Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/CF1F311E392E11EF8EB5CF76C4F9AE02.roa
File: CF1F311E392E11EF8EB5CF76C4F9AE02.roa (raw, json)
Hash identifier: NHfDPgJ/Js+plPET6lYlFDg2+kThDWZ4pL6BDIHTcno=
Subject key identifier: 27:BE:AE:E6:40:C9:98:0B:32:7F:5A:56:72:3D:EA:6F:AE:9E:E9:22
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1447
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/CF1F311E392E11EF8EB5CF76C4F9AE02.roa
Signing time: Thu 04 Jul 2024 05:43:26 +0000
ROA not before: Thu 04 Jul 2024 05:43:26 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 103.151.27.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
115.167.0.0/24 maxlen: 24
115.167.2.0/24 maxlen: 24
115.167.3.0/24 maxlen: 24
115.167.4.0/24 maxlen: 24
115.167.12.0/22 maxlen: 24
115.167.16.0/22 maxlen: 24
115.167.20.0/22 maxlen: 24
115.167.56.0/22 maxlen: 24
115.167.73.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.108.0/22 maxlen: 24
115.167.116.0/22 maxlen: 24
115.167.120.0/22 maxlen: 24
115.167.126.0/24 maxlen: 24
115.167.127.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
175.110.107.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.110.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.152.0/21 maxlen: 21
180.178.160.0/24 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.167.0/24 maxlen: 24
180.178.184.0/22 maxlen: 22
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Jul 2024 10:22:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5191 (0x1447)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jul 4 05:43:26 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6686367e-9bdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5e:92:ef:b2:8a:c1:7e:bd:2d:ff:88:8b:bc:
24:ba:06:54:54:41:d4:7d:e0:4f:72:61:5d:28:2a:
37:d9:59:08:9d:38:af:10:d2:9c:12:08:fb:bd:cc:
9b:93:ce:a0:34:76:f6:90:6b:ed:6e:a4:7e:59:c8:
26:38:97:f8:95:7c:7c:13:f0:7a:0f:b1:ea:f2:b1:
38:3f:61:7a:9e:a3:cb:2e:ce:b5:7d:00:ab:89:a2:
a0:dd:f9:a0:77:82:9d:27:6a:1f:08:e9:bc:14:a0:
4c:d6:68:d7:87:97:a3:1b:30:70:fb:bf:39:4a:0f:
11:7f:5d:7a:3c:f9:8e:8c:f1:ff:36:b6:58:ae:a6:
c9:59:61:d8:f7:9b:a2:00:c5:15:01:d2:56:a3:5e:
56:28:76:84:25:b7:6d:d1:ae:c5:27:54:32:ba:f5:
8e:7c:27:77:3f:98:68:64:02:33:b5:81:30:ae:08:
4c:b8:a2:60:61:dc:22:1b:f6:47:c7:b8:43:f7:1d:
35:a6:3f:52:27:af:9b:8c:12:7b:40:59:ff:5b:ac:
5f:dd:60:0a:60:1f:77:8a:29:47:a6:d1:6f:30:82:
5e:5f:a9:a6:c8:6e:c9:c5:7c:3a:f3:06:bb:a3:83:
7e:07:a1:ac:5d:03:98:5c:6d:6f:e2:d9:96:0e:93:
f0:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:BE:AE:E6:40:C9:98:0B:32:7F:5A:56:72:3D:EA:6F:AE:9E:E9:22
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/CF1F311E392E11EF8EB5CF76C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
113.203.213.0/24
115.167.0.0/24
115.167.2.0-115.167.4.255
115.167.12.0-115.167.23.255
115.167.56.0/22
115.167.73.0/24
115.167.78.0/24
115.167.108.0/22
115.167.116.0-115.167.123.255
115.167.126.0/23
175.110.106.0/23
175.110.109.0-175.110.111.255
180.178.144.0/24
180.178.146.0/24
180.178.148.0-180.178.150.255
180.178.152.0-180.178.160.255
180.178.163.0/24
180.178.166.0/23
180.178.184.0/22
202.92.18.0/24
202.92.20.0/24
223.29.225.0/24
Signature Algorithm: sha256WithRSAEncryption
87:28:fa:5f:5b:e4:a3:59:92:ec:f2:ad:1a:46:44:c8:fc:c0:
70:1c:36:57:62:6a:e9:43:ea:f7:c1:36:0d:af:7f:be:90:b8:
25:28:d4:3c:bd:86:d9:f2:db:d4:fb:06:e4:97:8d:e3:6f:1d:
d1:11:05:c0:72:fe:ca:7a:6e:36:2c:c6:ac:d2:66:df:12:bb:
72:ff:0c:18:11:f7:29:72:9c:46:97:5d:7a:5e:36:15:0b:37:
52:a4:27:aa:d9:b0:ee:aa:24:4a:50:cf:46:c7:e4:fb:b5:28:
a5:89:af:4f:b3:8e:b8:3e:96:c6:60:db:57:8e:bf:db:9c:ca:
83:75:88:c4:1c:ea:66:5b:4b:72:28:c5:7c:3c:c2:cb:fb:cc:
28:cc:c4:38:e3:b3:da:27:fc:d6:bd:d7:96:84:de:63:ff:d4:
94:8b:ec:33:33:88:a2:6d:96:61:33:0a:12:23:a2:44:c4:77:
58:e9:a7:fd:a2:8e:5c:b6:39:a8:0a:2b:24:50:d7:7d:2e:61:
9b:b6:b4:07:48:aa:b7:99:0a:6d:3b:49:76:10:d2:6a:82:4a:
3f:b2:a0:69:90:99:a2:a2:f0:28:19:da:f0:69:c9:25:7e:55:
cb:94:03:64:f1:1e:77:cc:0f:99:8d:d2:52:22:f7:44:4c:33:
ec:b7:d8:9c
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 13 01:53:19 2025 by rpki-client