Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/1794132E27B511EE9DC18656C4F9AE02.roa
File: 1794132E27B511EE9DC18656C4F9AE02.roa (raw, json)
Hash identifier: X4pxWRXLlvi36Ahh2rmeO745ErbieYQNHb1mHJ5JcFY=
Subject key identifier: 72:D4:11:C8:B8:0B:C8:85:0D:D0:90:9E:0E:2F:AA:51:0F:AF:53:B4
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0CDF
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/1794132E27B511EE9DC18656C4F9AE02.roa
Signing time: Thu 31 Aug 2023 12:45:36 +0000
ROA not before: Thu 31 Aug 2023 12:45:36 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 113.203.208.0/24 maxlen: 24
113.203.211.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.233.0/24 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.184.0/24 maxlen: 24
180.178.186.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3295 (0xcdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Aug 31 12:45:36 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=64f08b70-7d20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:97:a2:a6:de:a2:d9:bf:66:9a:14:0c:ba:fc:
f2:6d:9d:74:f5:5b:a7:d4:ea:d1:17:10:1f:eb:7f:
fe:3a:de:4d:bf:6f:49:e1:f9:3b:a5:df:86:f2:6f:
c0:2a:bc:75:8a:f3:f0:92:f6:b8:e9:8f:df:b7:a0:
c5:a6:aa:97:1c:a1:29:02:72:40:4e:08:ee:fd:f7:
65:52:ec:5d:f6:50:e6:e1:7b:de:54:2b:e5:2f:78:
fd:c5:e9:0b:3d:c6:8c:f4:28:03:7b:5d:98:90:d1:
87:8c:d8:2c:4c:e8:a4:5b:19:b2:c5:dd:07:f9:db:
a0:36:37:7f:b0:c0:38:68:7d:a6:7a:51:55:53:0e:
b5:fa:af:96:6b:b5:c6:f0:bf:6c:c1:cc:e2:0e:33:
fe:58:d5:9e:c7:2f:eb:69:04:bc:5b:22:21:50:e3:
2c:2f:e9:ab:97:9c:71:d0:34:14:3f:f4:96:5b:11:
06:d3:89:8f:c2:33:4d:2d:01:59:30:5e:d3:79:36:
1e:4e:bb:38:2c:a9:d5:3e:45:57:7e:8b:1c:d6:9a:
aa:f6:cd:e8:c0:cc:4b:0a:8c:a3:cd:d2:11:53:54:
9f:13:87:d8:1b:2b:56:2a:25:43:d2:05:00:04:5d:
80:91:3c:c8:70:96:ed:cd:49:73:8b:03:d9:ab:f6:
d8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D4:11:C8:B8:0B:C8:85:0D:D0:90:9E:0E:2F:AA:51:0F:AF:53:B4
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/1794132E27B511EE9DC18656C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.208.0/24
113.203.211.0/24
113.203.219.0/24
113.203.233.0/24
180.178.168.0/24
180.178.171.0/24
180.178.184.0/24
180.178.186.0/24
Signature Algorithm: sha256WithRSAEncryption
24:1f:e5:79:b5:22:17:0d:fd:ca:59:38:72:45:51:ed:f2:cd:
42:b3:fe:44:bb:de:a8:e4:c7:1b:bc:53:1a:8d:4f:92:e8:51:
c1:d5:c1:e7:fb:71:cb:37:14:26:49:f6:a6:40:7d:f4:b1:26:
4a:00:09:48:1e:18:38:6d:07:b8:d7:d5:66:f6:ad:86:84:0c:
5f:5f:f6:41:80:53:f7:66:3d:12:e8:67:0f:4f:30:f0:40:70:
e7:7c:b7:38:36:e9:04:03:14:4a:fb:39:52:8e:4c:d5:02:ae:
37:1e:42:3d:35:3a:ca:73:2d:88:5a:04:bb:48:f4:f9:82:6d:
33:b3:b1:e1:20:31:eb:f1:13:04:2f:52:8e:ae:3d:5d:d7:96:
d8:6d:d8:b7:0b:91:d4:e9:7c:83:ad:d0:d2:0e:57:12:c0:b6:
ef:4d:33:90:3b:a8:2e:da:ce:86:99:22:d7:7d:9d:64:0c:a8:
3d:7e:44:5d:84:fc:af:02:bb:1f:6c:71:97:97:fc:40:0e:bf:
cd:0e:c3:cc:82:48:47:34:1d:fd:4b:46:33:53:0c:53:20:ac:
95:48:3b:5d:b9:65:d4:f7:d1:be:2f:05:c7:53:49:39:02:70:
f1:7a:01:23:2c:83:c2:14:dc:3c:27:8d:46:af:61:24:f6:07:
6f:85:a1:88
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Sep 20 20:19:21 2023 by rpki-client on console-fra.rpki-client.org