Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/B39DCB807ADA11ED96D52C3DC4F9AE02.roa
File: B39DCB807ADA11ED96D52C3DC4F9AE02.roa (raw, json)
Hash identifier: 4kX/bMiiNEW4Y7jRP8PNbv+eh0k+hLB9jvnlH+HvCg8=
Subject key identifier: 32:7F:6D:D9:25:0B:02:88:CC:A9:99:55:76:5A:87:5B:AD:D2:5F:41
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 127A
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/B39DCB807ADA11ED96D52C3DC4F9AE02.roa
Signing time: Thu 30 May 2024 11:30:47 +0000
ROA not before: Thu 30 May 2024 11:30:47 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 3561
IP address blocks: 103.11.68.0/22 maxlen: 24
115.167.5.0/24 maxlen: 24
115.167.6.0/24 maxlen: 24
115.167.9.0/24 maxlen: 24
115.167.10.0/24 maxlen: 24
115.167.96.0/22 maxlen: 24
175.110.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 07 Oct 2024 10:43:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4730 (0x127a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: May 30 11:30:47 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66586367-2e95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:d4:d8:c9:88:cb:b8:1b:b3:13:55:d6:f1:c9:
22:b6:50:83:c1:a8:fe:bd:04:d7:ea:a9:1d:b4:c5:
8e:99:86:3b:1a:8f:45:69:83:14:32:8a:ed:47:38:
89:e5:ea:c4:41:54:c3:ec:7e:e8:0e:ea:2b:85:5c:
63:b0:ea:42:a3:d7:55:cd:b0:63:41:49:57:60:fb:
0e:11:80:9e:32:bf:53:80:c2:92:40:e6:e3:ea:f8:
24:50:5b:2d:2e:5d:d5:b5:33:66:42:4c:9c:fe:86:
ca:fa:40:1c:8a:75:ca:e6:e5:f9:3c:84:f4:2d:e5:
e4:53:fe:3d:58:a2:de:5d:42:9a:d9:65:2b:da:d7:
df:87:b1:34:c9:aa:24:14:9f:56:c0:24:11:2b:3b:
72:b4:ee:bb:a0:0a:ea:d4:42:ad:36:13:19:bf:6e:
10:cb:2e:75:3e:91:9e:f1:44:7c:68:a4:42:0a:4d:
fb:bf:b2:9a:89:1b:10:36:d7:4e:53:6e:27:94:c1:
35:f7:88:14:91:c6:d6:14:42:a2:5c:e2:49:1d:d4:
2a:40:0a:f6:b6:4a:0f:20:02:0b:85:24:0b:2d:be:
1e:87:43:10:78:a2:42:ce:cf:e5:a0:0a:b2:d9:3a:
27:67:0c:72:ce:c6:d3:e3:f1:90:76:d2:4c:0d:32:
32:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7F:6D:D9:25:0B:02:88:CC:A9:99:55:76:5A:87:5B:AD:D2:5F:41
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/B39DCB807ADA11ED96D52C3DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.68.0/22
115.167.5.0-115.167.6.255
115.167.9.0-115.167.10.255
115.167.96.0/22
175.110.100.0/22
Signature Algorithm: sha256WithRSAEncryption
48:d0:a5:a9:46:b5:66:a4:00:60:3f:22:5c:83:fb:db:fe:04:
ae:c7:30:2a:42:48:31:99:d9:10:35:da:f3:7d:26:b0:96:66:
fd:4f:85:eb:20:f9:54:be:a9:29:b5:f9:0b:8d:6e:4d:3c:dc:
e1:11:68:51:38:18:52:d6:24:8e:a8:58:cc:47:25:cb:7f:fc:
9b:d2:b7:35:2d:fe:ed:35:75:93:f5:a5:d3:0f:18:a1:07:b4:
04:be:7d:35:65:fc:a7:63:2c:1e:d8:7f:c4:97:6b:19:bb:b0:
f3:77:5a:84:37:65:5f:2f:f8:0d:d5:34:6e:7e:65:5b:90:2b:
f8:6e:17:d6:3a:f7:c5:96:b4:87:57:52:69:07:7c:21:5a:30:
00:4a:a9:ae:04:4f:84:0d:bf:05:9b:c6:0d:da:f8:73:29:be:
db:7d:a8:06:a0:ea:bd:72:96:c5:36:e1:ad:db:08:54:c0:50:
7f:9e:df:a4:c1:38:88:a2:e5:8c:d2:f5:48:74:32:4b:8d:c1:
36:2b:10:81:51:89:e5:76:a7:52:01:70:d9:c4:9c:88:83:b8:
99:1c:91:0d:5a:ec:38:8b:03:22:a1:af:d9:71:ff:7b:fd:e4:
0b:6a:e5:2c:7b:6e:2e:57:97:ab:70:cd:9a:44:b7:d6:79:1c:
c1:ed:cb:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:53:23 2025 by rpki-client