Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E7CD941CB85911EFBFC42B83C4F9AE02.roa
File: E7CD941CB85911EFBFC42B83C4F9AE02.roa (raw, json)
Hash identifier: dDmOTRLIFhTR3weO9liyQVMU7i055g8UCOr7W07HO/k=
Subject key identifier: F7:58:9D:9A:B3:A7:5F:7A:31:96:9B:D1:74:A9:2C:F8:89:52:6F:2C
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1F49
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E7CD941CB85911EFBFC42B83C4F9AE02.roa
Signing time: Thu 12 Dec 2024 07:22:55 +0000
ROA not before: Thu 12 Dec 2024 07:22:55 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 205220
IP address blocks: 113.203.218.0/24 maxlen: 24
113.203.226.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.252.0/22 maxlen: 22
115.167.117.0/24 maxlen: 24
115.167.118.0/24 maxlen: 24
115.167.119.0/24 maxlen: 24
115.167.122.0/24 maxlen: 24
115.167.123.0/24 maxlen: 24
175.110.90.0/24 maxlen: 24
175.110.107.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.110.0/24 maxlen: 24
180.178.180.0/22 maxlen: 22
180.178.184.0/22 maxlen: 22
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 13 Dec 2024 07:51:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8009 (0x1f49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 12 07:22:55 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=675a8f4f-b316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:18:42:3b:80:29:ff:79:91:33:a0:2d:8b:b1:
d3:22:07:69:17:44:87:c4:4a:52:61:e6:ae:0a:66:
e1:df:e3:21:3e:fe:a6:0c:86:bd:cf:31:c1:65:9b:
2b:5a:a7:2d:47:53:73:76:b2:3e:20:a8:98:b8:68:
7f:e6:8e:5f:cc:56:1f:28:e6:b3:cb:5b:f6:c6:79:
a2:53:fd:cb:44:fa:1e:9d:3a:4a:36:39:0e:d0:21:
7c:70:39:16:3b:80:e8:a1:a2:bf:a4:b5:05:41:74:
88:67:16:6d:35:79:91:40:a7:a9:93:01:09:37:4b:
5b:dd:d6:ec:7a:3a:c2:87:e6:4d:7e:f1:e6:35:31:
6c:83:a6:67:b2:9a:36:b8:61:0c:67:d9:d4:02:21:
bf:9a:c5:a6:64:22:30:04:b4:aa:f8:13:de:3b:ed:
cd:99:96:d3:2f:e3:a9:07:30:27:bb:d8:d5:a6:9f:
c1:e9:d3:cc:04:06:4b:be:6b:41:4e:3d:e2:c1:06:
32:c8:02:12:d9:4c:94:41:c7:ad:9c:6e:be:b8:44:
fa:ae:41:dd:35:3f:c1:94:78:1d:78:e5:73:08:d0:
49:59:09:1c:f5:8e:8f:87:67:40:1d:dd:01:72:0c:
ce:e1:6b:a9:d7:b8:eb:37:69:08:0a:fd:26:9f:ab:
fc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:58:9D:9A:B3:A7:5F:7A:31:96:9B:D1:74:A9:2C:F8:89:52:6F:2C
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E7CD941CB85911EFBFC42B83C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.218.0/24
113.203.226.0/24
113.203.228.0/24
113.203.244.0/24
113.203.252.0/22
115.167.117.0-115.167.119.255
115.167.122.0/23
175.110.90.0/24
175.110.107.0/24
175.110.109.0-175.110.110.255
180.178.180.0-180.178.187.255
202.92.18.0/24
202.92.20.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:5b:24:00:95:0a:92:97:25:c3:73:f6:1b:89:66:fc:5e:18:
e6:20:f7:5c:5e:fa:29:85:31:89:36:74:8d:2c:07:2d:45:41:
cd:54:dc:8e:f6:4f:cf:77:46:7e:71:8b:7b:a2:a1:ec:d4:b2:
b9:84:c1:74:e6:ee:ae:4a:fe:ba:4d:92:7e:2e:48:5f:ab:3f:
f2:9f:df:13:d5:29:9e:ef:20:da:34:81:c1:23:c8:d9:12:68:
f1:94:c0:f1:82:8c:5d:50:eb:69:df:f9:23:75:1d:06:b5:94:
7a:a0:2f:17:69:e4:b0:84:36:ea:13:83:0b:28:27:4b:ed:ae:
8d:c5:aa:ab:63:33:57:a8:af:06:b1:31:08:6a:67:7a:83:d0:
53:9c:bb:20:8c:b6:83:78:d1:2d:9e:15:b4:5e:bf:89:7c:ad:
08:8d:d2:cd:1e:8b:ff:a8:fb:26:52:d5:a5:8b:5b:c1:25:85:
aa:9e:00:34:2c:b6:a4:7d:3a:b5:f7:eb:0a:04:84:d6:fc:7a:
e0:e2:e7:d1:26:ca:78:1c:31:f8:7e:63:76:9f:d6:24:c7:be:
79:db:dd:7f:8d:6f:32:21:98:23:b3:fa:1d:09:9e:8b:e8:04:
a6:94:61:1a:52:70:de:49:95:08:35:3e:5f:f4:6f:9f:12:e5:
c1:87:5c:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:48:23 2025 by rpki-client