Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E813877C12A211EF9616D41EC4F9AE02.roa
File: E813877C12A211EF9616D41EC4F9AE02.roa (raw, json)
Hash identifier: YJb7ALOHViF4SUWlT7wuKMtkq6z3jwW1VzO8rbcPaDY=
Subject key identifier: FB:31:D0:7B:EF:EB:C0:CF:F3:71:2F:FF:45:8D:92:2F:60:ED:26:94
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 11DC
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E813877C12A211EF9616D41EC4F9AE02.roa
Signing time: Wed 15 May 2024 10:07:16 +0000
ROA not before: Wed 15 May 2024 10:07:16 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 138241
IP address blocks: 103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.223.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.226.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.229.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.233.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
113.203.249.0/24 maxlen: 24
113.203.250.0/24 maxlen: 24
113.203.251.0/24 maxlen: 24
113.203.252.0/22 maxlen: 24
115.167.2.0/24 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.152.0/21 maxlen: 21
180.178.160.0/24 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.165.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.167.0/24 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.177.0/24 maxlen: 24
180.178.178.0/24 maxlen: 24
180.178.179.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/24 maxlen: 24
180.178.185.0/24 maxlen: 24
180.178.186.0/24 maxlen: 24
180.178.187.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 May 2024 09:36:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4572 (0x11dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: May 15 10:07:16 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=66448954-d68c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:09:3f:14:10:1a:58:db:36:2d:f5:00:ed:fc:
14:1a:25:8e:40:41:c9:28:2e:84:68:c8:26:9e:ef:
fa:ae:b3:b5:7b:cc:8e:85:a1:64:fd:21:79:0c:55:
d1:95:d2:58:bc:bf:7e:f4:43:d4:96:90:1d:40:a7:
68:36:c8:2c:53:32:a9:f7:e6:db:9e:aa:5b:7f:31:
6b:08:15:71:18:31:69:d1:d5:83:10:57:07:c7:ce:
65:b3:23:dd:9d:3d:ec:3b:25:4e:70:a4:03:de:66:
e0:c6:5b:9b:11:ea:b4:99:93:2a:22:55:30:a6:a2:
6f:d4:d8:18:a6:3b:85:13:8b:f6:b3:df:60:31:0b:
6a:d2:83:56:f9:34:f2:b0:cd:0c:6f:9b:5a:52:52:
31:69:6a:df:f1:c1:11:11:fb:c9:66:48:f0:e4:54:
f9:35:09:c1:aa:c5:9f:38:ab:d4:aa:ad:fc:f4:02:
38:32:7a:ad:50:d8:52:5f:2b:ed:fc:9f:f1:f0:3e:
49:32:6f:53:ae:20:08:cf:bc:96:61:82:ff:e8:4c:
c0:fc:1f:77:04:62:b9:03:4f:7d:22:fe:95:53:2a:
35:a7:9b:1c:71:ee:9c:8f:7b:06:2b:35:61:4a:c1:
54:ff:cd:3e:e5:ea:68:a9:f2:bb:ba:f6:e9:02:b8:
a8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:31:D0:7B:EF:EB:C0:CF:F3:71:2F:FF:45:8D:92:2F:60:ED:26:94
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E813877C12A211EF9616D41EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
113.203.208.0/24
113.203.210.0/24
113.203.212.0/23
113.203.216.0-113.203.218.255
113.203.220.0/24
113.203.223.0-113.203.226.255
113.203.228.0/22
113.203.233.0/24
113.203.242.0/24
113.203.244.0/23
113.203.248.0/21
115.167.2.0/24
115.167.49.0/24
115.167.78.0/24
180.178.142.0/24
180.178.144.0/24
180.178.146.0/24
180.178.148.0-180.178.150.255
180.178.152.0-180.178.160.255
180.178.163.0/24
180.178.165.0-180.178.171.255
180.178.176.0-180.178.187.255
180.178.189.0/24
180.178.191.0/24
202.92.18.0/24
202.92.20.0/24
223.29.227.0/24
223.29.231.0/24
223.29.235.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
18:94:cd:28:63:6b:c9:a6:23:29:68:0e:6a:ff:fe:5e:e9:89:
bd:d2:eb:4d:6a:03:4f:58:e0:d1:f2:24:6d:4c:7d:f8:c3:d3:
b9:83:6e:4f:97:22:92:9b:06:c3:5e:79:ac:2d:27:b0:0f:b6:
aa:37:27:9c:ee:bc:c8:4e:d5:12:76:09:ce:21:48:60:43:39:
bf:1f:b4:6a:87:1d:62:cd:a7:cb:4d:fb:84:c9:f4:b9:93:60:
be:ba:19:47:48:74:18:b5:2b:53:51:de:c2:91:1d:c5:e5:70:
44:b7:1d:2c:97:1d:8a:74:12:3e:d0:bb:4b:b6:84:4b:c9:e1:
ca:1c:58:cb:a4:93:07:4f:ee:58:05:22:5f:c6:e8:c4:ae:13:
fe:9a:28:c7:d6:72:37:91:5e:6d:77:e3:af:cb:db:6a:a9:36:
ac:7e:8e:78:8b:5d:9e:eb:34:a7:64:8e:ee:f4:a7:8c:ca:c0:
79:36:c9:09:37:f6:6f:9e:cb:d5:32:17:cb:7b:6d:df:18:73:
f4:44:b3:92:54:ee:eb:19:8d:b9:e7:91:7c:fa:5c:a5:1d:02:
f3:88:54:fe:4b:33:20:03:c3:88:f2:ec:80:63:88:75:d5:cf:
10:cc:4a:6d:89:11:ed:fc:ca:13:ca:b7:3b:87:c2:48:3b:26:
ab:2e:6d:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 13:27:28 2024 by rpki-client on console-fra.rpki-client.org