Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/34C70618A01911EE8994F783C4F9AE02.roa
File: 34C70618A01911EE8994F783C4F9AE02.roa (raw, json)
Hash identifier: UyRWDoZpzsdlSz51L38Cn6tPTjbkRLf6PjsLVIpXgYE=
Subject key identifier: 20:6D:06:A9:19:F4:44:A0:36:66:90:E7:8A:74:26:A0:D3:2D:70:1E
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0ED4
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/34C70618A01911EE8994F783C4F9AE02.roa
Signing time: Tue 02 Jan 2024 11:35:04 +0000
ROA not before: Tue 02 Jan 2024 11:35:04 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.178.0/24 maxlen: 24
180.178.179.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3796 (0xed4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jan 2 11:35:04 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6593f4e8-3039
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:39:63:c6:86:32:70:cc:d6:4d:32:ff:60:09:
12:80:af:58:53:cc:39:2e:77:85:8a:19:54:78:ff:
17:a3:98:ac:ab:17:a1:e6:c7:81:07:ad:7f:14:98:
61:0d:0e:93:2e:32:c7:1e:4e:a8:f3:03:90:dc:0e:
7e:00:b1:6b:aa:f1:ad:54:e9:e0:3e:9c:8c:b4:74:
96:53:c6:94:02:b2:31:30:f9:97:93:40:33:c9:5f:
91:56:a2:72:0d:c8:b5:10:a3:33:db:35:47:9c:56:
4d:ad:da:03:7b:ee:4a:57:ce:fe:c3:3c:12:22:03:
6c:4a:c1:3e:d1:54:34:0f:b0:d7:d4:b9:00:f5:c5:
57:65:33:02:f2:d8:f9:f3:00:43:cd:22:7f:6b:91:
e6:be:61:e1:15:03:2f:26:c9:68:bf:9b:13:08:72:
7f:17:d4:62:5f:36:11:47:22:29:fa:bb:fd:62:b4:
d9:c5:b5:af:49:80:ef:f5:2d:78:ac:88:4e:96:8c:
34:96:5f:bb:db:c0:13:12:58:89:ed:7b:79:10:f8:
1a:c3:e4:b3:46:8f:8c:ae:8e:61:94:cb:e5:e2:34:
3e:38:bf:50:96:40:2f:3b:be:21:24:25:62:37:8c:
71:ea:69:c5:1b:9c:c9:43:c2:39:6c:26:6a:9a:0b:
55:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:6D:06:A9:19:F4:44:A0:36:66:90:E7:8A:74:26:A0:D3:2D:70:1E
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/34C70618A01911EE8994F783C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
113.203.218.0/24
113.203.220.0/24
113.203.230.0/24
113.203.234.0-113.203.240.255
113.203.253.0/24
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.147.0/24
180.178.149.0/24
180.178.160.0/24
180.178.166.0/24
180.178.170.0/24
180.178.172.0/24
180.178.174.0-180.178.176.255
180.178.178.0-180.178.184.255
180.178.191.0/24
223.29.226.0-223.29.228.255
223.29.231.0/24
223.29.237.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
7e:fd:16:bc:24:e5:07:a1:8d:ec:12:be:9f:d4:87:55:3a:13:
67:96:1d:b6:d7:d4:dd:cf:fa:95:3e:4b:88:47:a9:1e:11:21:
f2:a2:31:f8:25:b6:fe:8d:1b:85:61:d1:97:d3:6e:51:3f:10:
00:b5:fa:fd:95:50:89:cf:77:f9:ba:ca:6c:96:3c:62:80:b2:
c1:eb:87:09:78:d0:82:b9:1e:d3:58:fc:53:b9:fb:cd:9f:12:
ac:f0:0b:3c:b5:98:ad:20:a9:1a:48:ba:cc:1d:26:56:47:cb:
ae:34:ea:3a:a3:fa:0c:72:23:25:5c:b7:7d:78:dc:36:8c:3c:
c0:24:f3:2d:d0:b3:a7:4a:9e:0f:42:da:1e:82:2a:44:be:fc:
fc:bb:c5:6a:2c:5a:8f:61:d4:80:d6:a5:25:ac:34:04:2b:b5:
59:2c:19:0e:3f:64:58:9f:17:e5:28:63:7d:cc:54:11:c1:6a:
98:b7:92:27:45:13:57:3c:e4:69:3f:ba:04:a3:a7:4b:d2:50:
ba:82:5e:55:35:bd:a5:fb:8a:07:f7:51:d1:1e:39:fa:ce:a8:
ff:3f:35:1a:3f:a6:95:4d:26:9a:60:82:3c:d6:50:94:bf:d7:
db:d5:85:79:8e:e8:52:86:76:ce:7b:32:7d:85:5d:ab:1e:d6:
9e:67:6a:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 3 16:21:21 2024 by rpki-client on console-fra.rpki-client.org