Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/C6AE950CB61411EFACCFCD60C4F9AE02.roa
File: C6AE950CB61411EFACCFCD60C4F9AE02.roa (raw, json)
Hash identifier: KwnTyC7o/qzSxUtUILSA1AMvq7itzVWrI77Z8sbXYfk=
Subject key identifier: B3:F2:6E:E0:B9:25:0F:39:9D:41:F6:32:7E:B7:F3:FF:C6:CC:3B:1F
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1F48
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/C6AE950CB61411EFACCFCD60C4F9AE02.roa
Signing time: Thu 12 Dec 2024 07:22:53 +0000
ROA not before: Thu 12 Dec 2024 07:22:53 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 103.11.63.0/24 maxlen: 24
103.151.26.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.223.0/24 maxlen: 24
113.203.229.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
113.203.255.0/24 maxlen: 24
115.167.6.0/24 maxlen: 24
115.167.77.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.81.0/24 maxlen: 24
175.110.82.0/24 maxlen: 24
175.110.83.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.183.0/24 maxlen: 24
180.178.187.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Dec 2024 10:36:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8008 (0x1f48)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 12 07:22:53 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=675a8f4d-5bdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f5:a9:9f:01:35:3e:4d:71:9e:e7:9f:e0:4c:
50:31:10:32:32:2d:1e:8f:e6:61:9f:25:bd:e1:a3:
d2:81:7e:78:5c:85:1a:69:0a:f2:98:df:a6:4a:3a:
82:4b:30:e7:18:61:34:7f:1f:2f:db:5e:12:85:17:
37:82:cb:73:15:cb:f4:da:ea:15:d2:50:f4:9b:4b:
7b:ff:11:1c:83:fc:6d:13:d7:d3:70:e8:a8:c2:1a:
ef:4d:17:96:e9:e8:f2:a7:86:bb:fa:17:94:9c:ab:
d0:ef:fb:55:55:18:82:3d:d6:8d:d4:0e:e6:64:d1:
de:4d:4e:15:ba:d6:1c:2b:12:aa:32:2b:bd:45:9a:
26:8b:88:61:42:4d:42:89:fd:49:53:69:b3:a5:6a:
b5:41:28:a0:77:3e:9c:25:45:bf:9b:7b:02:99:af:
f1:dc:93:3d:9d:0c:3b:f4:e3:05:6c:b9:8b:d8:46:
88:0f:68:f8:d1:5d:7c:22:2a:94:d6:e6:5a:e8:4f:
10:7e:4b:a7:b2:04:49:c9:04:51:9a:cf:e5:15:7b:
ca:65:23:00:47:50:e6:32:1a:89:a7:e9:5e:f0:c1:
30:87:b3:d6:fa:2e:26:a5:04:8a:66:dc:91:97:89:
5f:9f:57:d9:d0:a6:2e:7a:33:b7:90:fd:ac:fc:b1:
7f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:F2:6E:E0:B9:25:0F:39:9D:41:F6:32:7E:B7:F3:FF:C6:CC:3B:1F
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/C6AE950CB61411EFACCFCD60C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.63.0/24
103.151.26.0/24
113.203.216.0/24
113.203.223.0/24
113.203.229.0-113.203.230.255
113.203.241.0/24
113.203.253.0/24
113.203.255.0/24
115.167.6.0/24
115.167.77.0-115.167.78.255
115.167.125.0/24
175.110.81.0-175.110.83.255
180.178.142.0/24
180.178.183.0/24
180.178.187.0/24
202.92.26.0/24
223.29.225.0/24
223.29.239.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:a3:f3:73:a6:3c:c5:b1:64:e5:0b:7b:9a:a2:04:f9:89:95:
74:ee:45:b4:e8:cf:5c:d1:bc:84:7e:59:b4:21:fb:99:f9:25:
04:b6:a9:62:9d:83:52:78:68:20:20:4f:7f:c8:e1:8a:b8:ea:
59:94:53:ae:0f:6c:87:e9:ab:84:e3:09:c7:18:0f:1a:bf:ca:
d6:7f:07:72:bf:f8:cb:24:32:44:c3:cc:19:e3:ce:cd:09:ad:
26:e9:d6:7d:80:b8:50:c2:17:c7:86:90:76:51:f6:e8:73:35:
e3:fd:a0:03:9e:62:b1:c5:ba:b1:2c:a3:7f:83:4b:56:c7:98:
e0:dc:eb:9f:d1:2a:31:b3:f2:c1:a6:86:d4:31:00:73:68:eb:
77:f4:a2:1c:10:ed:9f:8e:5c:aa:04:df:6c:e6:55:11:ff:74:
c5:a9:2f:9a:c2:8d:15:5e:2a:57:b6:1c:16:53:e6:5a:b7:4c:
73:57:d0:47:d7:f5:8e:bf:0c:a7:bc:19:73:fd:a3:e7:0b:44:
d1:4d:14:94:06:ea:24:f9:4a:55:33:9a:b5:2e:13:8d:99:85:
ff:4b:5c:95:21:51:fb:9f:d8:13:8f:d5:77:72:24:a0:90:f4:
dc:f7:32:12:42:10:38:13:6a:05:a9:82:36:59:e3:74:30:be:
3e:c3:b7:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:50:48 2025 by rpki-client