Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/349D4E18FE0B11EEBA9AED3AC4F9AE02.roa
File: 349D4E18FE0B11EEBA9AED3AC4F9AE02.roa (raw, json)
Hash identifier: +zqQDPPeGdGv9PwG1y5iD8/lVfSLp3mvUKvR6svt81I=
Subject key identifier: 71:96:D8:15:B0:71:F8:8A:3F:10:A4:B6:19:0B:E7:DF:17:2F:C8:76
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1075
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/349D4E18FE0B11EEBA9AED3AC4F9AE02.roa
Signing time: Fri 19 Apr 2024 05:11:38 +0000
ROA not before: Fri 19 Apr 2024 05:11:38 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 138241
IP address blocks: 103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.250.0/24 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
175.110.68.0/22 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.104.0/22 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
180.178.152.0/21 maxlen: 21
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 06:59:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4213 (0x1075)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Apr 19 05:11:38 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6621fd09-58b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:62:c3:d4:10:84:23:1c:7f:5b:f2:ce:bd:b8:
71:ab:74:66:2c:6d:65:e1:d1:68:f7:85:6c:7b:37:
6d:43:1c:47:e5:d6:5c:f1:6f:2f:a0:5d:ca:50:68:
3d:d7:43:64:48:14:6e:5e:ea:2a:9e:26:08:cd:83:
80:3c:94:b8:f4:ac:cf:fe:5e:2d:b9:bb:8b:a2:6a:
6d:58:0e:df:56:a6:e6:a6:d6:a4:4d:3d:68:ae:ab:
f4:8b:49:e4:82:2d:01:4a:fb:5f:1d:c6:d0:b6:ce:
68:4d:b0:8f:3c:6a:cf:e1:9b:2b:dd:81:9b:83:9b:
fd:28:f3:ad:89:f6:cc:5b:cb:73:b9:c3:2b:45:54:
09:37:1e:9c:6c:c3:cb:d4:13:d8:83:08:09:59:ff:
d4:86:73:fd:35:18:35:1e:b8:4f:32:9e:45:81:39:
07:71:4d:98:e0:99:24:90:83:31:c6:ea:db:6d:b3:
f7:95:80:58:9c:29:7a:f8:31:e7:cc:3e:ed:07:00:
23:9a:c3:cc:5a:9a:00:c9:a6:c2:c7:58:b7:32:13:
f8:11:13:6c:52:b7:a6:ac:b7:ea:e1:87:9e:76:ea:
83:4b:84:43:09:41:57:77:ef:b4:1c:f2:39:8a:30:
9c:a6:f1:83:bb:cd:75:55:ef:30:c7:55:46:8b:83:
cc:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:96:D8:15:B0:71:F8:8A:3F:10:A4:B6:19:0B:E7:DF:17:2F:C8:76
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/349D4E18FE0B11EEBA9AED3AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
113.203.208.0/24
113.203.216.0/24
113.203.231.0/24
113.203.250.0/24
115.167.49.0/24
115.167.78.0/24
175.110.68.0/22
175.110.80.0/22
175.110.88.0/22
175.110.104.0/22
175.110.109.0/24
175.110.111.0/24
180.178.152.0/21
202.92.18.0/24
202.92.20.0/24
223.29.227.0/24
223.29.235.0-223.29.236.255
223.29.238.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:20:6a:cc:75:aa:06:dd:4e:17:bd:7f:16:66:e8:29:e3:e8:
c8:c7:e2:95:ea:84:a6:33:62:ac:6d:7d:6c:56:1c:57:42:5f:
bd:e1:38:a5:5b:d7:cb:0c:c3:33:e1:67:e7:4c:3a:ba:f4:fb:
2e:9b:23:81:fc:62:3d:ac:99:d7:8b:3b:b3:5b:84:97:55:cf:
d4:b6:ae:cf:f5:3b:8f:5d:98:4e:71:f7:0a:4e:3b:03:90:c7:
d6:1b:04:e1:09:13:43:c1:cf:7a:11:65:68:60:1c:d1:96:1e:
c9:e6:9e:02:12:e9:bf:5a:de:ad:c6:66:9a:9e:75:9e:ec:d8:
2e:5b:07:e0:c3:b9:d8:ab:25:98:88:eb:ff:dd:c8:af:a1:fc:
c8:7a:7b:a5:ff:d8:1b:da:84:de:54:0f:74:79:19:51:10:b6:
66:11:d6:f6:40:bf:cc:fe:4e:a7:7c:84:15:13:b8:b2:c9:74:
0d:83:7b:6a:75:cf:b9:11:6f:f8:2b:1b:98:52:8e:68:4c:83:
15:b5:4f:ab:61:a1:28:c7:ca:e9:13:01:42:eb:5e:ed:1a:f7:
b8:d4:d1:35:b4:c0:3c:56:12:5b:57:75:89:5b:73:f5:a2:1a:
2c:45:ea:14:02:b6:42:0e:e9:ce:dd:70:ee:30:3e:6a:8e:aa:
3b:da:0f:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 09:42:50 2024 by rpki-client on console-ams.rpki-client.org