Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A5A10CA09B7A11EFBAD81F64C4F9AE02.roa
File: A5A10CA09B7A11EFBAD81F64C4F9AE02.roa (raw, json)
Hash identifier: UyxK22zx+yVcJqoEa/PuMYgZKGMcZms+1R2LgxzwjJc=
Subject key identifier: 66:C5:86:92:87:8F:4D:BF:BC:B6:11:53:E5:5D:E6:05:B6:EE:B1:6C
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1B7E
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A5A10CA09B7A11EFBAD81F64C4F9AE02.roa
Signing time: Tue 05 Nov 2024 14:11:59 +0000
ROA not before: Tue 05 Nov 2024 14:11:59 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 43.226.224.0/22 maxlen: 24
103.11.63.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
113.203.246.0/24 maxlen: 24
115.167.20.0/22 maxlen: 22
115.167.50.0/24 maxlen: 24
115.167.56.0/22 maxlen: 22
115.167.60.0/22 maxlen: 22
115.167.77.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.89.0/24 maxlen: 24
175.110.91.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.152.0/21 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Nov 2024 10:26:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7038 (0x1b7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Nov 5 14:11:59 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=672a27ae-a4e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:42:c8:3b:6f:00:06:f2:66:8c:13:23:8c:b0:
c2:d8:c9:cb:ee:2f:d2:92:48:b9:21:1f:77:44:1f:
7c:a6:19:9d:82:fd:21:b7:2d:46:47:70:b9:7b:0c:
4f:cd:e9:01:99:ce:97:0a:d7:2d:64:3c:12:ce:68:
ff:03:28:58:65:1a:e7:f7:36:32:24:bc:e7:41:9c:
28:e9:c5:5e:28:a6:6d:c1:d2:9c:58:7e:65:48:ab:
c8:dc:de:30:44:76:7e:63:c4:0c:2c:34:f0:b9:8b:
ee:63:29:10:ac:0a:7c:0b:7b:80:79:21:2b:6c:5d:
cb:ea:e0:e4:c1:57:3b:a4:44:50:e6:ad:38:33:4c:
e0:a0:e7:14:b4:f5:5d:27:9f:30:9e:53:3b:d3:8f:
bf:e7:d4:d9:f9:ba:df:bf:d4:a6:af:80:04:b7:5d:
55:64:57:8f:80:75:fc:2e:f7:f2:55:d8:cd:24:55:
e7:0d:0b:43:10:8b:ea:24:54:50:31:4c:4c:f6:a2:
92:21:71:72:72:96:fb:91:18:18:4c:ab:df:e1:84:
d4:29:cf:bf:08:fd:d9:40:d7:66:68:19:24:5c:69:
e8:b0:70:ad:65:9e:81:ba:4f:b4:1d:33:92:61:c3:
98:5c:aa:11:17:55:ea:d6:dd:c3:02:14:0c:b5:79:
b5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:C5:86:92:87:8F:4D:BF:BC:B6:11:53:E5:5D:E6:05:B6:EE:B1:6C
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A5A10CA09B7A11EFBAD81F64C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.224.0/22
103.11.63.0/24
113.203.208.0/24
113.203.210.0/24
113.203.215.0/24
113.203.217.0/24
113.203.219.0-113.203.220.255
113.203.222.0/24
113.203.241.0/24
113.203.246.0/24
115.167.20.0/22
115.167.50.0/24
115.167.56.0/21
115.167.77.0-115.167.78.255
175.110.80.0/22
175.110.89.0/24
175.110.91.0/24
175.110.105.0/24
180.178.142.0/24
180.178.150.0/24
180.178.152.0/21
202.92.26.0/24
223.29.225.0/24
223.29.227.0/24
223.29.239.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:43:fd:e9:3a:56:31:81:ec:0a:41:bf:b4:b1:2f:93:5f:c9:
22:45:3e:ac:bb:2d:fa:3e:ba:a5:f4:a8:29:9e:76:c5:f8:a2:
fd:68:78:8d:11:e9:bf:f2:91:cc:7f:9b:ed:9f:63:36:36:5e:
2e:76:94:ee:9a:3d:e1:0e:f5:db:f7:f1:5a:24:4a:c7:08:7d:
04:e3:c0:52:d4:db:96:c2:85:28:f9:8c:77:8c:cf:fe:fe:e1:
3d:31:4c:22:8a:89:04:5c:e3:0d:e7:ba:e4:5d:b7:17:39:79:
05:28:24:cc:83:b1:fb:73:88:84:40:62:42:b6:73:e7:23:2e:
be:3a:95:d6:2d:b0:6c:8c:1c:6d:72:2f:56:d4:63:84:6f:c8:
28:35:f2:88:b4:d5:f0:55:51:ed:7f:16:d1:65:37:cf:35:c5:
6b:78:ed:74:15:41:39:29:06:40:6e:7e:4c:4e:9e:73:9b:89:
c7:b2:bc:5a:c0:7c:89:27:ee:a6:d1:8c:70:db:ae:fc:58:cc:
ea:84:0a:7a:80:12:d5:74:5a:ef:95:cb:3b:c6:ae:0b:dc:7a:
dc:f1:ae:6e:1d:e1:48:e2:83:a7:59:a0:29:6f:eb:9b:16:73:
6b:99:c4:17:4c:d9:d3:fe:38:ca:03:e9:ae:77:f1:fa:39:84:
1d:37:f1:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:02:39 2025 by rpki-client