Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/2D0DBAF2360611EEB15C8B7DC4F9AE02.roa
File: 2D0DBAF2360611EEB15C8B7DC4F9AE02.roa (raw, json)
Hash identifier: GLFGTp8J1jqCkjnIzKGrYwqo2NbaItpGCRAVygvk5XQ=
Subject key identifier: CF:AA:70:F3:F7:D9:37:2E:18:04:80:14:DA:20:BC:DC:6C:55:3C:56
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0CA7
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/2D0DBAF2360611EEB15C8B7DC4F9AE02.roa
Signing time: Tue 08 Aug 2023 16:11:05 +0000
ROA not before: Tue 08 Aug 2023 16:11:05 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 9387
IP address blocks: 43.254.12.0/22 maxlen: 24
103.11.60.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.214.0/23 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.229.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.233.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.248.0/22 maxlen: 24
113.203.253.0/24 maxlen: 24
113.203.254.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.151.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.164.0/22 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.173.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.178.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.185.0/24 maxlen: 24
180.178.187.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.229.0/24 maxlen: 24
223.29.230.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3239 (0xca7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Aug 8 16:11:05 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=64d26919-52e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6a:ea:ad:15:7e:44:0e:82:87:a8:1c:08:d2:
cf:3b:d2:37:12:dd:b6:e0:f4:d8:74:5f:15:a2:c4:
d0:b9:d2:b6:1f:08:32:1c:09:b4:f6:b3:0e:93:ed:
f4:0f:77:ca:f5:45:5c:dd:9c:ef:ff:5f:be:d9:9f:
af:06:30:76:84:ae:67:30:db:9d:a3:f3:aa:8f:d1:
41:5f:c1:ec:1c:e6:18:e1:0d:1d:1e:d7:2e:49:9c:
0f:8d:db:93:52:72:ea:45:14:07:55:92:30:c4:8f:
03:96:80:b0:65:03:64:05:cf:e0:f3:42:a4:09:07:
c3:22:b2:79:0e:da:14:f6:d4:b0:63:16:f3:3a:db:
51:13:a8:00:8c:ab:7a:0a:53:13:94:05:a8:0a:e0:
7b:aa:45:04:d8:8d:77:e4:91:9c:2c:74:53:31:6e:
d2:ef:71:e4:65:e3:30:a7:f9:0b:f2:17:8a:73:38:
b4:92:94:d4:c9:81:02:9a:ab:75:69:54:4a:d0:bb:
34:1f:c0:5c:86:b2:ab:5a:db:da:15:7d:8b:61:4d:
eb:f3:67:1b:32:83:77:95:41:57:8e:1f:c0:21:38:
fc:51:33:3a:65:80:07:52:a0:c5:e7:e8:25:ae:11:
23:58:02:ec:57:32:c2:19:09:12:92:ed:b9:4f:ba:
b0:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:AA:70:F3:F7:D9:37:2E:18:04:80:14:DA:20:BC:DC:6C:55:3C:56
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/2D0DBAF2360611EEB15C8B7DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.254.12.0/22
103.11.60.0/24
113.203.212.0-113.203.216.255
113.203.218.0-113.203.220.255
113.203.222.0/24
113.203.225.0/24
113.203.228.0/22
113.203.233.0-113.203.240.255
113.203.243.0/24
113.203.248.0/22
113.203.253.0-113.203.254.255
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.148.0/23
180.178.151.0/24
180.178.162.0/24
180.178.164.0/22
180.178.172.0-180.178.176.255
180.178.178.0/24
180.178.180.0/22
180.178.185.0/24
180.178.187.0-180.178.191.255
223.29.226.0-223.29.231.255
223.29.235.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
77:1c:81:dd:87:d5:f2:11:a3:b4:c2:fe:15:2a:c1:71:51:cd:
bc:93:a5:92:94:c4:60:f8:c8:9e:24:c6:50:74:2d:95:e7:f2:
47:22:d3:89:46:31:f0:6a:33:e7:19:f0:03:06:7b:26:19:a4:
16:ce:87:93:8f:2b:77:62:b1:e6:7c:f6:d2:38:62:9b:17:dd:
88:25:a0:0a:15:4b:b0:0e:58:93:f3:7b:a3:a8:49:f7:30:70:
cc:32:bf:89:20:83:8f:63:8d:25:2f:2b:ef:c2:07:14:45:36:
02:86:dc:41:d9:f4:eb:d5:3f:27:a2:95:7a:41:96:47:ef:ab:
5f:d0:f6:69:c4:16:5f:f6:83:5f:f2:ba:37:90:fe:d5:7e:14:
91:f7:e2:29:91:67:7d:65:5f:98:10:20:59:05:be:9d:88:a5:
12:7a:d6:68:a4:1d:bb:ca:02:0c:10:cc:67:13:c6:9b:37:1f:
a1:20:39:9f:7c:f5:bc:42:1a:f8:32:d1:9b:80:bc:19:9a:6a:
fa:14:2a:d9:23:ef:0d:aa:7a:4d:68:f3:02:94:a9:08:27:55:
58:9b:b3:4f:a5:d0:80:39:d1:69:64:28:50:33:fe:3a:46:07:
67:16:78:51:c6:25:c5:89:9d:6d:64:c3:f5:b9:c8:eb:d0:b3:
4d:2e:83:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 9 16:36:05 2023 by rpki-client on console-ams.rpki-client.org