Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/7471B252A6CF11ED8FBD0A82C4F9AE02.roa
File: 7471B252A6CF11ED8FBD0A82C4F9AE02.roa (raw, json)
Hash identifier: oWwDIHLz7w1pug8hfkwySM4VjdBdedezmb61iYsVoRw=
Subject key identifier: D6:E2:CD:06:A3:DE:AD:92:C5:34:B0:0F:58:6E:BA:3A:C4:89:BE:74
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0CD3
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/7471B252A6CF11ED8FBD0A82C4F9AE02.roa
Signing time: Sun 27 Aug 2023 16:56:33 +0000
ROA not before: Sun 27 Aug 2023 16:56:33 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 43.254.12.0/22 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
113.203.249.0/24 maxlen: 24
113.203.251.0/24 maxlen: 24
115.167.0.0/24 maxlen: 24
115.167.4.0/24 maxlen: 24
115.167.108.0/22 maxlen: 24
115.167.126.0/24 maxlen: 24
115.167.127.0/24 maxlen: 24
180.178.151.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3283 (0xcd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Aug 27 16:56:33 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=64eb8041-bda6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:74:ed:6b:3f:5a:3e:ec:54:a9:23:b5:a8:fd:
40:92:4d:71:f4:24:f2:77:09:ea:50:b5:7c:1c:d8:
1a:5b:f1:30:18:00:bd:0b:e0:a2:72:06:62:0d:f9:
96:e3:75:53:fa:be:65:72:e8:0c:87:fe:5e:3a:db:
3f:dc:e5:3b:19:7d:94:1a:33:10:36:b4:0f:2b:02:
3e:df:43:c5:96:79:54:cf:e5:2a:1c:ed:c4:28:9b:
69:fb:5d:db:23:1c:50:45:85:b8:6b:8a:47:e0:54:
23:e6:17:40:9a:2b:2f:c0:f1:50:bf:0d:03:49:9b:
b8:50:74:e9:b1:db:1a:8a:92:b3:fe:6e:28:a6:c8:
2c:11:eb:8f:2f:0e:57:ef:de:ce:e8:1c:24:dd:19:
f3:88:cf:84:cd:ab:21:33:6a:1a:84:42:bb:20:fc:
7d:2a:f5:5a:1f:7d:4c:58:63:71:50:a0:d6:d4:08:
e0:3f:45:59:f0:0c:b9:3e:d8:7c:1f:70:cb:6f:d2:
bb:8b:07:29:3a:6f:d3:6e:63:df:7b:b4:41:61:c7:
62:47:13:55:a4:72:b1:83:50:88:63:94:4d:9a:61:
b7:d1:99:2d:22:9e:c8:22:50:3a:4a:a5:7c:67:dd:
60:a0:a7:45:d8:26:de:e7:87:1a:44:8a:61:a3:7d:
47:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E2:CD:06:A3:DE:AD:92:C5:34:B0:0F:58:6E:BA:3A:C4:89:BE:74
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/7471B252A6CF11ED8FBD0A82C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.254.12.0/22
113.203.225.0/24
113.203.248.0/23
113.203.251.0/24
115.167.0.0/24
115.167.4.0/24
115.167.108.0/22
115.167.126.0/23
180.178.151.0/24
223.29.236.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
8f:4d:f4:d5:02:62:14:d9:ec:9c:9a:0e:ee:25:57:35:92:14:
31:ee:8c:2e:a6:cf:65:88:5d:bb:5f:bd:e4:b5:8d:d4:b5:b6:
ea:9d:7b:a0:d6:c5:dd:59:74:bc:6b:39:69:55:fc:43:84:65:
b1:1e:81:be:ba:3e:30:c1:59:45:d6:8e:7c:96:cd:85:3e:85:
c7:81:4f:89:50:ac:a9:fd:16:60:94:a6:9b:03:14:32:91:58:
55:c7:f2:cb:db:d2:29:09:54:f0:ce:b2:02:76:b0:09:fc:53:
8e:e0:c1:51:cb:24:c4:27:4e:e9:8b:d2:40:02:f4:5f:5e:8a:
57:aa:f2:a8:4e:aa:02:bf:8b:96:f0:e6:f9:03:7a:f7:55:c4:
89:b1:ec:d7:f8:67:40:30:30:6b:cf:f1:df:95:bf:df:6c:a5:
8f:f0:63:e4:af:56:a0:59:d2:99:03:7b:64:fa:8c:ee:c8:34:
fe:42:10:42:23:79:bb:6c:e2:2e:5b:92:00:6b:87:51:6c:b8:
d7:44:a4:7b:73:35:7e:ac:b5:8a:f8:d2:bf:fe:7e:c5:11:76:
75:5c:6a:cb:c8:cd:6f:a3:5a:f2:7b:82:d1:28:bb:72:5d:92:
6f:43:de:be:bd:97:6a:fd:8c:bc:e3:22:7b:2e:01:cc:c6:3f:
85:c2:59:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 28 16:12:12 2023 by rpki-client on console-fra.rpki-client.org