Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/09D5D586B13711EE9357B916C4F9AE02.roa
File: 09D5D586B13711EE9357B916C4F9AE02.roa (raw, json)
Hash identifier: dA7dpsNFTcA1tMelX0weZmW3sHkR3tFqL9f1y73Thk8=
Subject key identifier: 3B:C4:76:A2:44:0D:E8:3C:CE:BD:75:E1:D2:2C:67:20:72:09:13:8B
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0F70
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/09D5D586B13711EE9357B916C4F9AE02.roa
Signing time: Fri 12 Jan 2024 10:40:44 +0000
ROA not before: Fri 12 Jan 2024 10:40:44 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 138241
IP address blocks: 113.203.208.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
113.203.250.0/24 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.116.0/22 maxlen: 24
115.167.120.0/22 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
180.178.152.0/21 maxlen: 21
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.229.0/24 maxlen: 24
223.29.230.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jan 2024 09:57:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3952 (0xf70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jan 12 10:40:44 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65a1172c-5d62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:09:3f:25:79:a5:3e:be:a4:d8:1c:f6:63:89:
45:b2:8e:0b:eb:bf:35:03:50:0c:79:cf:e4:d5:80:
d6:8d:e4:03:4e:7e:0f:cc:b5:38:43:41:1d:2e:e4:
7c:80:e9:af:52:c6:16:69:06:cd:e3:c0:25:53:dd:
a8:39:5f:6f:a4:eb:ca:a7:62:bb:59:9b:ac:a4:03:
9b:8a:4f:91:55:dd:74:e5:17:f3:84:6d:f5:62:51:
6b:09:4c:f5:1d:9f:c2:c4:db:47:ac:f3:7b:31:0f:
a3:92:81:90:bf:a4:2f:0c:99:75:f1:75:6d:bd:c5:
67:a6:52:4f:bf:c0:dd:9f:e8:0e:6c:f3:25:04:e6:
c7:d4:30:dc:a0:85:78:d9:89:26:20:48:ab:b5:4e:
91:9f:b5:4f:7f:6c:97:1f:c8:47:f6:a9:cd:cd:33:
b3:b7:b2:0a:d7:ab:cc:3e:82:da:7e:79:6f:74:0f:
51:33:37:4c:a5:99:32:59:59:c2:21:fe:12:e3:88:
ff:50:f2:d5:bf:9d:84:0d:a0:fa:98:96:37:6b:28:
2e:c4:98:43:2c:4f:7f:27:63:58:e7:7b:8d:1a:4c:
78:a6:4c:dd:19:bb:ef:3f:c9:67:a6:63:f1:4c:19:
44:a2:7c:f0:c6:9f:d7:f4:21:d3:ca:0c:fc:dc:09:
6f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C4:76:A2:44:0D:E8:3C:CE:BD:75:E1:D2:2C:67:20:72:09:13:8B
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/09D5D586B13711EE9357B916C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.208.0/24
113.203.216.0/24
113.203.231.0/24
113.203.248.0/24
113.203.250.0/24
115.167.49.0/24
115.167.78.0/24
115.167.116.0-115.167.123.255
175.110.80.0/22
175.110.88.0/22
175.110.105.0-175.110.106.255
175.110.111.0/24
180.178.152.0/21
202.92.18.0/24
202.92.20.0/24
223.29.227.0/24
223.29.229.0-223.29.230.255
223.29.235.0-223.29.236.255
223.29.238.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:9f:56:53:69:db:0d:ea:8d:e6:48:b2:cc:ff:87:0c:a0:f7:
d0:1f:20:a3:d8:59:6c:1f:2d:f9:8d:e7:c9:ed:6d:86:2a:be:
e0:e0:5d:98:fa:77:82:80:52:c3:58:b7:31:f0:76:0d:e0:4f:
79:55:33:32:17:de:ef:85:0d:2d:77:3a:78:42:07:ca:47:e8:
22:c6:32:0b:80:04:6e:11:ce:f5:3d:39:44:97:3d:61:fc:74:
1b:40:0f:c6:3d:83:81:91:ff:20:ab:b1:46:9d:47:58:f5:d8:
29:a3:93:65:46:75:eb:0e:6e:c2:c5:37:ff:72:70:1a:0b:ba:
07:0e:94:8c:3f:d8:5f:c0:99:ac:fd:ef:05:cc:e5:d9:3d:e0:
c8:d6:d5:90:c9:22:64:43:86:4c:05:39:5c:e0:5e:c9:ef:8d:
22:bf:b7:90:ac:bb:cb:d0:77:5e:79:be:56:b9:7f:99:9d:88:
7b:9f:e4:98:94:e9:57:53:5a:74:20:43:61:57:1c:c5:43:fb:
5d:84:1a:f7:37:d1:5f:b0:0a:73:32:74:6b:62:9c:f2:3b:88:
ab:31:db:3f:56:c4:ab:25:c2:ff:20:eb:59:d7:26:4b:c0:e4:
9b:4a:76:06:3e:74:66:d4:c4:f4:e2:fc:f3:23:41:b2:d6:d2:
cd:61:fd:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 14:19:03 2024 by rpki-client on console-fra.rpki-client.org