Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A0D115042FBD11EFB616F75CC4F9AE02.roa
File: A0D115042FBD11EFB616F75CC4F9AE02.roa (raw, json)
Hash identifier: sDgOZI8SAWVX78S0HZ8AqKB8REB7lXvMr+xAzfxvqhE=
Subject key identifier: 65:7C:25:C4:3F:73:49:CA:23:5F:46:1B:02:23:3F:B3:71:AE:25:3E
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1442
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A0D115042FBD11EFB616F75CC4F9AE02.roa
Signing time: Wed 03 Jul 2024 12:39:29 +0000
ROA not before: Wed 03 Jul 2024 12:39:29 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 05:21:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5186 (0x1442)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jul 3 12:39:29 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66854681-4738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ba:c1:e7:15:e9:73:4a:92:97:6e:40:70:71:
6a:e4:6f:a1:0a:81:55:e6:d2:d6:05:83:3b:cb:da:
7d:9e:6f:dc:52:ef:df:85:29:f9:41:ca:c6:3b:d1:
b8:98:1f:63:b4:13:74:3a:70:78:e3:30:85:9e:02:
de:dd:c4:7e:e8:76:5e:b1:97:ed:a0:bc:a5:26:06:
77:76:fb:54:53:09:a3:50:21:ee:22:b1:fb:31:46:
10:08:54:89:70:1b:ff:f4:52:49:09:85:ae:c4:8f:
32:87:ee:4d:e5:81:73:78:04:fc:48:65:8d:47:f1:
21:f0:ad:ef:00:85:8e:56:06:7a:49:5a:a4:40:53:
eb:f7:3d:97:b2:76:6d:34:1d:16:f6:f1:9d:77:e9:
56:b0:9f:41:1a:c3:cd:c8:7a:da:ff:6d:a0:ee:b6:
c8:bf:9d:9f:41:7f:2f:e6:1c:2d:bf:b0:89:d4:22:
45:4b:b7:59:d7:eb:d8:c1:e1:53:16:36:50:f5:a3:
d3:9b:75:c2:4a:e3:1c:e8:22:ba:44:9f:8d:14:53:
05:0b:ab:03:eb:21:38:e9:dd:5e:c9:90:0d:26:9d:
d9:c9:88:d4:1f:34:c7:6a:11:8f:22:2d:77:04:3a:
6c:c3:58:4c:33:f1:9e:d3:3f:14:18:f9:a3:d9:af:
66:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:7C:25:C4:3F:73:49:CA:23:5F:46:1B:02:23:3F:B3:71:AE:25:3E
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A0D115042FBD11EFB616F75CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
113.203.234.0-113.203.240.255
113.203.253.0/24
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.147.0/24
180.178.172.0/24
180.178.174.0/23
223.29.226.0/24
223.29.228.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:9c:2d:b8:db:96:73:12:f7:a9:df:1b:7b:5d:ac:75:84:46:
26:c0:2c:5f:8b:cd:e1:b4:42:1c:d6:92:1b:fc:20:d8:f6:56:
2a:ef:87:d5:b8:57:dc:e9:e3:69:cf:f2:72:11:34:b8:76:b6:
c7:ca:82:0c:63:0e:94:25:dc:87:f4:5a:9f:d3:d0:cf:24:9d:
32:75:bd:1e:26:56:80:9e:bb:24:1e:fc:7c:df:52:9b:78:c7:
2d:24:e3:59:c5:ff:ba:da:80:26:bf:14:db:71:76:c0:15:b8:
47:3e:32:d5:8a:89:b7:b2:7d:0e:53:56:8f:89:66:05:2c:b3:
6d:fb:22:5f:c8:db:61:2d:9c:58:cd:c5:7e:35:51:c0:52:b5:
a7:02:92:35:e6:45:ea:59:56:c1:d1:28:84:7a:f1:3b:d7:9d:
7f:35:0e:38:8a:6e:a8:11:32:82:f2:32:1f:4a:14:5e:75:ec:
bc:5d:07:76:fa:0b:9e:f1:71:6e:8f:4d:55:f5:cd:b9:fc:7d:
ae:72:b5:ca:06:be:ea:bc:df:9b:14:8d:76:c5:9e:0b:f9:69:
4a:2b:a1:f3:d7:5b:e4:ef:cd:b3:54:59:2b:59:fb:3f:30:0b:
ef:74:23:2d:43:b1:e9:82:93:c3:6d:45:9f:fa:70:fb:d3:75:
08:78:96:71
-----BEGIN CERTIFICATE-----
MIIFtzCCBJ+gAwIBAgICFEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQwNzAzMTIzOTI5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02Njg1NDY4MS00NzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtrrB5xXpc0qSl25AcHFq5G+hCoFV5tLWBYM7y9p9nm/cUu/fhSn5QcrGO9G4
mB9jtBN0OnB44zCFngLe3cR+6HZesZftoLylJgZ3dvtUUwmjUCHuIrH7MUYQCFSJ
cBv/9FJJCYWuxI8yh+5N5YFzeAT8SGWNR/Eh8K3vAIWOVgZ6SVqkQFPr9z2XsnZt
NB0W9vGdd+lWsJ9BGsPNyHra/22g7rbIv52fQX8v5hwtv7CJ1CJFS7dZ1+vYweFT
FjZQ9aPTm3XCSuMc6CK6RJ+NFFMFC6sD6yE46d1eyZANJp3ZyYjUHzTHahGPIi13
BDpsw1hMM/Ge0z8UGPmj2a9mEQIDAQABo4IC2zCCAtcwHQYDVR0OBBYEFGV8JcQ/
c0nKI19GGwIjP7NxriU+MB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvQTBEMTE1MDQy
RkJEMTFFRkI2MTZGNzVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZQYIKwYBBQUHAQcBAf8E
VjBUMFIEAgABMEwDBABnCzwwDAMEAXHL6gMEAHHL8AMEAHHL/QMEAbSygDAMAwQC
tLKEAwQCtLKIAwQAtLKTAwQAtLKsAwQBtLKuAwQA3x3iAwQA3x3kMA0GCSqGSIb3
DQEBCwUAA4IBAQCinC2425ZzEvep3xt7Xax1hEYmwCxfi83htEIc1pIb/CDY9lYq
74fVuFfc6eNpz/JyETS4drbHyoIMYw6UJdyH9Fqf09DPJJ0ydb0eJlaAnrskHvx8
31KbeMctJONZxf+62oAmvxTbcXbAFbhHPjLViom3sn0OU1aPiWYFLLNt+yJfyNth
LZxYzcV+NVHAUrWnApI15kXqWVbB0SiEevE7151/NQ44im6oETKC8jIfShRedey8
XQd2+gue8XFuj01V9c25/H2ucrXKBr7qvN+bFI12xZ4L+WlKK6Hz11vk782zVFkr
Wfs/MAvvdCMtQ7HpgpPDbUWf+nD703UIeJZx
-----END CERTIFICATE-----
Generated at Sun Apr 13 01:55:43 2025 by rpki-client