Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/CF9B9266B2E311EF9089DF15C4F9AE02.roa
File: CF9B9266B2E311EF9089DF15C4F9AE02.roa (raw, json)
Hash identifier: gcbtuq1THTkrYIJjrjm/8V68clOzerw+L54aJiZJ0rY=
Subject key identifier: 1B:9D:0C:45:D9:7C:DC:04:A0:EC:26:47:45:77:C2:7F:8D:D7:45:FB
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1E87
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/CF9B9266B2E311EF9089DF15C4F9AE02.roa
Signing time: Thu 05 Dec 2024 08:34:58 +0000
ROA not before: Thu 05 Dec 2024 08:34:58 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 55154
IP address blocks: 103.151.27.0/24 maxlen: 24
113.203.211.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
113.203.255.0/24 maxlen: 24
115.167.3.0/24 maxlen: 24
115.167.5.0/24 maxlen: 24
115.167.9.0/24 maxlen: 24
115.167.12.0/22 maxlen: 24
115.167.28.0/24 maxlen: 24
115.167.50.0/24 maxlen: 24
115.167.52.0/24 maxlen: 24
115.167.53.0/24 maxlen: 24
115.167.54.0/24 maxlen: 24
115.167.55.0/24 maxlen: 24
115.167.101.0/24 maxlen: 24
115.167.102.0/24 maxlen: 24
115.167.103.0/24 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.89.0/24 maxlen: 24
175.110.91.0/24 maxlen: 24
175.110.97.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.176.0/22 maxlen: 22
180.178.183.0/24 maxlen: 24
180.178.187.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.230.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Dec 2024 12:16:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7815 (0x1e87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 5 08:34:58 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=675165b2-20cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6b:4c:fa:b4:82:72:b7:8f:44:a0:1b:1f:4e:
5d:55:95:71:5b:e4:6e:ad:cd:cd:3f:77:5e:9e:17:
5f:fc:54:f0:ec:d0:50:dd:19:fb:9f:23:6b:81:56:
ce:06:80:1d:c2:ad:d6:0f:78:d2:2f:02:59:4e:d4:
4d:a4:7a:20:21:52:c5:b8:89:24:2c:6f:74:38:87:
2f:3b:05:84:92:42:7d:0f:93:f3:1d:02:e5:68:0e:
e8:b9:60:57:54:ad:4c:74:a0:ac:ee:2a:86:31:6c:
00:97:d6:de:57:c4:a7:15:cc:ec:df:39:7a:4d:4b:
c8:3b:ef:aa:30:df:94:86:73:02:23:6d:9b:24:b7:
8a:6c:0e:0f:74:20:d9:07:e7:c2:74:25:61:19:af:
ed:af:4f:ae:79:f4:6e:da:da:5f:6e:bf:de:1f:5c:
39:bb:96:b0:82:3d:79:cb:db:d4:25:e2:76:c5:6e:
41:3a:39:c5:d7:22:7a:04:7b:69:f1:41:28:0b:63:
47:c0:0c:9f:2e:e9:7b:98:db:ec:3c:42:3c:5c:81:
0d:03:70:a9:00:df:eb:08:5d:fe:32:09:59:3e:c3:
90:85:35:55:9a:13:b9:45:b3:d9:1b:fd:58:0e:0c:
6c:72:9b:0d:f2:57:83:c6:ca:1a:4d:49:95:45:5b:
0b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:9D:0C:45:D9:7C:DC:04:A0:EC:26:47:45:77:C2:7F:8D:D7:45:FB
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/CF9B9266B2E311EF9089DF15C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
113.203.211.0/24
113.203.213.0/24
113.203.215.0/24
113.203.219.0/24
113.203.224.0/23
113.203.227.0/24
113.203.241.0/24
113.203.243.0/24
113.203.248.0/24
113.203.253.0/24
113.203.255.0/24
115.167.3.0/24
115.167.5.0/24
115.167.9.0/24
115.167.12.0/22
