Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/D25075B0FA6B11EF8572141FC4F9AE02.roa
File: D25075B0FA6B11EF8572141FC4F9AE02.roa (raw, json)
Hash identifier: 8x6UkwllL7HlKlXj4onpFvNeHIbV08BEF/EX/fbgNgo=
Subject key identifier: 49:1E:A4:F7:B4:34:8F:AE:EB:CF:5E:53:E5:D4:56:E4:3C:F7:26:85
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 248B
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/D25075B0FA6B11EF8572141FC4F9AE02.roa
Signing time: Tue 11 Mar 2025 06:29:09 +0000
ROA not before: Tue 11 Mar 2025 06:29:09 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 43.226.224.0/24 maxlen: 24
43.226.225.0/24 maxlen: 24
43.226.226.0/24 maxlen: 24
43.226.227.0/24 maxlen: 24
103.11.63.0/24 maxlen: 24
103.151.26.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.209.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.211.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.214.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.223.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.226.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.229.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.233.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.246.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
113.203.252.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
113.203.254.0/24 maxlen: 24
113.203.255.0/24 maxlen: 24
115.167.6.0/24 maxlen: 24
115.167.15.0/24 maxlen: 24
115.167.16.0/22 maxlen: 24
115.167.20.0/22 maxlen: 22
115.167.28.0/24 maxlen: 24
115.167.29.0/24 maxlen: 24
115.167.30.0/24 maxlen: 24
115.167.31.0/24 maxlen: 24
115.167.48.0/24 maxlen: 24
115.167.56.0/22 maxlen: 24
115.167.60.0/23 maxlen: 24
115.167.62.0/23 maxlen: 24
115.167.64.0/24 maxlen: 24
115.167.73.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.101.0/24 maxlen: 24
115.167.102.0/24 maxlen: 24
115.167.103.0/24 maxlen: 24
115.167.117.0/24 maxlen: 24
115.167.118.0/24 maxlen: 24
115.167.119.0/24 maxlen: 24
115.167.122.0/24 maxlen: 24
115.167.123.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.64.0/22 maxlen: 24
175.110.80.0/24 maxlen: 24
175.110.81.0/24 maxlen: 24
175.110.82.0/24 maxlen: 24
175.110.83.0/24 maxlen: 24
175.110.89.0/24 maxlen: 24
175.110.90.0/24 maxlen: 24
175.110.91.0/24 maxlen: 24
175.110.97.0/24 maxlen: 24
175.110.98.0/24 maxlen: 24
175.110.101.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
175.110.107.0/24 maxlen: 24
175.110.108.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.110.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.164.0/24 maxlen: 24
180.178.165.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.167.0/24 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.176.0/22 maxlen: 22
180.178.180.0/24 maxlen: 24
180.178.181.0/24 maxlen: 24
180.178.182.0/24 maxlen: 24
180.178.183.0/24 maxlen: 24
180.178.184.0/22 maxlen: 22
180.178.185.0/24 maxlen: 24
180.178.186.0/24 maxlen: 24
180.178.187.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.229.0/24 maxlen: 24
