Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/C148E3AA75AB11EFAB6CA758C4F9AE02.roa
File: C148E3AA75AB11EFAB6CA758C4F9AE02.roa (raw, json)
Hash identifier: X7avwdXe4OkxblO7u3+8Wgy3bPMbyTZesUoxnWV3YVc=
Subject key identifier: 08:0B:05:82:28:C6:31:9C:8E:99:06:8F:78:4A:03:FA:F4:5B:95:6C
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1663
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/C148E3AA75AB11EFAB6CA758C4F9AE02.roa
Signing time: Tue 24 Sep 2024 10:01:48 +0000
ROA not before: Tue 24 Sep 2024 10:01:48 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 43.226.224.0/22 maxlen: 24
103.11.63.0/24 maxlen: 24
103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.221.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.223.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.226.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.228.0/22 maxlen: 24
113.203.233.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.248.0/22 maxlen: 24
113.203.252.0/22 maxlen: 24
115.167.2.0/24 maxlen: 24
115.167.3.0/24 maxlen: 24
115.167.12.0/22 maxlen: 24
115.167.16.0/22 maxlen: 24
115.167.20.0/22 maxlen: 24
115.167.50.0/24 maxlen: 24
115.167.56.0/22 maxlen: 24
115.167.73.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.116.0/22 maxlen: 24
115.167.120.0/22 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.97.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.152.0/21 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.165.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.167.0/24 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.176.0/22 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/22 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Sep 2024 05:11:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5731 (0x1663)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Sep 24 10:01:48 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66f28e0c-2660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:79:98:a6:1b:5a:cf:87:de:b7:f0:31:a6:0c:
69:c7:0f:5a:03:b3:5d:3d:9b:89:82:7b:8a:fe:1c:
e7:24:02:27:95:ef:43:d3:7c:f5:e3:16:1b:6e:8e:
70:ec:01:7a:e7:0d:02:17:6e:65:b0:40:d8:9c:70:
b3:be:a0:35:7f:16:35:a4:43:d8:89:20:ae:d6:04:
ac:1f:05:6f:3d:2a:ed:c9:9c:01:11:08:99:d1:6a:
1a:48:d4:a1:17:a4:ba:1e:48:70:11:ce:28:2b:de:
3b:cd:e2:b0:83:d0:23:d7:62:bf:40:51:5c:9b:06:
d2:1c:c2:83:e1:7e:94:32:30:81:3c:ee:94:ae:ac:
d1:94:1c:bb:84:10:dc:bf:da:57:87:65:a1:29:22:
45:97:b8:d5:8e:a1:48:9f:1c:12:e4:20:77:43:50:
43:be:d1:cc:83:c9:e5:5a:4d:53:05:8f:9b:dc:80:
0a:96:5c:57:0c:39:fc:11:57:5c:64:ca:b8:89:9f:
93:f6:96:87:e2:d3:6b:65:71:65:eb:3d:0f:2b:59:
30:48:0c:40:cc:69:27:d5:72:8d:ec:54:89:de:90:
61:27:56:67:db:25:27:33:f2:f7:1b:fe:24:00:e7:
62:cb:c7:56:41:99:34:4b:a5:2e:7e:f8:72:90:b1:
61:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:0B:05:82:28:C6:31:9C:8E:99:06:8F:78:4A:03:FA:F4:5B:95:6C
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/C148E3AA75AB11EFAB6CA758C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.224.0/22
103.11.63.0/24
103.151.27.0/24
113.203.208.0/24
113.203.210.0/24
113.203.212.0/23
113.203.215.0-113.203.231.255
113.203.233.0/24
113.203.242.0-113.203.245.255
113.203.248.0/21
115.167.2.0/23
115.167.12.0-115.167.23.255
115.167.50.0/24
115.167.56.0/22
115.167.73.0/24
115.167.78.0/24
115.167.116.0-115.167.123.255
115.167.125.0/24
175.110.88.0/22
175.110.97.0/24
175.110.104.0-175.110.106.255
180.178.142.0/24
180.178.144.0/24
180.178.146.0/24
180.178.148.0-180.178.150.255
180.178.152.0-180.178.160.255
180.178.163.0/24
180.178.165.0-180.178.171.255
180.178.176.0-180.178.187.255
180.178.189.0/24
180.178.191.0/24
202.92.18.0/24
202.92.20.0/24
202.92.26.0/24
223.29.231.0/24
223.29.235.0-223.29.239.255
Signature Algorithm: sha256WithRSAEncryption
56:02:9d:5e:88:c2:fa:ef:96:8c:d4:bd:98:af:59:40:98:28:
48:d2:2e:cc:d5:1b:70:f6:2e:3c:83:23:5c:ee:a7:97:8f:a5:
43:8b:32:7f:49:da:d6:d2:6f:47:45:29:42:00:e5:57:e7:e2:
18:cf:0e:64:86:b5:d2:5b:76:45:43:a8:15:7c:1c:71:d2:d5:
95:11:3b:e7:87:a2:1c:24:ba:e3:83:13:45:bd:51:7c:b6:0a:
d0:6e:de:d5:43:19:97:99:6a:a2:da:7c:5f:5c:cc:f6:ac:62:
56:dc:1b:f9:25:31:4a:e8:b6:12:ca:99:f6:aa:4b:16:13:3e:
9f:5a:5c:2f:6b:4d:c8:f0:54:81:c6:27:1a:9a:be:7d:ff:8d:
9d:71:ea:8d:5a:10:24:df:21:33:29:3e:5c:77:d5:fb:53:a8:
b5:a1:09:70:aa:e9:d3:81:d7:e5:d3:f0:0d:d6:70:bd:79:b8:
71:a5:cf:55:cc:51:57:4b:ba:13:23:fd:e1:a6:dd:74:c6:72:
d7:f2:22:6a:8e:cb:94:e5:6d:18:9f:26:fa:e1:2a:3d:bf:96:
47:26:15:81:ba:b6:b0:5e:15:a4:6b:43:3f:26:b5:46:a6:4d:
e9:5e:5d:85:48:84:02:29:50:93:ef:c4:66:70:50:44:c5:7d:
3b:6f:13:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:05:06 2025 by rpki-client