Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/BBFC8DC87CC411EFAED13236C4F9AE02.roa
File: BBFC8DC87CC411EFAED13236C4F9AE02.roa (raw, json)
Hash identifier: e+pKNpQpS72Qu0riSRf9pG9A2u2rPTFvCd19KIVzJwQ=
Subject key identifier: 5A:50:49:CC:3C:E7:0D:B4:1E:10:E0:20:92:EA:F1:6B:39:E6:1A:33
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 16A9
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/BBFC8DC87CC411EFAED13236C4F9AE02.roa
Signing time: Fri 27 Sep 2024 11:36:28 +0000
ROA not before: Fri 27 Sep 2024 11:36:28 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 136030
IP address blocks: 103.151.26.0/24 maxlen: 24
115.167.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 05:05:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5801 (0x16a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Sep 27 11:36:28 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66f698bc-e60d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a6:e8:6e:66:41:6f:11:b4:d9:de:69:7b:2f:
73:90:59:a0:eb:20:45:10:6b:36:ff:d0:51:83:3a:
17:70:dc:8b:af:a6:02:a4:93:81:cb:06:81:d5:68:
21:f2:d5:f5:91:d6:a4:dc:e3:38:fe:bf:75:6f:87:
72:1c:f1:da:96:a2:e5:31:24:9c:af:0d:f1:23:e3:
cc:23:ec:41:cb:87:3b:04:e3:52:09:0e:b0:fb:70:
f0:1b:be:f3:7f:44:5e:7a:da:26:b3:f0:2c:94:bd:
0a:f2:15:bf:18:b3:0a:8b:95:46:6f:35:90:87:4a:
9f:66:51:cb:d6:97:f5:62:02:0d:38:67:53:2f:43:
7e:6f:17:39:0c:86:2d:67:44:df:dc:a9:62:59:21:
e7:c0:3a:45:31:76:d3:0f:87:7d:69:77:06:2a:e2:
03:5c:e5:cc:c6:54:41:a3:3c:1e:5e:ce:be:7b:7d:
a0:16:2a:0c:30:0a:eb:45:49:cf:b9:63:41:05:21:
4e:57:d1:ec:63:11:73:0d:8c:6b:da:b7:84:98:fb:
44:f0:27:ac:c4:5a:06:e4:40:59:17:f2:3d:d3:60:
7e:bd:43:84:5a:da:d3:d3:99:ca:f8:0c:33:78:49:
90:b4:c1:4f:0d:43:9a:ff:0a:25:cf:0f:8d:0b:23:
36:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:50:49:CC:3C:E7:0D:B4:1E:10:E0:20:92:EA:F1:6B:39:E6:1A:33
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/BBFC8DC87CC411EFAED13236C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.26.0/24
115.167.64.0/24
Signature Algorithm: sha256WithRSAEncryption
86:b4:9c:36:5d:b8:ed:65:d7:dd:25:c9:24:73:b3:e0:70:ec:
ee:72:36:64:90:ae:d3:e2:ab:0c:bd:8e:fb:dd:a6:01:cf:de:
c2:37:4b:3e:c5:ff:66:9f:09:7a:c3:cd:1b:6b:fa:ad:96:86:
3f:8a:38:81:04:7e:db:95:c0:17:68:b3:27:9d:c2:b1:7c:e2:
67:85:c4:a8:1e:d8:3a:6f:62:ef:90:16:e6:03:51:3f:9d:fa:
c9:d5:fe:14:17:fb:7e:10:6d:18:fd:28:74:eb:4a:6e:d5:03:
96:06:e8:4a:03:3f:1c:7a:58:72:e6:1f:db:8d:84:a6:05:7b:
ca:84:d2:3d:0e:01:45:63:6f:32:33:57:71:98:d9:f7:b8:a3:
60:b3:1d:d2:a1:2a:0a:c2:b5:68:bb:db:6d:21:0c:54:88:9b:
0e:8a:66:d3:63:41:64:74:e3:30:0b:12:e7:a7:88:5b:f2:e7:
97:b2:8e:e2:7c:7d:cf:ac:5d:de:d1:07:31:33:b4:a0:f2:c5:
af:fa:5a:50:b5:60:9b:fd:5c:81:b0:a3:7c:f5:40:81:1a:59:
0f:a3:d7:11:38:e5:33:96:c9:a6:ed:1c:9d:4e:7f:06:f8:cc:
22:1c:35:1e:ca:85:d1:8f:f4:16:d6:72:f9:99:d1:59:14:af:
5e:39:ea:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:58:00 2025 by rpki-client