Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/98307DA8CC2B11EF8AC1BB51C4F9AE02.roa
File: 98307DA8CC2B11EF8AC1BB51C4F9AE02.roa (raw, json)
Hash identifier: 5k6eXlDwb2pz0d4dYYiXKOtKkTZYmzU7DCUkBj3zvwQ=
Subject key identifier: A1:47:E6:FF:E4:41:29:51:E1:5F:A0:61:C1:29:1A:B8:3E:4B:83:25
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 2164
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/98307DA8CC2B11EF8AC1BB51C4F9AE02.roa
Signing time: Mon 06 Jan 2025 12:41:48 +0000
ROA not before: Mon 06 Jan 2025 12:41:48 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 397373
IP address blocks: 115.167.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Feb 2025 08:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8548 (0x2164)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jan 6 12:41:48 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=677bcf8c-b782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9e:59:4c:99:4a:7e:11:fb:37:e6:f7:1a:31:
c7:1f:3a:6c:f3:93:4e:86:b9:24:26:fc:6c:a1:e2:
2b:e9:e8:cb:79:08:3b:9e:ec:e0:de:34:ec:4c:b5:
b1:c8:97:08:5a:92:f5:3f:82:5d:11:88:72:a1:fe:
ea:92:8e:bf:d4:63:32:74:aa:03:64:60:0d:43:ea:
c8:48:4a:25:56:0a:5f:65:29:e6:43:09:96:d9:3f:
3a:e4:15:5e:b6:18:20:e1:61:f1:e1:80:f8:f1:36:
a9:f4:f9:87:46:6f:90:ba:bc:ca:41:cc:ac:5e:c3:
d2:8b:68:9a:5d:98:e8:53:b5:60:41:1c:10:33:7c:
93:20:20:39:18:7d:0e:cd:4f:a8:ff:14:1f:95:7d:
b7:cc:5b:fb:91:72:30:d0:34:f9:96:f9:17:3c:d9:
a1:ce:1b:bb:fe:1a:57:ae:1d:e9:f3:bd:09:02:74:
56:26:3b:61:72:1e:52:ca:b3:52:f7:c1:46:74:7c:
e8:06:84:c2:1f:21:ad:89:e5:75:35:af:59:bf:67:
87:dd:d6:e7:2a:37:fe:75:a6:38:49:61:ef:9a:4a:
59:d7:ed:4a:e7:dc:a1:bf:35:3b:f3:38:a8:5c:13:
8d:56:2c:05:fb:a3:9d:88:06:3d:6c:e9:01:36:0f:
ef:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:47:E6:FF:E4:41:29:51:E1:5F:A0:61:C1:29:1A:B8:3E:4B:83:25
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/98307DA8CC2B11EF8AC1BB51C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.28.0/24
Signature Algorithm: sha256WithRSAEncryption
77:35:d0:98:ef:9e:c2:10:b4:f1:04:a9:de:96:fb:a1:64:f2:
52:f8:dd:91:5b:30:96:75:61:63:7b:90:34:e4:f8:95:bc:ab:
31:d5:a5:ca:8d:e7:ae:5e:f7:64:f7:a0:bf:1b:a1:c6:d5:cf:
5f:95:ed:e8:c9:7b:95:7e:bc:4e:5d:11:24:41:64:8a:9f:e5:
40:20:12:1e:47:62:a0:6e:35:6f:b2:bc:00:12:9a:19:94:3f:
29:67:48:a6:57:4d:b0:22:a0:fa:57:6f:bb:16:68:ca:02:da:
7c:7c:bb:28:e3:ac:77:dd:2a:e2:b7:f7:55:7e:20:3f:93:3e:
23:d7:2e:97:80:d4:6d:f9:dd:24:6c:44:62:8f:9a:4f:6b:eb:
a3:58:44:89:5e:97:78:b7:a8:2c:7c:f1:9b:1b:59:b5:f7:52:
90:a4:31:59:f0:75:2b:7b:3e:8d:90:bf:37:e1:df:b8:cb:b5:
e2:aa:86:61:48:78:39:fb:97:53:ee:2c:10:ea:c6:54:5a:7a:
0c:22:95:51:4a:2a:6a:ac:a3:01:52:d7:cd:b7:16:f6:2b:c5:
79:88:4c:68:00:ad:59:e2:65:d7:61:c1:7a:ed:3e:ac:0f:98:
10:64:30:48:11:fd:a9:3a:19:72:2c:8c:ab:4c:50:dd:e7:38:
62:85:24:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:05:05 2025 by rpki-client