Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/CE4C94F6BD3211EFA3460950C4F9AE02.roa
File: CE4C94F6BD3211EFA3460950C4F9AE02.roa (raw, json)
Hash identifier: 9nHwUdbjMnwviEfg9NmD3cwLEqpctndniLdyZcEZSYk=
Subject key identifier: 9C:8F:DC:9C:B2:C1:90:0E:C4:BA:DC:F4:4A:CF:FF:0B:60:F7:AF:1A
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 2010
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/CE4C94F6BD3211EFA3460950C4F9AE02.roa
Signing time: Wed 18 Dec 2024 11:25:38 +0000
ROA not before: Wed 18 Dec 2024 11:25:38 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 103.11.63.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.209.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.211.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.214.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.223.0/24 maxlen: 24
113.203.229.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
115.167.6.0/24 maxlen: 24
115.167.16.0/22 maxlen: 24
115.167.64.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
115.167.118.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
175.110.81.0/24 maxlen: 24
175.110.82.0/24 maxlen: 24
175.110.83.0/24 maxlen: 24
175.110.97.0/24 maxlen: 24
175.110.98.0/24 maxlen: 24
175.110.99.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
175.110.107.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.110.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.164.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.176.0/22 maxlen: 22
180.178.180.0/24 maxlen: 24
180.178.181.0/24 maxlen: 24
180.178.182.0/24 maxlen: 24
180.178.183.0/24 maxlen: 24
180.178.184.0/22 maxlen: 22
180.178.185.0/24 maxlen: 24
180.178.186.0/24 maxlen: 24
180.178.187.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Dec 2024 12:16:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8208 (0x2010)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 18 11:25:38 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6762b132-5186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3e:1e:1e:71:2f:7c:b4:b5:de:b2:3e:30:17:
72:2a:de:72:d2:f9:57:81:53:27:6f:9f:38:c3:49:
19:91:91:20:9a:6e:26:c7:69:4b:c7:51:ff:66:83:
89:e7:5a:2f:cb:04:a9:97:fa:63:da:d8:e8:24:2d:
44:e7:f5:a6:9e:a5:ab:15:73:7f:d2:ba:8f:04:c5:
81:18:c5:11:a2:b4:30:07:0f:1b:1c:35:1d:b6:47:
2a:d1:a1:14:c2:de:73:54:9b:2c:96:58:7d:90:4a:
d1:b7:25:83:62:bf:62:83:77:f7:ef:ed:a3:11:54:
47:87:b9:bf:3e:30:e2:2c:0b:44:fd:f7:ed:d2:ab:
0f:20:10:3b:50:50:0d:ad:fe:56:af:3c:80:ad:e6:
dd:33:c4:b2:51:b6:c0:5a:4f:a4:e6:ae:6a:42:d3:
6a:5b:40:21:b0:c9:66:6d:34:21:a6:21:6b:fa:7c:
4d:4b:92:f6:d9:3c:63:35:cd:4f:88:57:a5:99:07:
ef:1d:9f:c1:93:00:af:b9:a2:2b:1e:d6:bd:ed:e0:
a9:c8:d6:a8:fa:ef:33:72:e8:d5:14:5b:05:12:2b:
be:6c:06:a6:a2:a2:5e:ab:ad:66:13:39:58:14:4e:
da:6c:69:ea:c7:43:ff:5c:95:05:b9:a1:ee:a8:46:
7c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:8F:DC:9C:B2:C1:90:0E:C4:BA:DC:F4:4A:CF:FF:0B:60:F7:AF:1A
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/CE4C94F6BD3211EFA3460950C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.63.0/24
113.203.208.0-113.203.220.255
113.203.222.0/23
113.203.229.0-113.203.231.255
113.203.241.0/24
113.203.248.0/24
113.203.253.0/24
115.167.6.0/24
115.167.16.0/22
115.167.64.0/24
115.167.66.0/24
115.167.118.0/24
115.167.124.0/24
175.110.81.0-175.110.83.255
175.110.97.0-175.110.99.255
175.110.104.0/22
175.110.109.0-175.110.110.255
180.178.142.0/24
180.178.144.0/24
180.178.146.0-180.178.150.255
180.178.160.0-180.178.164.255
180.178.166.0/24
180.178.169.0-180.178.171.255
180.178.176.0/20
202.92.26.0/24
223.29.225.0/24
223.29.239.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:d2:fd:fc:85:3d:7e:51:3d:a4:5a:87:bb:d8:3e:6e:37:a8:
db:63:e8:77:29:56:70:7f:e4:8f:7c:44:e3:cf:98:21:f5:99:
25:bd:37:fd:46:5c:4b:8e:d6:2e:8c:a2:f4:34:48:93:73:70:
ce:e4:04:42:02:be:12:d4:38:f2:fb:0a:41:ee:84:1b:97:14:
d2:d4:cb:7f:53:91:99:42:10:17:3c:de:97:d4:cf:35:44:a1:
99:bf:e8:97:ab:a8:9b:7c:2f:3f:ad:12:64:64:6f:dc:69:5f:
36:f1:a5:00:54:57:bb:9b:31:62:fc:f8:8f:7e:45:f4:19:ea:
8e:d5:2f:a4:d7:0b:d9:e8:36:90:b5:ba:6e:03:5d:e9:6a:c2:
8c:82:22:b7:53:67:87:d5:dd:6e:35:25:2b:45:b0:58:92:02:
20:6a:07:29:bb:9d:1b:9b:1d:b6:d5:48:88:3e:84:78:b7:c3:
2f:67:99:62:b9:27:a0:3d:9a:7e:5c:f9:ac:1c:c9:6a:06:7e:
64:05:ad:01:f5:36:ec:6a:c8:f1:21:98:5d:7f:1f:8b:2b:94:
44:b7:e1:7a:bd:d1:7c:65:20:f7:e8:ef:e4:f2:23:cf:11:3b:
89:81:dd:40:02:ef:48:37:bd:97:8c:7e:79:b7:4f:bd:0b:f5:
f6:c9:68:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:12:13 2025 by rpki-client