Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8BB9EA728B9511EFB72FB123C4F9AE02.roa
File: 8BB9EA728B9511EFB72FB123C4F9AE02.roa (raw, json)
Hash identifier: Oj+l7eR1TRIbIHeTLdf0bi8FYjYHtgar234DWRDgcOk=
Subject key identifier: BD:BA:58:81:2A:93:80:F8:7E:B4:B0:49:0E:63:B7:A6:02:B1:96:71
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1819
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8BB9EA728B9511EFB72FB123C4F9AE02.roa
Signing time: Thu 17 Oct 2024 10:12:23 +0000
ROA not before: Thu 17 Oct 2024 10:12:23 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 55154
IP address blocks: 103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
115.167.3.0/24 maxlen: 24
115.167.9.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
115.167.73.0/24 maxlen: 24
115.167.101.0/24 maxlen: 24
115.167.103.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Oct 2024 12:35:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6169 (0x1819)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Oct 17 10:12:23 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6710e307-a04a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2b:88:6e:74:1b:84:76:8f:25:d8:6f:c6:90:
10:36:89:1c:f8:73:f3:77:69:5d:b9:f1:92:0f:59:
b4:9c:47:01:7d:31:3f:33:86:98:3b:46:23:02:81:
7b:2c:d8:33:27:77:a5:1f:b9:19:cc:02:1b:c7:fe:
97:1b:4a:87:48:d0:df:3f:dc:50:78:f5:a5:f1:f1:
61:31:42:1f:e4:2d:f9:d4:7f:48:b8:c3:8f:9e:1b:
d9:fc:92:e5:8a:f7:8b:b9:25:18:38:0d:fb:e2:da:
34:53:b8:40:38:f9:c5:8e:ee:fb:b1:10:71:85:78:
26:cf:49:0f:53:ca:6d:0c:85:e6:44:ff:64:64:fa:
e7:f9:d0:66:a3:80:d0:2d:16:c5:9d:db:8d:c1:13:
34:56:a6:af:fe:9f:bb:9d:c7:13:97:63:ce:e8:57:
cd:d1:5f:d6:01:d3:18:91:65:d9:50:94:dc:2d:88:
65:29:7c:e3:34:bb:81:44:cf:21:31:b7:ae:ef:2c:
bc:6f:86:fd:89:f7:91:9e:f5:52:2a:7a:be:a7:d6:
0f:eb:38:b2:23:bd:ef:27:fe:38:08:89:f7:28:a6:
48:7f:ab:e3:ee:09:47:9e:5f:c7:95:bc:9d:11:af:
dc:bb:31:fb:26:92:fb:6d:07:40:2b:9e:94:ef:b7:
59:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:BA:58:81:2A:93:80:F8:7E:B4:B0:49:0E:63:B7:A6:02:B1:96:71
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8BB9EA728B9511EFB72FB123C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
113.203.208.0/24
113.203.213.0/24
113.203.248.0/24
115.167.3.0/24
115.167.9.0/24
115.167.66.0/24
115.167.73.0/24
115.167.101.0/24
115.167.103.0/24
180.178.166.0/24
180.178.169.0/24
180.178.171.0/24
180.178.189.0/24
180.178.191.0/24
Signature Algorithm: sha256WithRSAEncryption
16:77:e3:25:a2:ea:0f:70:29:16:89:08:fb:e8:33:03:47:33:
84:d1:f3:f5:40:b0:ee:4b:95:05:15:95:15:98:a9:ba:97:2e:
59:90:cb:a6:62:2a:22:0a:3f:4a:b8:41:8e:4e:6c:76:a2:6d:
7b:09:d8:38:96:2d:ef:8e:c7:b0:43:8b:18:d9:e2:65:4d:9c:
5c:91:bc:6a:dc:4d:00:fb:d1:aa:89:c1:60:ff:e7:05:8e:ad:
88:77:a4:6a:5c:3f:4c:00:0b:42:f6:cb:1e:23:77:92:9f:16:
6a:59:10:90:d5:b0:19:78:b0:cb:1d:6a:ca:40:6f:5c:b5:dd:
79:46:9a:8c:20:a4:42:5b:c1:0b:f6:ea:b6:fe:98:20:53:39:
96:98:5b:50:8f:c1:05:4a:50:9e:5b:61:b2:08:67:19:22:ae:
92:4e:d7:0c:b4:0b:fb:d5:f3:d1:0b:8e:76:2a:e4:00:3f:4d:
37:a8:14:0b:b0:f4:59:09:92:7d:7a:6a:fa:87:90:25:d8:e1:
a8:28:cd:76:15:bc:3a:aa:37:94:b5:68:e3:c1:fd:5a:77:02:
62:0c:2d:d2:64:da:0f:40:ac:a0:22:fe:58:66:1e:42:97:c4:
80:17:87:08:fc:d1:39:1f:d1:b5:8a:0d:bd:43:86:3a:08:74:
d5:3c:70:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:21:46 2025 by rpki-client