Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/9F28CC32180311EF8E003734C4F9AE02.roa
File: 9F28CC32180311EF8E003734C4F9AE02.roa (raw, json)
Hash identifier: 66YeRTa0i2qe50296ezOv9Nm6vaKZbf7x4zw7Ea0Enc=
Subject key identifier: 8E:16:EA:2A:16:96:34:A4:50:4B:95:DB:E9:E2:07:11:A5:A5:7A:14
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 124D
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/9F28CC32180311EF8E003734C4F9AE02.roa
Signing time: Fri 24 May 2024 22:32:22 +0000
ROA not before: Fri 24 May 2024 22:32:22 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 136030
IP address blocks: 103.151.26.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
115.167.50.0/24 maxlen: 24
115.167.64.0/24 maxlen: 24
115.167.65.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
115.167.67.0/24 maxlen: 24
115.167.76.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
115.167.125.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 May 2024 05:46:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4685 (0x124d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: May 24 22:32:22 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66511575-d1a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c8:cc:13:41:91:1d:92:0b:1d:bd:30:49:36:
88:3c:f1:84:2f:30:6e:7d:4b:b4:7b:49:c6:5d:31:
22:92:06:cd:0c:c7:a3:16:74:7c:fd:ad:36:46:aa:
42:2a:b1:85:e3:0c:ea:d7:4e:cb:6b:93:29:b3:8d:
89:58:17:2c:f3:16:df:d7:fd:9b:30:fb:a1:14:27:
03:a2:c0:de:fb:b0:c9:cb:54:de:de:bb:05:ab:98:
42:64:4b:8e:ba:55:67:ae:39:27:b8:8e:0d:45:41:
5d:64:12:31:01:f5:b1:6b:54:76:12:fe:81:50:dd:
a9:8d:34:ae:da:1d:ed:21:3f:cd:f8:0f:71:d4:0e:
38:c3:e6:23:ec:16:d0:09:1d:99:c3:a2:fb:25:25:
ef:80:de:b4:bf:de:43:c1:31:6c:ae:41:f1:a9:16:
6d:b0:ce:d8:46:fd:18:0e:a2:aa:05:32:ba:79:6b:
a1:1d:54:fd:2a:72:3e:17:fc:3b:88:5a:71:a8:f1:
73:af:3e:09:f8:4c:fe:26:3c:2f:64:4e:7f:00:32:
97:c8:79:5f:10:72:a8:c6:63:b1:76:81:d0:08:0b:
41:5f:75:8e:39:d0:03:cd:d9:ea:b0:2f:67:22:d6:
46:2d:06:34:df:53:fb:d5:f1:49:f1:64:4f:a7:4e:
cf:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:16:EA:2A:16:96:34:A4:50:4B:95:DB:E9:E2:07:11:A5:A5:7A:14
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/9F28CC32180311EF8E003734C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.26.0/24
113.203.241.0/24
115.167.50.0/24
115.167.64.0/22
115.167.76.0/24
115.167.124.0/23
223.29.225.0/24
Signature Algorithm: sha256WithRSAEncryption
54:46:8f:56:ac:54:52:8f:de:07:4e:1c:06:5b:75:a6:20:72:
ed:76:24:60:78:a1:1f:f6:69:af:86:55:b8:95:f9:3f:4b:0a:
9e:4d:42:65:37:86:2f:2c:d6:05:bc:6f:10:37:7f:e1:b0:99:
a4:57:ca:19:d5:ef:50:b3:d4:9b:42:dc:be:02:b6:29:4e:90:
93:6f:31:1e:08:e1:28:4d:62:4e:82:84:12:9f:9f:f5:ba:df:
a2:a8:ba:c9:43:8b:39:6c:78:d1:e0:84:95:3a:c3:f9:2a:ed:
5f:c2:26:52:fa:57:0a:ca:83:66:16:d2:7e:9f:e1:85:e7:fd:
be:ce:6c:f3:1d:76:61:3d:cc:78:6b:d3:4a:a6:dd:b8:a6:71:
c3:2a:ee:80:43:a2:69:a0:e8:02:e7:86:6a:ad:fd:33:2d:37:
3f:0c:16:4d:38:b2:46:88:0b:65:4f:e1:68:3e:50:9e:a6:d8:
97:ba:17:6f:10:d4:e8:f9:d1:9d:2d:db:3e:9a:43:b5:aa:be:
de:e4:2c:b1:50:76:ae:66:d1:2b:92:66:46:64:eb:43:32:63:
85:41:44:02:6f:c5:2e:06:f1:4f:9a:80:69:be:40:77:52:7a:
9e:7d:52:56:72:1d:74:e2:4b:ab:a6:ad:f7:91:8f:ef:75:63:
a4:e3:26:c7
-----BEGIN CERTIFICATE-----
MIIFlTCCBH2gAwIBAgICEk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQwNTI0MjIzMjIyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjUxMTU3NS1kMWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqMjME0GRHZILHb0wSTaIPPGELzBufUu0e0nGXTEikgbNDMejFnR8/a02RqpC
KrGF4wzq107La5Mps42JWBcs8xbf1/2bMPuhFCcDosDe+7DJy1Te3rsFq5hCZEuO
ulVnrjknuI4NRUFdZBIxAfWxa1R2Ev6BUN2pjTSu2h3tIT/N+A9x1A44w+Yj7BbQ
CR2Zw6L7JSXvgN60v95DwTFsrkHxqRZtsM7YRv0YDqKqBTK6eWuhHVT9KnI+F/w7
iFpxqPFzrz4J+Ez+JjwvZE5/ADKXyHlfEHKoxmOxdoHQCAtBX3WOOdADzdnqsC9n
ItZGLQY031P71fFJ8WRPp07PpwIDAQABo4ICuTCCArUwHQYDVR0OBBYEFI4W6ioW
ljSkUEuV2+niBxGlpXoUMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvOUYyOENDMzIx
ODAzMTFFRjhFMDAzNzM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E
NDAyMDAEAgABMCoDBABnlxoDBABxy/EDBABzpzIDBAJzp0ADBABzp0wDBAFzp3wD
BADfHeEwDQYJKoZIhvcNAQELBQADggEBAFRGj1asVFKP3gdOHAZbdaYgcu12JGB4
oR/2aa+GVbiV+T9LCp5NQmU3hi8s1gW8bxA3f+GwmaRXyhnV71Cz1JtC3L4CtilO
kJNvMR4I4ShNYk6ChBKfn/W636KouslDizlseNHghJU6w/kq7V/CJlL6VwrKg2YW
0n6f4YXn/b7ObPMddmE9zHhr00qm3bimccMq7oBDommg6ALnhmqt/TMtNz8MFk04
skaIC2VP4Wg+UJ6m2Je6F28Q1Oj50Z0t2z6aQ7Wqvt7kLLFQdq5m0SuSZkZk60My
Y4VBRAJvxS4G8U+agGm+QHdSep59UlZyHXTiS6umrfeRj+91Y6TjJsc=
-----END CERTIFICATE-----
Generated at Sun Apr 13 02:16:53 2025 by rpki-client