Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/EB87E5E8A01811EFB8803E09C4F9AE02.roa
File: EB87E5E8A01811EFB8803E09C4F9AE02.roa (raw, json)
Hash identifier: 5EIIhw2uFltvSHN9gNEG0VNdXRuzHMBwgWX0LI/Md6c=
Subject key identifier: 3D:65:37:09:96:7B:BE:8F:67:DC:38:3A:33:1E:4F:9A:BF:BC:02:57
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1C2A
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/EB87E5E8A01811EFB8803E09C4F9AE02.roa
Signing time: Tue 12 Nov 2024 04:44:02 +0000
ROA not before: Tue 12 Nov 2024 04:44:02 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 43.226.224.0/22 maxlen: 24
103.11.63.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.233.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.246.0/24 maxlen: 24
115.167.6.0/24 maxlen: 24
115.167.16.0/22 maxlen: 22
115.167.29.0/24 maxlen: 24
115.167.30.0/24 maxlen: 24
115.167.31.0/24 maxlen: 24
115.167.48.0/24 maxlen: 24
115.167.64.0/24 maxlen: 24
115.167.65.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
115.167.67.0/24 maxlen: 24
115.167.73.0/24 maxlen: 24
115.167.102.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.64.0/22 maxlen: 22
175.110.89.0/24 maxlen: 24
175.110.91.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.151.0/24 maxlen: 24
180.178.152.0/22 maxlen: 22
180.178.161.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.229.0/24 maxlen: 24
223.29.230.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Nov 2024 07:47:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7210 (0x1c2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Nov 12 04:44:02 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6732dd12-0807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:04:3a:09:2e:5c:53:dc:84:96:19:ce:ec:4c:
9f:bc:f7:88:e6:d8:66:0f:46:f4:42:ab:7a:ff:bb:
79:9e:40:ea:03:4d:e9:fe:cb:08:fe:1e:d7:42:c1:
ec:e6:f7:8e:bf:7d:eb:ba:8d:9f:8d:95:b1:a2:ed:
1c:44:3a:42:43:55:f8:3f:af:1e:75:39:79:8e:9c:
00:fc:94:01:c4:f3:a4:f6:a4:4b:1b:49:76:01:d1:
9a:2f:73:dc:53:6b:f3:e0:7a:ae:c7:5c:07:64:c7:
6c:f7:0e:30:5f:9c:8a:88:90:5c:09:55:d8:c1:1b:
ea:36:71:82:40:b9:52:0d:98:7f:ff:14:38:52:08:
f6:82:8f:93:f0:6c:50:ed:d4:81:2c:12:14:7c:01:
be:31:0f:b4:15:e0:91:28:0e:83:3c:1d:e3:3d:ba:
cb:84:54:1a:bc:97:61:03:13:c4:3b:5d:1c:8b:67:
62:79:13:38:95:74:66:2b:5b:cd:27:40:36:a6:97:
f9:f0:00:2f:8f:50:90:a4:5f:8a:b9:a2:cf:59:30:
65:42:45:5a:e4:a0:b9:ec:e2:ab:2a:5d:16:fb:c6:
36:b0:5a:2f:43:8b:a8:71:6b:b6:c4:05:48:ba:9c:
8c:3e:20:6f:57:55:37:85:be:3f:eb:4a:3c:24:a8:
21:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:65:37:09:96:7B:BE:8F:67:DC:38:3A:33:1E:4F:9A:BF:BC:02:57
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/EB87E5E8A01811EFB8803E09C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.224.0/22
103.11.63.0/24
113.203.208.0/24
113.203.212.0/24
113.203.231.0/24
113.203.233.0/24
113.203.241.0-113.203.242.255
113.203.245.0-113.203.246.255
115.167.6.0/24
115.167.16.0/22
115.167.29.0-115.167.31.255
115.167.48.0/24
115.167.64.0/22
115.167.73.0/24
115.167.102.0/24
115.167.124.0/23
175.110.64.0/22
175.110.89.0/24
175.110.91.0/24
180.178.142.0/24
180.178.146.0/24
180.178.151.0-180.178.155.255
180.178.161.0-180.178.162.255
180.178.188.0/24
202.92.26.0/24
223.29.225.0/24
223.29.227.0-223.29.230.255
223.29.239.0/24
Signature Algorithm: sha256WithRSAEncryption
85:ae:65:39:34:26:9f:f2:7b:e3:04:09:a9:2f:58:0f:1f:a9:
a8:4c:36:aa:68:e7:9b:cd:d2:19:4a:1c:aa:3a:27:22:16:93:
97:ee:7e:af:0f:c2:d7:67:e7:ba:e2:d6:9c:48:b9:22:a7:5d:
fc:65:f9:57:f4:ee:35:ab:e4:df:d9:b8:52:0d:2c:cf:8c:bd:
27:5b:06:e4:bf:28:65:a8:57:3d:4a:e6:38:02:79:94:46:e1:
f8:41:9e:1d:99:1c:e2:55:50:72:3c:43:b2:0e:f0:72:d9:49:
9f:f2:c1:c0:60:a2:0e:cd:d1:10:31:23:36:08:6f:68:5a:95:
e5:66:a0:b6:3c:48:6a:56:5f:07:e7:5f:e8:df:73:18:f5:0c:
ee:c6:b3:4d:9d:f8:df:7f:bd:3e:32:af:3a:ec:68:22:61:b1:
cb:de:bc:97:97:9a:71:ec:9e:9d:91:3d:65:61:64:c5:23:2c:
54:b6:ea:60:ea:59:1a:a8:e1:e5:89:71:d7:ab:62:70:da:d4:
46:02:41:bc:2a:0c:03:3c:cc:f2:9b:71:84:cc:b9:6e:19:75:
94:0f:d5:a0:72:f1:e4:91:81:b7:15:c7:fe:ef:bf:44:96:d2:
09:75:0d:78:0b:1b:af:11:59:6d:25:9d:b0:c6:ef:40:1b:26:
f8:48:2e:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 01:33:59 2025 by rpki-client