Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5C9A1448AAF811EE8FC6CD1CC4F9AE02.roa
File: 5C9A1448AAF811EE8FC6CD1CC4F9AE02.roa (raw, json)
Hash identifier: xPTYShjLNCSz+yb5/Mo0ZhT7IIIlEfphlxI13oWbPQM=
Subject key identifier: 8F:B8:98:79:20:63:36:4B:31:25:01:47:9C:3A:DE:52:C7:0A:A8:64
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0EEE
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5C9A1448AAF811EE8FC6CD1CC4F9AE02.roa
Signing time: Thu 04 Jan 2024 11:56:58 +0000
ROA not before: Thu 04 Jan 2024 11:56:58 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.249.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.179.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jan 2024 07:21:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3822 (0xeee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jan 4 11:56:58 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65969d09-65e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:81:67:64:0d:5e:3d:16:02:0d:18:61:cb:bc:
fb:c9:2c:05:d9:85:9d:4e:a4:54:36:6e:2c:d6:f5:
70:19:2d:01:1a:1d:83:19:56:17:e8:63:60:c0:cf:
a7:49:a3:9f:09:af:b0:d2:d0:df:3b:72:f6:40:87:
61:fe:35:72:93:78:8d:af:ae:cb:44:3a:4a:9a:ff:
74:d3:45:9a:92:47:26:30:ba:51:73:0e:02:a4:8a:
e7:8a:0b:ad:73:ed:cb:b6:a6:8c:64:7a:47:6b:fc:
23:8c:1d:69:2a:e1:74:8c:89:91:7a:ac:6e:85:a8:
e4:a4:77:49:63:47:7e:96:10:75:53:01:68:0f:5f:
d8:af:2f:9f:12:d3:85:e4:a0:65:b1:2b:57:e0:3e:
92:b3:b4:5e:0f:f6:09:7c:3e:45:00:80:be:cb:ff:
59:0f:4f:7a:e8:f7:9f:13:9f:c2:82:86:0f:30:50:
66:b1:e6:56:7e:21:0d:b1:61:03:8b:d9:22:fd:ab:
7b:0a:b0:27:76:26:79:30:27:8d:48:1f:fb:72:dd:
c2:8d:f8:c1:c2:48:71:5a:0c:7a:27:a6:3f:15:93:
c3:57:62:fb:d5:8e:34:97:a2:8f:09:77:17:9c:e5:
5a:77:c1:f2:d2:79:79:b9:2b:43:de:3b:a0:6f:4e:
66:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B8:98:79:20:63:36:4B:31:25:01:47:9C:3A:DE:52:C7:0A:A8:64
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5C9A1448AAF811EE8FC6CD1CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
113.203.218.0/24
113.203.220.0/24
113.203.224.0/24
113.203.230.0/24
113.203.234.0-113.203.240.255
113.203.245.0/24
113.203.249.0/24
113.203.253.0/24
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.147.0/24
180.178.149.0/24
180.178.160.0/24
180.178.166.0/24
180.178.170.0/24
180.178.172.0/24
180.178.174.0-180.178.176.255
180.178.179.0-180.178.184.255
180.178.191.0/24
223.29.226.0-223.29.228.255
223.29.231.0/24
223.29.237.0/24
Signature Algorithm: sha256WithRSAEncryption
28:24:c4:66:19:c7:75:19:4e:20:2c:97:e1:e1:da:24:07:1c:
61:ad:70:f1:64:8e:b8:3d:47:ee:6f:a2:2a:94:7a:3a:73:87:
60:23:02:ca:0e:82:b3:9f:37:48:ce:b0:b6:23:24:9b:32:8a:
75:5b:2d:f4:9f:f3:49:f8:22:bc:3f:66:56:ef:e6:b1:f5:fd:
61:c3:29:d1:75:18:91:47:f9:19:67:6d:70:5e:df:c8:99:b5:
2e:1a:92:b8:f5:83:35:2d:61:19:5b:42:15:e6:14:4c:68:b0:
d3:35:7e:3a:8b:6b:e0:40:a5:ef:19:ab:76:d5:ef:9a:41:bd:
8b:db:b9:62:7c:62:36:0c:02:b6:ed:f1:26:f8:d2:32:e6:cb:
d5:59:2d:e6:3f:73:d6:66:33:e3:65:65:af:90:8f:a0:ba:39:
8a:90:f0:62:46:a4:3b:87:74:77:ef:98:22:ca:1e:ef:eb:ba:
01:db:9c:6b:20:fe:4e:35:e1:5a:cc:88:bc:5b:ae:3c:8e:25:
ec:eb:89:3e:e7:db:37:a3:a6:6b:0e:b2:c0:86:12:db:c2:b1:
8b:1a:4e:23:8f:55:59:f6:fb:9b:0d:21:56:9c:e4:99:f7:29:
25:cb:2a:65:d3:fb:44:07:08:58:a3:ac:ce:5c:e1:16:ed:da:
19:0c:32:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 8 12:09:08 2024 by rpki-client on console-ams.rpki-client.org