption
66:7f:3a:ac:df:4f:bb:5a:55:b8:64:79:46:a6:45:99:1c:87:
a0:0d:d7:7c:75:10:a5:c7:01:6b:65:9b:d2:63:96:b5:00:7f:
c1:77:7f:ed:23:90:b7:c7:7b:e2:c7:d4:95:80:39:e5:d8:ce:
4b:fc:15:3d:cf:2c:ff:cc:36:54:41:be:60:72:52:09:8d:2e:
87:85:f5:f0:08:c9:e0:46:07:6e:09:fc:49:bd:6a:6c:c5:4b:
9f:db:d1:8a:f4:c4:6e:c7:c9:ea:18:bd:22:95:0d:46:0c:79:
3b:32:f2:69:aa:d9:ab:89:31:87:af:28:16:cf:aa:7f:f7:d5:
8f:14:e0:41:06:e3:ba:b9:d4:40:5d:4c:c9:c9:b8:83:d3:7a:
f0:1a:e3:17:e3:d2:bc:99:d4:42:52:ab:b7:4b:9f:b3:f1:a2:
d8:b7:2c:9c:b2:5c:fa:07:a4:f0:a6:b0:fb:29:1c:57:99:91:
7d:2a:22:0d:fb:61:38:7d:eb:09:03:05:d8:90:c1:75:66:d0:
e1:57:7c:48:0b:e9:24:34:80:aa:99:c6:da:5c:3f:1e:fe:c3:
79:66:13:e1:b6:cf:0e:0d:77:77:26:af:3d:92:1a:70:6c:83:
81:c7:4b:c4:2b:93:fe:b4:3c:ea:a0:5c:74:fc:84:c4:38:3b:
8a:e2:78:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:50:51 2025 by rpki-client