Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/C81ED92E259111EFB300C674C4F9AE02.roa
File: C81ED92E259111EFB300C674C4F9AE02.roa (raw, json)
Hash identifier: pPmPraVHp3+nnWUJC2fwTuscDrCxLF+zlCexgGq2530=
Subject key identifier: 3E:98:7C:F9:D6:FF:13:42:A4:E3:0F:36:42:EC:EA:50:80:01:C4:EE
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1302
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/C81ED92E259111EFB300C674C4F9AE02.roa
Signing time: Sat 08 Jun 2024 12:22:33 +0000
ROA not before: Sat 08 Jun 2024 12:22:33 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 113.203.245.0/24 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.65.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.184.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jun 2024 13:55:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4866 (0x1302)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jun 8 12:22:33 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66644d09-2911
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:95:44:ce:eb:67:71:21:6f:28:e7:66:65:91:
aa:59:77:c9:8d:a7:e7:18:d0:bc:d4:3b:74:97:2e:
73:b2:6b:07:08:55:bf:d5:fd:2a:f4:67:57:d5:97:
b1:9c:82:f9:47:67:02:6d:84:85:a2:9e:a9:d1:9e:
5b:22:12:e1:7b:6f:c8:d5:4a:ab:be:52:55:83:45:
48:94:53:25:fb:87:10:27:3d:de:34:4e:84:53:49:
59:5f:a3:64:b8:be:c2:a7:b7:f5:1f:7e:20:e2:23:
05:9f:f3:c1:f0:d3:d6:43:1a:f2:90:b3:ef:e9:5f:
2b:f6:e9:88:77:45:6b:2c:79:c2:dd:89:8c:39:1d:
01:0e:a8:13:da:25:2a:67:a8:f8:a5:36:ad:fb:68:
ec:14:40:8f:dd:da:b1:0c:46:9e:49:0f:5c:20:7b:
af:6c:31:ae:16:4b:63:05:ca:4f:28:e3:f9:ef:64:
10:72:fa:94:b4:2a:39:64:d6:9d:8d:75:79:c2:63:
98:70:f1:54:42:2d:dc:20:02:cb:bd:cd:5c:44:3c:
73:25:3c:9a:c4:60:f3:70:71:ad:37:38:43:14:dd:
0f:70:69:c3:27:59:68:7e:93:b4:eb:ca:f6:ab:b2:
4d:fd:0e:c4:0f:e7:21:f8:63:6a:ee:bf:ef:ca:e3:
7a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:98:7C:F9:D6:FF:13:42:A4:E3:0F:36:42:EC:EA:50:80:01:C4:EE
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/C81ED92E259111EFB300C674C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.245.0/24
115.167.49.0/24
115.167.65.0-115.167.66.255
180.178.142.0/24
180.178.184.0/24
223.29.225.0/24
223.29.227.0/24
Signature Algorithm: sha256WithRSAEncryption
08:17:89:7e:e5:77:bf:ca:a8:84:79:70:a1:fe:5f:76:4c:77:
9b:30:fb:06:4e:67:79:98:8d:e0:76:5a:ab:21:b0:b1:b5:00:
47:8d:0f:5e:51:b6:9b:ad:de:bb:0b:1c:39:44:99:59:fb:0d:
3a:fe:40:58:99:ba:62:59:38:5a:30:ca:8a:e8:cb:af:90:52:
e8:88:2a:51:dc:5c:23:c2:75:14:59:f1:63:26:e2:02:36:2b:
e5:30:33:54:d3:04:1c:55:4a:b8:ce:23:72:2e:8e:21:c5:e2:
93:80:5d:9d:b2:d7:26:9b:9b:5f:cd:9e:1d:9b:ee:d4:ef:e1:
b1:d0:42:fe:ee:0f:6f:53:de:95:fd:7b:23:65:9d:f0:16:12:
cd:f3:d8:89:dd:95:01:25:cb:fd:0d:35:85:21:e3:a2:55:33:
e4:7d:4e:c8:00:92:6d:ba:bd:86:11:4f:96:5c:12:22:65:cb:
8c:4d:11:c8:96:6e:98:50:08:f7:64:9e:fd:2e:6e:79:95:8e:
4d:f2:06:bf:03:ef:93:7c:7d:3a:a7:3c:b5:a3:cb:d8:99:9d:
31:d6:21:fe:26:7d:71:6a:96:4e:2f:dd:35:76:eb:8a:c1:8f:
f9:ab:94:04:32:96:4d:67:bb:bd:71:b4:0b:d6:ee:af:c6:1c:
57:3e:d4:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:09:54 2025 by rpki-client