Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/7CF026308DC811EEAB91616BC4F9AE02.roa
File: 7CF026308DC811EEAB91616BC4F9AE02.roa (raw, json)
Hash identifier: cIiDOBbLw34Vk1sViGpvg73WH0fBb+sq2WXhWZQ9EBI=
Subject key identifier: C2:F4:61:93:D3:A6:EB:6C:BC:67:A1:5C:1E:15:19:F8:E6:90:12:EA
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0E16
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/7CF026308DC811EEAB91616BC4F9AE02.roa
Signing time: Tue 28 Nov 2023 08:31:12 +0000
ROA not before: Tue 28 Nov 2023 08:31:12 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.211.0/24 maxlen: 24
113.203.212.0/22 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.249.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
113.203.254.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.151.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.164.0/22 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.178.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.229.0/24 maxlen: 24
223.29.230.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3606 (0xe16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Nov 28 08:31:12 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6565a550-0ce0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:de:5b:13:b7:55:44:09:de:be:45:95:46:21:
d2:1e:96:68:78:9d:16:0b:cd:af:58:7e:0d:e2:0c:
35:20:60:44:d1:c3:a9:9e:4a:9c:92:ba:f3:31:fd:
28:49:25:53:21:12:1f:29:68:39:fc:0a:e0:50:2b:
5c:0e:cd:a9:7b:4d:d2:d9:a8:ad:9f:6e:9d:9e:b0:
3d:91:93:eb:dd:67:b0:9f:c8:c4:2a:b5:fe:f3:52:
fd:d9:ab:85:b9:48:17:7d:95:9d:a4:db:5c:c3:ee:
ad:85:96:80:16:dd:cd:30:28:1a:b8:48:49:65:8c:
89:2f:02:60:e8:8f:0f:fe:1d:7d:7b:ac:57:f9:6f:
ae:55:69:ed:63:22:bf:ad:5e:f4:4b:8e:19:c8:e4:
85:28:72:cc:c5:15:dc:21:3d:43:e3:fd:cf:f2:74:
a3:8b:be:6e:e7:4b:31:43:3e:a2:52:73:bd:b8:68:
48:f0:b0:3e:7f:6f:1c:76:9b:9e:06:d8:66:f7:be:
89:6c:1f:8d:47:e9:a6:7c:4c:cd:66:88:27:28:2e:
96:f7:48:43:81:02:29:1d:ef:05:84:8b:ad:dc:3b:
b6:c7:9f:7f:67:37:bf:69:1a:b7:39:ba:20:48:f1:
96:6d:dc:d2:58:69:7f:6c:b8:57:2f:b6:c8:77:12:
81:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F4:61:93:D3:A6:EB:6C:BC:67:A1:5C:1E:15:19:F8:E6:90:12:EA
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/7CF026308DC811EEAB91616BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
113.203.210.0-113.203.215.255
113.203.218.0-113.203.220.255
113.203.222.0/24
113.203.227.0-113.203.228.255
113.203.234.0-113.203.240.255
113.203.243.0/24
113.203.249.0/24
113.203.253.0-113.203.254.255
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.147.0-180.178.149.255
180.178.151.0/24
180.178.160.0-180.178.162.255
180.178.164.0-180.178.168.255
180.178.171.0-180.178.172.255
180.178.174.0-180.178.176.255
180.178.178.0/24
180.178.180.0-180.178.184.255
180.178.188.0/22
223.29.226.0-223.29.231.255
223.29.235.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
ae:70:b8:9d:ad:8f:cd:dd:8a:d8:20:e5:f3:d8:78:7e:b2:f2:
5d:3e:4b:84:23:a7:b4:fc:68:ab:8e:15:d7:0c:53:d3:e4:34:
02:0c:74:27:61:f2:c3:8c:5f:3f:9b:0a:27:73:21:de:9f:ad:
66:49:7f:21:b5:a6:00:9a:2a:a7:3f:a6:50:ba:e7:19:15:3a:
58:0a:94:4a:b3:5a:d7:e3:38:41:6f:93:7b:96:b9:d4:33:23:
70:18:c4:fa:6a:d0:0b:2b:68:4c:ca:1d:96:c0:d7:ac:33:cb:
99:f0:38:c0:af:c9:ba:0c:81:29:09:ed:d5:34:71:49:95:a1:
67:b2:41:39:ca:b7:cf:64:1e:07:13:a5:34:6b:7c:66:0f:1f:
3a:81:ef:a2:78:36:cc:39:15:05:c0:70:b0:1c:e4:3c:dd:ac:
53:da:f1:d8:56:70:fe:3c:bf:bf:53:32:9d:24:90:da:aa:f5:
b8:63:76:80:e6:81:d4:16:29:ad:64:43:a2:13:56:6b:a9:72:
0f:79:1d:45:b0:13:6d:cd:30:78:20:f2:65:69:0a:cf:36:b4:
27:73:27:12:e3:e2:09:03:47:11:99:b5:c2:dc:9c:f8:59:af:
8c:32:9b:40:71:d8:7d:43:00:ae:a2:d0:9f:53:67:1d:41:17:
b0:11:c2:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 29 17:49:54 2023 by rpki-client on console-fra.rpki-client.org