Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/D09363D045B811EFBBDC096EC4F9AE02.roa
File: D09363D045B811EFBBDC096EC4F9AE02.roa (raw, json)
Hash identifier: RrA/7ER5ab/cXB0L0C4udg6k0UFOlXocvGeOdCwZBrU=
Subject key identifier: 94:1E:0D:79:A1:A6:D8:1C:B1:46:5A:B2:39:07:21:93:6E:B8:36:02
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1477
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/D09363D045B811EFBBDC096EC4F9AE02.roa
Signing time: Fri 19 Jul 2024 10:22:35 +0000
ROA not before: Fri 19 Jul 2024 10:22:35 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 6079
IP address blocks: 113.203.208.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.223.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.226.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.229.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.233.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
113.203.249.0/24 maxlen: 24
113.203.250.0/24 maxlen: 24
113.203.252.0/22 maxlen: 22
175.110.88.0/22 maxlen: 24
175.110.97.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
180.178.165.0/24 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.177.0/24 maxlen: 24
180.178.178.0/24 maxlen: 24
180.178.179.0/24 maxlen: 24
180.178.180.0/22 maxlen: 22
180.178.185.0/24 maxlen: 24
180.178.186.0/24 maxlen: 24
180.178.187.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Sep 2024 06:22:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5239 (0x1477)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jul 19 10:22:35 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=669a3e6a-e436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0b:07:29:e0:96:c7:0f:db:2d:0d:22:64:f7:
d1:c0:d6:b9:5e:06:e7:29:d9:52:72:f3:09:d7:b4:
5e:6a:3f:87:4e:83:e6:ea:e3:78:8c:38:23:31:55:
1d:0a:29:d2:2a:af:a3:eb:8e:d7:28:e2:fd:78:06:
80:d7:ca:e0:d1:a6:39:dd:f8:f8:a2:9f:ff:13:b1:
b6:e3:8f:f4:77:c4:80:a0:c7:1a:2c:75:61:94:8c:
79:3f:d4:07:ac:4b:49:f4:9c:eb:70:11:da:23:da:
27:08:10:b8:61:e4:39:8b:6c:4d:b8:2f:80:a6:18:
b1:46:3a:85:87:51:39:6b:8c:44:f9:66:75:21:b5:
77:f4:5d:7d:d9:2e:2a:e0:85:3c:eb:5d:44:3e:73:
de:e5:f7:79:1c:ed:81:6c:e9:ff:21:9d:ee:23:76:
cb:53:c0:8b:fc:29:fd:ab:c3:ae:e4:42:7e:2f:ac:
58:7d:bf:ec:71:be:65:86:f2:95:d7:cf:ce:bc:79:
a0:70:5b:2d:9f:d3:35:2a:a8:b1:2a:3e:7d:07:8e:
47:ab:d2:cc:f8:3a:67:ee:ed:c6:6e:a9:3b:bc:13:
b6:b4:76:eb:aa:77:53:84:31:59:4c:b3:76:a3:ed:
8c:34:12:f3:25:f1:93:20:cc:5d:13:4b:35:8b:e4:
a1:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:1E:0D:79:A1:A6:D8:1C:B1:46:5A:B2:39:07:21:93:6E:B8:36:02
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/D09363D045B811EFBBDC096EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.208.0/24
113.203.210.0/24
113.203.212.0/23
113.203.216.0-113.203.218.255
113.203.220.0/24
113.203.223.0-113.203.226.255
113.203.228.0/22
113.203.233.0/24
113.203.242.0/24
113.203.244.0/23
113.203.248.0-113.203.250.255
113.203.252.0/22
175.110.88.0/22
175.110.97.0/24
175.110.104.0/23
180.178.165.0/24
180.178.168.0/22
180.178.176.0/21
180.178.185.0-180.178.187.255
180.178.189.0/24
180.178.191.0/24
223.29.231.0/24
223.29.235.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
3e:70:c5:e4:e3:65:0b:29:42:8a:32:c3:48:9a:c5:ae:c6:8d:
9f:0b:b5:27:7c:1e:e7:8c:50:98:77:67:30:a9:92:a4:72:3e:
2b:03:05:b9:cf:51:1e:44:47:67:c6:97:31:8a:4d:72:fd:93:
d4:10:80:d4:23:01:19:80:e1:63:d1:84:56:d4:13:34:f5:06:
8f:13:57:9e:9d:f4:21:ed:e8:dc:a1:4e:d2:a0:8e:fd:d9:25:
ce:57:16:46:75:11:52:1d:f4:b2:81:43:42:fd:d9:ec:c1:4b:
f5:04:f0:b9:2e:45:e4:f5:b5:7e:85:3d:77:65:ab:5a:ec:e2:
39:0c:7a:9a:02:6a:e4:d1:f4:00:93:f6:a3:83:2f:ec:03:fd:
af:c7:fe:e0:6e:92:74:1d:1f:3a:35:fc:5e:e0:cf:e9:6b:60:
42:b3:68:c9:57:35:a0:3e:e3:11:b5:e0:3a:dc:14:4e:ea:9c:
6a:1b:30:d9:4c:2d:b7:39:fa:b4:f4:5e:8b:8c:3f:ea:7a:6f:
fc:e9:b6:02:1c:48:7e:a1:94:68:3c:3e:29:fa:76:14:dd:98:
d3:ac:e1:77:ff:52:34:d1:d8:96:1a:71:22:c2:78:2b:e1:b4:
3f:d1:1b:ad:f6:a4:47:cb:08:5a:1a:cd:c7:99:ba:a1:46:c7:
98:55:bc:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:48:25 2025 by rpki-client