115.167.28.0/24
115.167.50.0/24
115.167.52.0/22
115.167.101.0-115.167.103.255
115.167.125.0/24
175.110.80.0/22
175.110.89.0/24
175.110.91.0/24
175.110.97.0/24
175.110.104.0/24
175.110.106.0/24
180.178.147.0/24
180.178.149.0/24
180.178.162.0/24
180.178.166.0/24
180.178.169.0-180.178.171.255
180.178.176.0/22
180.178.183.0/24
180.178.187.0/24
180.178.189.0/24
223.29.225.0/24
223.29.228.0/24
223.29.230.0/23
223.29.235.0/24
223.29.237.0-223.29.239.255
Signature Algorithm: sha256WithRSAEncryption
37:b2:9c:63:53:50:f3:80:22:ee:f9:fb:e9:0a:88:de:ef:d5:
4d:ee:1b:b2:9d:ce:e7:9f:ad:10:17:92:fc:87:63:0e:dd:d3:
24:38:86:0f:c9:b7:7a:a1:1f:df:29:16:54:fe:e6:0f:47:a9:
2e:c9:65:3e:a0:c4:29:c3:70:74:a3:ab:a3:9f:0e:a4:aa:ee:
a3:01:d2:bc:63:e9:05:57:bd:4a:49:3e:b3:ad:13:16:f9:f1:
25:bf:d9:87:88:32:5e:ad:47:9b:66:62:e5:09:4d:51:30:ac:
3b:db:e8:b8:b3:d0:9e:0f:f7:cf:15:6d:17:c3:8d:b7:9a:64:
cc:65:ce:99:f4:71:db:b5:95:76:72:4f:af:bd:11:5b:50:fd:
2a:6b:c8:99:29:2c:6e:33:b0:6e:c6:9c:0c:31:2b:db:ed:bf:
47:c9:34:8c:94:a4:63:60:03:99:21:07:cd:96:96:fd:2e:97:
09:45:41:1b:c1:83:9f:34:a3:af:6e:65:80:18:5a:42:cc:5e:
db:ac:23:f6:cb:69:e8:9a:ce:9b:fb:87:71:d0:9f:ff:b1:75:
07:02:ab:fa:87:c5:7f:56:1e:91:0d:31:39:44:db:54:00:07:
0d:0f:49:7c:87:d4:62:d3:19:a3:29:91:69:e4:c6:d2:7a:a0:
a0:93:c4:b5
-----BEGIN CERTIFICATE-----
MIIGgzCCBWugAwIBAgICHocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQxMjA1MDgzNDU4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzUxNjViMi0yMGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAv2tM+rSCcrePRKAbH05dVZVxW+Rurc3NP3denhdf/FTw7NBQ3Rn7nyNrgVbO
BoAdwq3WD3jSLwJZTtRNpHogIVLFuIkkLG90OIcvOwWEkkJ9D5PzHQLlaA7ouWBX
VK1MdKCs7iqGMWwAl9beV8SnFczs3zl6TUvIO++qMN+UhnMCI22bJLeKbA4PdCDZ
B+fCdCVhGa/tr0+uefRu2tpfbr/eH1w5u5awgj15y9vUJeJ2xW5BOjnF1yJ6BHtp
8UEoC2NHwAyfLul7mNvsPEI8XIENA3CpAN/rCF3+MglZPsOQhTVVmhO5RbPZG/1Y
DgxscpsN8leDxsoaTUmVRVsL9wIDAQABo4IDpzCCA6MwHQYDVR0OBBYEFBudDEXZ
fNwEoOwmR0V3wn+N10X7MB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvQ0Y5QjkyNjZC
MkUzMTFFRjkwODlERjE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggEvBggrBgEFBQcBBwEB
/wSCAR4wggEaMIIBFgQCAAEwggEOAwQAZ5cbAwQAccvTAwQAccvVAwQAccvXAwQA
ccvbAwQBccvgAwQAccvjAwQAccvxAwQAccvzAwQAccv4AwQAccv9AwQAccv/AwQA
c6cDAwQAc6cFAwQAc6cJAwQCc6cMAwQAc6ccAwQAc6cyAwQCc6c0MAwDBABzp2UD
BANzp2ADBABzp30DBAKvblADBACvblkDBACvblsDBACvbmEDBACvbmgDBACvbmoD
BAC0spMDBAC0spUDBAC0sqIDBAC0sqYwDAMEALSyqQMEArSyqAMEArSysAMEALSy
twMEALSyuwMEALSyvQMEAN8d4QMEAN8d5AMEAd8d5gMEAN8d6zAMAwQA3x3tAwQE
3x3gMA0GCSqGSIb3DQEBCwUAA4IBAQA3spxjU1DzgCLu+fvpCoje79VN7huync7n
n60QF5L8h2MO3dMkOIYPybd6oR/fKRZU/uYPR6kuyWU+oMQpw3B0o6ujnw6kqu6j
AdK8Y+kFV71KST6zrRMW+fElv9mHiDJerUebZmLlCU1RMKw72+i4s9CeD/fPFW0X
w423mmTMZc6Z9HHbtZV2ck+vvRFbUP0qa8iZKSxuM7BuxpwMMSvb7b9HyTSMlKRj
YAOZIQfNlpb9LpcJRUEbwYOfNKOvbmWAGFpCzF7brCP2y2noms6b+4dx0J//sXUH
Aqv6h8V/Vh6RDTE5RNtUAAcND0l8h9Ri0xmjKZFp5MbSeqCgk8S1
-----END CERTIFICATE-----
Generated at Sun Apr 13 02:07:29 2025 by rpki-client