Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/76F7E4F65F5811ED86EB0D40C4F9AE02.roa
File: 76F7E4F65F5811ED86EB0D40C4F9AE02.roa (raw, json)
Hash identifier: JCnCOirit78ztLQeQcvALfnhTffRdr9JO3hToxVbKxQ=
Subject key identifier: C9:FC:B6:D6:ED:1F:4B:A2:FB:C5:78:88:21:0B:FC:AC:05:3A:74:27
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 09C0
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/76F7E4F65F5811ED86EB0D40C4F9AE02.roa
Signing time: Fri 11 Nov 2022 06:49:46 +0000
ROA not before: Fri 11 Nov 2022 06:49:46 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 38547
IP address blocks: 103.151.27.0/24 maxlen: 24
115.167.2.0/24 maxlen: 24
115.167.72.0/22 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.108.0/22 maxlen: 24
115.167.116.0/22 maxlen: 24
115.167.120.0/22 maxlen: 24
115.167.124.0/22 maxlen: 24
175.110.96.0/24 maxlen: 24
202.92.16.0/24 maxlen: 24
202.92.17.0/24 maxlen: 24
202.92.23.0/24 maxlen: 24
202.92.24.0/24 maxlen: 24
202.92.24.32/27 maxlen: 27
202.92.25.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
202.92.27.0/24 maxlen: 24
202.92.28.0/24 maxlen: 24
202.92.29.0/24 maxlen: 24
202.92.30.0/24 maxlen: 24
202.92.31.0/24 maxlen: 24
2400:9560:1::/48 maxlen: 48
2400:9560:5::/48 maxlen: 48
2400:9560:9::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2496 (0x9c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Nov 11 06:49:46 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=636df08a-1142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:43:79:d3:e3:25:f8:b0:2f:2c:5d:96:53:06:
dc:0e:7a:80:1d:4f:82:16:b9:fa:76:e9:9c:13:5f:
b6:97:5f:a4:05:ae:a3:4e:08:d0:7c:0d:f7:3e:25:
cc:25:95:a4:e1:73:d8:df:5a:a4:46:06:40:61:e2:
1b:83:e6:27:81:9e:6b:70:21:96:98:17:e2:1f:a4:
5d:0a:b8:e9:d3:4e:6f:65:52:43:5a:3b:c0:dd:a4:
8c:c0:96:82:06:c2:1b:a8:d0:da:93:a2:e1:dd:cc:
79:d3:f5:86:07:62:8e:4b:50:81:c8:71:aa:01:60:
68:7d:14:4c:47:04:0b:0e:32:11:68:43:20:cf:46:
ef:85:30:9f:76:79:7a:fb:e3:b5:ea:de:5b:1f:c7:
3c:35:41:84:48:50:c8:c9:11:9c:67:28:b0:ac:32:
a2:a4:9d:96:af:04:e1:b4:28:45:82:32:3b:ae:51:
b8:7b:e2:dc:e7:ba:ff:1c:2a:f8:c4:d7:99:5a:7a:
3d:07:41:72:80:d9:ea:8a:3d:7f:4d:e4:1c:61:62:
bb:91:93:04:ab:12:67:67:37:fa:b6:f7:92:1c:aa:
59:91:5b:cb:e8:d5:d1:16:7e:60:f8:80:b5:c5:63:
b4:5e:e4:fa:d7:9d:c5:29:24:5b:cb:ab:35:0d:3d:
b7:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:FC:B6:D6:ED:1F:4B:A2:FB:C5:78:88:21:0B:FC:AC:05:3A:74:27
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/76F7E4F65F5811ED86EB0D40C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
