Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/666A7202976011EE9B537738C4F9AE02.roa
File: 666A7202976011EE9B537738C4F9AE02.roa (raw, json)
Hash identifier: qeA7tmV6iI4i80DachWVfRzcizZs2XUg69KP/kmW/1k=
Subject key identifier: 4E:C4:A5:1D:78:6B:B4:18:2A:A4:3F:92:0F:FE:79:3D:E8:D2:07:10
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0E35
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/666A7202976011EE9B537738C4F9AE02.roa
Signing time: Sun 10 Dec 2023 13:31:19 +0000
ROA not before: Sun 10 Dec 2023 13:31:19 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
113.203.211.0/24 maxlen: 24
113.203.212.0/22 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.151.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.164.0/22 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.178.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3637 (0xe35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 10 13:31:19 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6575bda6-1f3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:07:3f:f1:fd:3f:05:08:4a:fd:3f:37:a4:bc:
37:f8:7a:99:b4:1c:0e:0e:57:a2:24:4e:48:d8:b3:
a8:67:84:ff:29:b0:d9:64:de:19:6e:12:86:49:73:
77:3f:e6:bc:5a:f4:93:1b:36:16:f2:f6:f8:c1:c4:
93:62:e2:27:40:07:4d:ee:70:69:52:b1:c5:2b:c9:
74:bd:3d:fb:24:33:39:94:99:ff:6a:4d:0f:f6:c5:
f0:df:4a:e4:90:82:4d:fd:04:f3:e1:48:78:c1:5b:
bf:01:0f:12:0c:ba:0b:1c:25:65:48:a9:34:2a:bf:
2d:4c:bb:85:d3:32:46:1b:3c:ac:21:01:99:8a:10:
75:7c:80:b4:66:2d:82:01:40:6e:45:53:65:8b:0f:
ec:9a:56:96:35:54:3b:4b:bd:a1:1b:9d:03:26:b0:
c3:85:d4:f0:c0:46:e5:51:4a:fe:b1:f5:3b:ca:f8:
a1:75:96:3a:aa:a4:df:fc:65:b5:3b:a6:2d:05:b7:
67:a5:2a:98:6e:e7:cf:2c:83:95:ee:2e:6c:f5:cb:
4d:43:8f:db:fa:62:cb:3d:d8:7b:dd:66:0b:c1:11:
68:ba:88:94:16:00:5e:5c:36:25:80:40:e7:35:c5:
d6:a4:b0:d4:6f:db:d4:dc:0e:ee:85:e5:a1:bf:ca:
86:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:C4:A5:1D:78:6B:B4:18:2A:A4:3F:92:0F:FE:79:3D:E8:D2:07:10
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/666A7202976011EE9B537738C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
113.203.211.0-113.203.215.255
113.203.218.0/23
113.203.222.0/24
113.203.227.0-113.203.228.255
113.203.234.0-113.203.240.255
113.203.243.0/24
113.203.253.0/24
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.147.0-180.178.149.255
180.178.151.0/24
180.178.160.0-180.178.162.255
180.178.164.0-180.178.168.255
180.178.171.0-180.178.172.255
180.178.174.0-180.178.176.255
180.178.178.0/24
180.178.180.0-180.178.184.255
180.178.188.0/24
180.178.190.0/23
223.29.226.0-223.29.228.255
223.29.231.0/24
223.29.235.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
9b:94:7c:94:82:4b:ca:cd:6a:3e:ed:38:44:3b:26:59:18:76:
2c:70:06:57:5f:5a:f2:0c:c3:0d:33:62:54:8a:09:a5:97:d8:
8e:69:06:62:ad:59:f7:2f:f7:ad:0e:c8:53:1c:e8:6c:0f:68:
6d:9b:a5:10:7a:5c:4d:be:02:7b:86:a0:a9:79:01:b2:8b:11:
eb:ed:07:cf:4a:4b:3e:92:dc:f0:69:39:31:00:d6:56:27:ed:
4b:e9:a9:89:14:57:ce:90:3e:37:37:c1:58:8d:50:0e:83:54:
9e:47:c0:7d:63:e1:94:c6:8c:fc:18:db:75:39:90:42:1a:cd:
f1:5b:91:b3:8b:3a:a0:07:79:e0:a3:3a:8e:10:bf:21:ef:ee:
ba:48:0e:7d:dc:79:99:c1:ca:a1:d0:69:76:68:50:4f:1e:47:
f3:77:6e:7c:0a:97:2d:b8:28:9f:d5:f5:34:de:d4:1a:e4:16:
cc:b9:a1:8f:e8:3f:af:a0:63:63:d2:51:51:9e:e4:d2:c4:e1:
5b:bd:09:67:25:3d:dd:0f:e5:69:09:d0:f1:a0:a5:d1:6d:6d:
39:1c:f0:1a:e9:4c:77:49:97:8d:3b:f9:00:1d:d0:9f:55:e3:
0b:5e:78:5d:f7:39:78:85:b9:21:e3:15:ef:4b:7c:b1:59:80:
5d:4a:41:77
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Dec 11 11:36:34 2023 by rpki-client on console-ams.rpki-client.org