Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/B58303C09A9F11EFA025F94FC4F9AE02.roa
File: B58303C09A9F11EFA025F94FC4F9AE02.roa (raw, json)
Hash identifier: xtG5l2xF0bO3sW2YKgTOBqqd75fIcWBm/Luqt3Ctih8=
Subject key identifier: 0D:24:BA:52:B1:60:A3:C7:29:3F:24:3C:21:03:F0:A7:ED:17:A3:8B
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1B57
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/B58303C09A9F11EFA025F94FC4F9AE02.roa
Signing time: Mon 04 Nov 2024 11:27:01 +0000
ROA not before: Mon 04 Nov 2024 11:27:01 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 205220
IP address blocks: 113.203.212.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.223.0/24 maxlen: 24
113.203.226.0/24 maxlen: 24
113.203.228.0/22 maxlen: 24
113.203.233.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.252.0/22 maxlen: 22
115.167.117.0/24 maxlen: 24
115.167.118.0/24 maxlen: 24
115.167.119.0/24 maxlen: 24
115.167.122.0/24 maxlen: 24
115.167.123.0/24 maxlen: 24
175.110.90.0/24 maxlen: 24
175.110.107.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.110.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.165.0/24 maxlen: 24
180.178.167.0/24 maxlen: 24
180.178.176.0/22 maxlen: 22
180.178.180.0/22 maxlen: 22
180.178.184.0/22 maxlen: 22
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Nov 2024 06:19:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6999 (0x1b57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Nov 4 11:27:01 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6728af85-433a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ea:2c:02:dd:35:2a:b1:99:bf:b1:0e:1e:6f:
c3:28:76:b2:4c:b9:7a:7a:37:00:2d:29:00:c0:45:
24:2f:a9:e1:aa:24:2a:5c:6f:bb:93:47:b4:c7:dd:
b0:31:2c:14:c0:5f:93:19:62:c7:2d:e0:d6:4f:b2:
5b:92:1f:44:16:90:a1:e5:67:8a:e4:fe:87:fb:9b:
91:4b:f9:93:0c:1f:c0:a3:b3:76:20:c0:c0:34:0f:
99:18:b8:9e:6f:fe:71:87:2e:5b:a5:06:13:a9:f2:
78:c8:ed:50:10:5b:21:10:df:c2:6a:0f:e5:6b:db:
15:d8:8b:50:95:09:8b:7b:a2:c8:d4:10:a5:cf:5d:
37:f5:6c:b3:9d:a1:7f:97:80:26:bf:5c:55:70:63:
17:a8:06:1a:b1:f7:82:ab:6d:b7:7d:b1:7d:b8:ce:
12:8b:78:3d:1c:ca:59:4f:92:8e:1c:d3:bd:29:ab:
f1:fd:25:ca:6a:6e:d9:6d:81:d0:0e:82:39:fa:e9:
23:0f:22:cb:fd:2f:75:ed:31:08:2c:9b:f6:18:67:
a7:bb:b4:4f:a4:cb:be:b5:7b:d5:21:7f:50:54:d2:
5a:91:9c:50:0e:13:66:15:8d:9c:7a:45:ff:f2:99:
ae:1e:9b:9f:6b:98:b7:87:ea:f5:b9:62:97:02:ae:
f0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:24:BA:52:B1:60:A3:C7:29:3F:24:3C:21:03:F0:A7:ED:17:A3:8B
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/B58303C09A9F11EFA025F94FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.212.0/24
113.203.216.0/24
113.203.218.0/24
113.203.223.0/24
113.203.226.0/24
113.203.228.0/22
113.203.233.0/24
113.203.242.0/24
113.203.244.0/23
113.203.252.0/22
115.167.117.0-115.167.119.255
115.167.122.0/23
175.110.90.0/24
175.110.107.0/24
175.110.109.0-175.110.111.255
180.178.144.0/24
180.178.165.0/24
180.178.167.0/24
180.178.176.0-180.178.187.255
202.92.18.0/24
202.92.20.0/24
223.29.235.0-223.29.236.255
Signature Algorithm: sha256WithRSAEncryption
b0:15:5f:8d:8a:c1:77:be:44:19:b6:6d:c2:c1:f3:2a:aa:ad:
d1:37:07:2f:3d:f2:6f:df:52:3d:9f:e9:85:79:96:88:ff:c4:
bd:ca:98:0c:21:c1:2d:94:0e:f1:df:c7:d0:cb:39:35:6d:72:
70:80:0d:e2:52:21:16:d9:d6:40:cb:cd:ee:82:c7:d4:e7:76:
59:53:ff:11:d7:90:a2:61:83:82:17:85:00:e3:9e:42:e6:28:
b3:0e:a3:85:8a:f9:af:13:03:4d:22:4a:8f:0d:14:01:06:6a:
88:ae:6d:a8:2f:be:66:dc:be:27:7a:c2:90:5c:25:f1:80:77:
64:6f:5d:0d:56:67:1e:2a:8b:32:22:04:27:87:02:e4:b5:4f:
9b:b5:6b:cf:bc:5f:5f:fd:3f:72:95:ff:bd:6f:f3:c6:aa:4b:
80:80:88:7d:86:5d:79:9a:7b:ea:0d:b0:59:8d:6f:02:55:ea:
53:b0:0f:40:39:b8:97:53:de:6b:22:af:f5:ac:a4:4e:6d:cd:
81:e4:c0:11:9d:64:3a:85:c9:10:eb:39:4c:b6:83:d6:af:b5:
1e:49:25:14:d2:a3:47:56:b7:82:7f:65:63:e7:d1:1e:53:32:
51:de:7b:05:39:f0:e3:f9:8a:3c:49:22:db:77:4c:b7:44:15:
43:d2:5f:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:53:24 2025 by rpki-client