Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/23ACC2BABF6211EEB7ADAB6AC4F9AE02.roa
File: 23ACC2BABF6211EEB7ADAB6AC4F9AE02.roa (raw, json)
Hash identifier: J/GcOgyyft9yvWQ8OPudyJV6zS8pcevQlIOcZsVBCXk=
Subject key identifier: 01:53:37:18:49:FC:9E:E7:08:20:62:15:30:C6:51:D1:09:D1:43:5A
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0FF6
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/23ACC2BABF6211EEB7ADAB6AC4F9AE02.roa
Signing time: Thu 07 Mar 2024 10:16:14 +0000
ROA not before: Thu 07 Mar 2024 10:16:14 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 138241
IP address blocks: 103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.250.0/24 maxlen: 24
115.167.20.0/22 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.116.0/22 maxlen: 22
115.167.120.0/22 maxlen: 24
175.110.68.0/22 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
180.178.152.0/21 maxlen: 21
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 08:48:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4086 (0xff6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Mar 7 10:16:14 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65e993ed-7095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a0:b0:24:f8:80:41:a9:99:2d:ba:a4:1f:bb:
3b:49:89:eb:db:5e:cc:7b:cc:b8:0a:34:67:bd:c9:
31:19:5e:60:52:64:53:3a:9b:a2:f3:73:31:17:c6:
60:b7:df:eb:aa:0e:f0:37:0f:e1:41:39:da:de:dd:
a4:f7:21:6e:be:0e:ad:0e:37:12:36:05:b6:da:54:
54:f6:b0:13:c4:4c:b7:fd:78:8b:11:50:21:94:73:
28:15:58:df:97:c8:8e:e1:ea:c3:3b:6b:8d:82:ca:
62:19:3b:d9:bb:61:05:68:d7:f4:84:0d:5a:36:17:
3a:0b:69:e8:10:f2:5f:bb:7c:ad:bd:3b:f5:e5:40:
76:11:d8:90:ff:2c:95:02:16:38:86:f7:d6:2a:e8:
c9:84:f7:90:93:6f:3c:5a:6f:a4:77:53:71:97:6c:
6b:68:8f:67:e0:93:53:64:6c:67:bd:34:22:6e:dd:
dc:06:0b:9f:09:a7:4a:1c:cd:5e:a5:1b:b2:14:99:
e9:fc:a4:8d:75:8f:0e:ac:91:e3:a2:c1:e8:b3:e9:
53:1d:f9:2e:ea:62:d0:d8:fc:18:cc:bd:6d:75:5b:
69:6b:6d:95:dd:71:5e:20:b7:a5:d1:6d:b8:dd:35:
a2:dd:d9:d7:62:ad:dc:dc:cf:2a:6e:d5:77:3f:90:
a0:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:53:37:18:49:FC:9E:E7:08:20:62:15:30:C6:51:D1:09:D1:43:5A
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/23ACC2BABF6211EEB7ADAB6AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
113.203.208.0/24
113.203.216.0/24
113.203.231.0/24
113.203.250.0/24
115.167.20.0/22
115.167.49.0/24
115.167.78.0/24
115.167.116.0-115.167.123.255
175.110.68.0/22
175.110.80.0/22
175.110.88.0/22
175.110.105.0-175.110.106.255
175.110.109.0/24
175.110.111.0/24
180.178.152.0/21
202.92.18.0/24
202.92.20.0/24
223.29.227.0/24
223.29.235.0-223.29.236.255
223.29.238.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:61:88:b0:f0:ab:ca:8d:d5:cb:92:34:56:a0:64:ad:42:3c:
3a:b7:d7:24:cb:50:0f:5d:65:eb:7c:66:12:35:57:8e:65:bf:
d1:ed:5d:ca:31:0e:d0:05:9d:25:21:01:73:1c:e1:e3:b1:25:
6c:d2:89:54:ba:d7:4c:ff:77:b4:13:66:d3:ae:e9:17:50:c7:
48:03:de:72:07:ff:05:3c:07:29:94:2b:4d:ef:f9:b4:7f:3b:
f5:b5:1d:09:f3:c8:78:33:db:6f:81:0c:7b:85:f3:af:ef:e4:
8d:c7:a8:a1:03:c5:0d:e0:d4:9e:a2:11:22:fb:b2:4a:04:e1:
85:63:1e:1f:73:04:5b:5f:73:05:cb:04:d9:43:79:7d:a6:b6:
cd:35:2e:60:9c:7f:f7:b8:02:59:48:ff:24:01:65:36:59:ec:
eb:2b:f6:f8:ef:5c:0d:24:f2:19:df:07:65:8e:25:ea:82:3f:
d7:9e:67:84:b1:60:ce:4e:fa:3b:a2:da:aa:94:1c:f1:92:45:
d1:68:fd:3f:cf:f2:46:66:ce:85:10:81:18:92:9e:5f:72:31:
18:ce:7b:58:4b:69:55:91:99:36:74:53:c0:91:7a:13:27:0c:
96:a4:37:c9:7e:9c:b1:60:98:b5:5d:82:8c:0f:b5:2d:6e:aa:
c6:a4:d2:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 9 11:49:17 2024 by rpki-client on console-fra.rpki-client.org