Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/4BF547329B1E11EE8134D53BC4F9AE02.roa
File: 4BF547329B1E11EE8134D53BC4F9AE02.roa (raw, json)
Hash identifier: 7Mq+ODejRx8BDsNxPkKLnWPShmUsy+QkhYYVuS4k6rU=
Subject key identifier: 39:07:30:4A:F2:70:1D:B4:F2:B8:43:36:8B:4E:32:1F:65:DE:DB:DE
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0E71
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/4BF547329B1E11EE8134D53BC4F9AE02.roa
Signing time: Fri 15 Dec 2023 12:27:55 +0000
ROA not before: Fri 15 Dec 2023 12:27:55 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.165.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.167.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.178.0/24 maxlen: 24
180.178.179.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3697 (0xe71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 15 12:27:55 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=657c464b-880c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f9:6c:b3:f7:7e:fa:9a:cd:82:15:20:0b:a1:
d6:d5:64:ae:ce:e7:0e:cb:e8:d7:cf:0b:e0:b0:79:
83:49:8d:f9:9a:8f:3f:26:58:58:07:c6:5e:4d:5a:
16:e5:16:c9:f8:9b:39:b0:6a:65:fe:39:0f:42:04:
c1:6d:8d:45:3b:bf:21:34:a1:63:eb:39:16:4b:0d:
c2:a6:90:44:61:56:fc:6f:0e:2a:52:f2:c4:3e:db:
d1:3f:de:5a:8b:10:34:58:f9:1e:d9:82:03:d0:a2:
3f:85:1e:54:63:a6:86:bf:53:c7:44:73:9b:dd:07:
17:77:62:b2:0e:52:ea:2e:ff:80:06:6d:df:76:f0:
be:c8:9b:cb:46:cd:bd:87:8b:22:57:73:37:3f:bd:
5f:8e:77:db:77:93:95:f0:29:9b:f9:10:32:41:53:
95:85:79:7e:ac:48:04:7e:82:95:56:be:1d:45:5b:
4e:08:2a:b8:07:54:d9:49:d0:96:25:44:e8:93:fb:
ea:7a:3e:7f:52:b9:ff:82:c5:d7:4e:af:e4:91:4b:
61:0c:00:db:72:44:57:78:83:b5:26:19:47:19:73:
b9:8d:58:ea:b4:b3:ec:f8:38:08:aa:19:3e:4f:88:
d9:73:89:2e:2b:33:08:ef:c9:6d:63:6e:68:58:d6:
5a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:07:30:4A:F2:70:1D:B4:F2:B8:43:36:8B:4E:32:1F:65:DE:DB:DE
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/4BF547329B1E11EE8134D53BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
113.203.218.0/24
113.203.228.0/24
113.203.230.0/24
113.203.234.0-113.203.240.255
113.203.253.0/24
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.147.0/24
180.178.149.0/24
180.178.160.0/24
180.178.165.0-180.178.167.255
180.178.170.0/24
180.178.172.0/24
180.178.174.0-180.178.176.255
180.178.178.0-180.178.184.255
180.178.191.0/24
223.29.226.0-223.29.228.255
223.29.231.0/24
223.29.235.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
af:b2:56:aa:4c:00:a5:f6:61:55:55:38:5e:90:9b:a9:3d:f3:
58:d0:78:81:a8:c1:f5:c1:cd:a7:be:d2:a1:d6:57:23:4a:87:
b7:5d:30:d2:72:a5:d0:5d:e2:3d:35:fe:42:a5:1f:aa:c8:f8:
9f:b1:35:6f:fd:b7:0a:6e:f6:42:b0:d3:12:d0:6e:c8:1c:83:
5b:76:1d:bf:8c:47:da:25:ed:a7:af:a0:cf:10:8a:6c:ab:ac:
f3:a6:13:62:e8:18:2d:76:7d:8d:92:ca:94:27:bb:67:22:b6:
be:79:f8:23:51:ae:70:48:8c:bb:e2:93:74:b3:69:76:8f:de:
a0:e6:34:1a:d6:78:9e:04:5e:21:bd:2f:15:9f:08:32:65:f8:
8a:7e:1c:f5:1e:56:58:d2:c0:bd:2a:21:be:b6:a0:93:f4:00:
a3:89:88:e9:09:16:73:cc:2f:63:8c:4c:f4:ba:98:9e:e2:41:
da:93:ec:49:b3:2d:e3:5c:c5:be:f3:f0:45:fe:ab:94:5b:0c:
1a:a2:0b:dc:e5:5e:5a:f1:56:2f:a3:3f:e8:28:64:29:9f:aa:
55:03:5f:05:92:05:fb:81:65:33:90:16:c0:8c:ef:b9:9f:f8:
88:34:32:6a:e0:88:93:72:fa:d4:49:5a:c6:c0:a5:c9:2a:e0:
62:fe:20:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 21:55:09 2023 by rpki-client on console-ams.rpki-client.org