Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/397D61DC981411EE88FA3074C4F9AE02.roa
File: 397D61DC981411EE88FA3074C4F9AE02.roa (raw, json)
Hash identifier: Mq0sk5RAfwe3l8kNwNVRSBDmCz2+hGaEyinOkkoBaTw=
Subject key identifier: 41:7B:CF:30:7C:97:96:F9:9D:1F:6D:EB:F6:E9:7B:5D:6B:5D:81:0A
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0E3C
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/397D61DC981411EE88FA3074C4F9AE02.roa
Signing time: Mon 11 Dec 2023 10:58:33 +0000
ROA not before: Mon 11 Dec 2023 10:58:33 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.178.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3644 (0xe3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 11 10:58:33 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6576eb58-88ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:7b:1b:48:7b:43:f2:dc:0c:47:cb:a4:ce:bd:
82:57:03:ee:ef:06:48:21:2c:c5:02:c2:77:4a:ca:
99:73:7a:0b:f4:9a:b6:eb:8e:ec:f9:e8:6b:ed:08:
7e:a0:e4:57:98:ab:69:2e:67:e6:03:c6:35:f5:48:
c5:8e:1a:d9:20:fd:f0:a6:c1:91:89:00:27:6c:3e:
cc:90:c0:bd:f2:0a:07:33:5f:69:12:a5:c5:0e:11:
17:44:70:51:91:50:1f:cf:a5:08:d8:78:12:be:57:
d1:44:ff:41:61:a1:24:e8:a5:6d:e4:4f:03:20:0f:
82:0f:8b:dc:20:d3:ba:dd:41:1c:71:38:96:12:af:
70:76:9b:0b:eb:d7:48:20:52:12:10:d3:fc:ff:f7:
93:11:24:ea:e0:f1:8f:0e:d1:83:a7:57:b0:07:f6:
aa:5e:8c:25:0e:41:4e:73:2e:c0:50:97:93:ee:44:
84:fd:81:bc:81:79:79:1e:5e:2f:0c:c5:cb:96:53:
78:8c:3a:3c:f3:58:86:74:a0:6a:3f:34:57:bc:d3:
c8:dd:14:df:7c:20:91:8d:c1:7b:2d:41:a5:ff:66:
27:07:6a:ae:e5:e7:82:41:ff:75:20:31:b0:07:08:
25:2c:7f:a0:6f:6c:19:9f:8b:9f:26:e7:67:3f:58:
c5:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:7B:CF:30:7C:97:96:F9:9D:1F:6D:EB:F6:E9:7B:5D:6B:5D:81:0A
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/397D61DC981411EE88FA3074C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
113.203.218.0/24
113.203.228.0/24
113.203.234.0-113.203.240.255
113.203.253.0/24
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.147.0/24
180.178.149.0/24
180.178.160.0/24
180.178.162.0/24
180.178.172.0/24
180.178.174.0-180.178.176.255
180.178.178.0/24
180.178.180.0-180.178.184.255
180.178.188.0/24
180.178.191.0/24
223.29.226.0-223.29.228.255
223.29.231.0/24
223.29.235.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
26:9a:07:c2:a0:91:7f:b7:b6:8a:39:20:eb:80:e5:51:8a:8b:
bf:96:ef:fa:4b:00:0a:ce:eb:96:5b:e4:96:2b:30:a1:b0:60:
3a:a4:a9:2a:51:c6:71:c7:6f:00:01:db:13:d2:7d:9d:11:60:
4e:39:ed:15:fb:1f:79:13:48:56:ad:54:91:f9:1b:89:7e:e7:
8a:ef:2e:d2:f2:af:d3:74:b8:c5:39:3e:ae:74:76:20:b0:b8:
a2:f2:f6:31:8f:2d:5e:f4:a7:a1:a4:87:a3:0c:11:16:52:58:
61:6c:4d:3d:7f:3b:88:e0:6b:a8:96:fd:b8:c5:59:ac:d5:06:
7e:cc:74:cb:6e:2b:c2:9a:6a:82:90:65:83:16:c8:f2:42:a2:
92:1c:67:4f:e4:a7:42:a1:fe:b0:e9:f6:e9:a3:f5:03:10:a2:
4c:61:22:f4:07:dd:8b:ae:5b:37:a8:49:96:ed:18:cf:ef:ce:
89:37:15:71:f8:f4:a8:9f:0d:93:4d:67:74:01:88:81:90:7a:
fd:bc:56:04:e4:7e:6b:6b:0f:6c:8c:23:14:32:7a:17:ff:07:
bc:3a:27:3d:9e:fd:5b:9b:b7:4f:1b:e8:40:d2:b1:99:7a:cb:
60:8c:67:a0:8f:6f:37:90:3e:70:49:96:11:95:5a:cf:8e:ff:
46:eb:e0:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 11 14:41:25 2023 by rpki-client on console-ams.rpki-client.org