115.167.2.0/24
115.167.72.0/22
115.167.78.0/24
115.167.108.0/22
115.167.116.0-115.167.127.255
175.110.96.0/24
202.92.16.0/23
202.92.23.0-202.92.31.255
IPv6:
2400:9560:1::/48
2400:9560:5::/48
2400:9560:9::/48
Signature Algorithm: sha256WithRSAEncryption
12:71:76:4e:52:2d:a5:53:f8:d9:7e:53:50:0f:4c:ce:0e:55:
a5:e2:c1:12:88:28:8f:3d:34:7d:db:a3:b3:64:c4:83:13:93:
68:ef:01:bc:e0:7c:b4:68:93:0d:11:52:fb:f6:a0:14:cc:f1:
07:b9:a5:1f:78:09:01:a1:16:2c:ec:08:9c:13:e1:c0:b7:4c:
5c:e1:66:05:d6:29:98:13:5d:03:bb:5b:30:ce:5c:1b:ff:d7:
fe:51:3b:20:0f:4b:bf:2b:fe:c8:b1:17:88:a9:c2:76:a9:52:
d6:49:c6:94:19:d7:5a:d7:bf:b6:1c:5f:2e:41:a5:d2:bc:94:
dc:df:38:9c:58:5e:57:2d:f0:1d:9c:25:bf:15:6b:40:fe:9e:
d7:16:f2:33:d8:84:c8:76:3c:36:6a:64:57:57:62:0a:4d:dd:
39:15:f7:9f:ad:9b:86:93:dc:68:90:dd:31:6b:af:d7:70:ed:
a8:65:ef:57:7b:a7:9e:16:79:a1:c5:19:73:6d:e8:c8:fa:ec:
2c:f5:55:6a:ca:27:ea:45:6c:00:80:42:75:d4:f6:84:2d:f7:
87:78:25:21:a2:bb:f0:4e:cb:8d:a1:c5:e6:4e:9f:fc:f0:a4:
06:fa:9d:6a:c2:da:da:a5:92:8f:99:cb:51:4c:98:57:e8:ff:
40:f1:6d:d4
-----BEGIN CERTIFICATE-----
MIIF1TCCBL2gAwIBAgICCcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjIxMTExMDY0OTQ2WhcNMjMwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzZkZjA4YS0xMTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2kN50+Ml+LAvLF2WUwbcDnqAHU+CFrn6dumcE1+2l1+kBa6jTgjQfA33PiXM
JZWk4XPY31qkRgZAYeIbg+YngZ5rcCGWmBfiH6RdCrjp005vZVJDWjvA3aSMwJaC
BsIbqNDak6Lh3cx50/WGB2KOS1CByHGqAWBofRRMRwQLDjIRaEMgz0bvhTCfdnl6
++O16t5bH8c8NUGESFDIyRGcZyiwrDKipJ2WrwThtChFgjI7rlG4e+Lc57r/HCr4
xNeZWno9B0FygNnqij1/TeQcYWK7kZMEqxJnZzf6tveSHKpZkVvL6NXRFn5g+IC1
xWO0XuT6153FKSRby6s1DT23AQIDAQABo4IC+TCCAvUwHQYDVR0OBBYEFMn8ttbt
H0ui+8V4iCEL/KwFOnQnMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvNzZGN0U0RjY1
RjU4MTFFRDg2RUIwRDQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgYIGCCsGAQUFBwEHAQH/
BHMwcTBMBAIAATBGAwQAZ5cbAwQAc6cCAwQCc6dIAwQAc6dOAwQCc6dsMAwDBAJz
p3QDBAdzpwADBACvbmADBAHKXBAwDAMEAMpcFwMEBcpcADAhBAIAAjAbAwcAJACV
YAABAwcAJACVYAAFAwcAJACVYAAJMA0GCSqGSIb3DQEBCwUAA4IBAQAScXZOUi2l
U/jZflNQD0zODlWl4sESiCiPPTR926OzZMSDE5No7wG84Hy0aJMNEVL79qAUzPEH
uaUfeAkBoRYs7AicE+HAt0xc4WYF1imYE10Du1swzlwb/9f+UTsgD0u/K/7IsReI
qcJ2qVLWScaUGdda17+2HF8uQaXSvJTc3zicWF5XLfAdnCW/FWtA/p7XFvIz2ITI
djw2amRXV2IKTd05FfefrZuGk9xokN0xa6/XcO2oZe9Xe6eeFnmhxRlzbejI+uws
9VVqyifqRWwAgEJ11PaELfeHeCUhorvwTsuNocXmTp/88KQG+p1qwtrapZKPmctR
TJhX6P9A8W3U
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:11 2023 by rpki-client on console-fra.rpki-client.org