Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/416718A4022F11EF9CF1E732C4F9AE02.roa
File: 416718A4022F11EF9CF1E732C4F9AE02.roa (raw, json)
Hash identifier: tVzkEbPSqnqnml9POp6l1bPBmo9R8sBg9SRISTIi8Ak=
Subject key identifier: CE:2F:4E:4B:4D:C0:AF:68:46:4B:D5:E9:F6:F1:59:47:71:ED:9F:86
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 112E
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/416718A4022F11EF9CF1E732C4F9AE02.roa
Signing time: Fri 26 Apr 2024 16:38:51 +0000
ROA not before: Fri 26 Apr 2024 16:38:51 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 140900
IP address blocks: 113.203.209.0/24 maxlen: 24
113.203.246.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 May 2024 10:45:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4398 (0x112e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Apr 26 16:38:51 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=662bd89b-c2ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b1:7e:02:15:d6:5f:04:95:e7:25:0b:43:4a:
85:79:2f:b6:11:74:27:66:12:ee:4e:1f:57:23:6e:
18:30:21:4d:76:7e:2f:75:31:e1:00:b1:09:ef:79:
9c:72:2e:cc:04:37:f7:53:53:1e:7d:a5:5e:df:84:
f2:d3:20:4c:ae:83:61:86:ab:16:c4:44:1b:71:94:
f5:6d:de:dd:62:d9:ae:c4:f2:eb:9a:75:cb:e3:ca:
ac:cc:30:2e:b1:03:25:b8:70:1d:e1:e8:4f:30:c2:
dc:f1:ca:ad:81:f5:f5:d0:6f:2e:36:75:25:b5:11:
2e:15:21:94:df:dc:ae:59:e5:c8:90:76:05:72:82:
a2:df:37:64:d6:ee:59:43:c5:27:47:71:c8:ec:5d:
21:1e:db:04:38:f1:a4:ce:86:8a:7e:68:8a:61:f5:
c8:ef:e3:f7:05:8a:e5:f3:7b:1e:d6:d3:82:9d:45:
78:43:1a:4d:26:8f:b7:58:54:5f:bc:fe:fe:37:67:
e8:fa:4b:9a:db:c8:20:c6:0a:9c:16:90:4a:a5:2b:
f6:03:5b:ff:41:56:7d:76:9a:76:b6:d0:2b:fa:d0:
58:14:bb:11:03:4e:ce:37:08:80:10:64:18:94:02:
9a:43:3d:8e:ad:29:46:3e:e5:d6:d2:17:f7:2a:25:
b8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:2F:4E:4B:4D:C0:AF:68:46:4B:D5:E9:F6:F1:59:47:71:ED:9F:86
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/416718A4022F11EF9CF1E732C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.209.0/24
113.203.246.0/24
223.29.239.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:17:e6:d8:7e:49:12:bb:ef:51:c0:65:39:a1:25:95:89:17:
a5:85:ac:3e:3e:a1:9b:0c:21:cf:47:1f:df:44:ca:07:8e:b1:
f0:09:77:75:55:af:73:12:33:6b:ef:86:40:99:ca:bb:ae:27:
24:e7:d5:df:1f:5f:c4:8e:65:5e:70:30:3a:a2:e9:27:e4:f9:
2e:8b:54:c6:3b:26:9c:12:67:6c:36:26:c9:e2:07:14:ec:be:
e8:1c:1a:05:d2:5a:fd:40:55:d9:68:93:53:4d:57:44:6d:38:
da:51:3b:7a:d1:8b:65:39:1e:8f:06:01:27:03:2f:7c:f7:0f:
74:9e:89:6b:01:68:c1:64:b2:b1:e8:84:c4:af:da:25:35:2c:
09:27:86:ac:4e:c9:68:78:b9:46:6e:16:3d:66:0f:3b:13:1a:
c4:56:fe:34:ef:b2:9f:cb:0f:b5:cd:51:ac:18:58:2f:4b:be:
d6:81:2c:d7:73:de:0a:a8:3f:6c:55:79:76:72:9b:9a:c1:c1:
7c:b6:32:ba:ac:2a:fc:92:d3:93:d3:44:ce:29:55:e6:97:85:
45:68:3c:4c:2e:de:5b:5b:d8:d7:aa:ca:ab:77:cb:eb:d8:ec:
90:0f:a8:1d:27:9d:75:08:d7:69:07:8b:17:54:eb:28:7d:ea:
f5:c4:90:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 14:10:55 2024 by rpki-client on console-fra.rpki-client.org