223.29.230.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Mar 2025 08:38:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9355 (0x248b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Mar 11 06:29:09 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67cfd835-5344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:77:50:02:a8:64:d3:d5:1d:39:46:92:1f:97:
aa:a8:6a:9c:19:e0:eb:4f:2e:1a:10:2b:a7:8c:5a:
90:73:0b:d0:8a:80:5e:75:ff:51:fa:e1:89:8d:59:
53:86:76:d2:90:b5:71:dc:c7:4d:a6:b1:ad:8a:f2:
1b:87:48:13:26:15:92:86:1d:f2:bb:15:5a:61:35:
75:16:cd:af:c5:ef:4c:c3:a8:9e:f6:d0:91:5b:01:
37:b3:31:84:64:4d:47:db:07:d6:4c:6b:93:19:97:
d2:a6:a7:6b:a8:bf:4b:68:21:77:9b:c2:cb:88:20:
00:7c:be:39:ac:09:0c:93:6d:b0:4b:f5:85:59:fc:
69:05:38:14:dd:21:eb:da:7f:c2:4c:35:79:55:98:
dd:78:54:98:b4:71:68:b2:88:22:33:99:89:40:08:
75:80:77:e9:b0:28:40:62:47:78:3e:eb:08:f0:28:
51:f3:39:eb:f2:5e:12:27:f2:6e:15:7c:aa:31:cd:
59:ac:72:d7:4b:40:3e:0e:af:ed:44:39:be:a0:1e:
86:ce:7d:ec:71:d3:2f:36:32:0f:80:48:d4:b7:09:
88:c3:d3:c9:c4:83:27:66:a5:5b:3d:a8:35:05:13:
8d:f3:dc:13:32:23:61:cd:9a:b1:1d:92:f6:31:09:
16:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:1E:A4:F7:B4:34:8F:AE:EB:CF:5E:53:E5:D4:56:E4:3C:F7:26:85
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/D25075B0FA6B11EF8572141FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.224.0/22
103.11.63.0/24
103.151.26.0/24
113.203.208.0-113.203.220.255
113.203.222.0-113.203.227.255
113.203.229.0-113.203.231.255
113.203.233.0/24
113.203.241.0-113.203.246.255
113.203.248.0/24
113.203.252.0/22
115.167.6.0/24
115.167.15.0-115.167.23.255
115.167.28.0/22
115.167.48.0/24
115.167.56.0-115.167.64.255
115.167.73.0/24
115.167.78.0/24
115.167.101.0-115.167.103.255
115.167.117.0-115.167.119.255
115.167.122.0-115.167.125.255
175.110.64.0/22
175.110.80.0/22
175.110.89.0-175.110.91.255
175.110.97.0-175.110.98.255
175.110.101.0/24
175.110.104.0/21
180.178.142.0/24
180.178.144.0/24
180.178.146.0-180.178.150.255
180.178.160.0-180.178.171.255
180.178.176.0/20
202.92.18.0/24
202.92.20.0/24
202.92.26.0/24
223.29.225.0-223.29.226.255
223.29.228.0/22
223.29.237.0/24
223.29.239.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:69:7b:7f:aa:54:73:f2:6b:39:62:30:52:be:8d:88:d2:cf:
ba:4d:2b:eb:8f:ef:55:82:df:21:2c:e7:f6:b1:e0:30:bf:f3:
c4:f2:55:73:ab:60:cc:5d:2d:c0:a9:52:82:2c:53:a1:9f:e8:
ef:ff:40:84:00:0d:e5:27:f0:13:df:ba:1d:cd:eb:fb:f5:0a:
de:ff:0a:0a:f2:ae:02:15:7d:22:ba:5f:0a:e8:93:c3:5d:3b:
ff:2a:a1:27:10:e1:f9:9a:d2:96:b5:11:5f:f5:1f:28:42:de:
99:81:a4:ff:90:bd:58:9a:4b:59:d1:7d:32:ab:ee:9c:cd:e6:
89:88:a5:3f:cb:d0:59:06:5f:51:b2:28:6c:0e:11:69:74:39:
3a:85:8c:17:06:42:3a:19:8c:61:84:11:f0:0a:24:e4:e4:ff:
64:44:4b:34:98:df:4b:8b:01:9d:68:8f:07:96:ad:69:31:65:
b7:c7:46:e8:31:db:96:3b:6b:fa:37:b5:59:80:71:82:77:40:
ad:c0:e7:ae:ec:d4:e0:6c:0d:d5:3f:bc:ba:f2:a4:ea:8f:a2:
26:3b:42:9c:d5:ce:1d:22:85:0c:a3:c9:95:e4:41:a8:a3:c1:
47:fa:46:e5:60:70:ba:df:af:dc:c4:dd:d8:2b:8a:76:03:4d:
bc:d6:20:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:00:20 2025 by rpki-client