Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/84CFE3383A3E11ED974FCC85C4F9AE02.roa
File: 84CFE3383A3E11ED974FCC85C4F9AE02.roa (raw, json)
Hash identifier: SvoRisaAEAC2aVJCuKjqTWvBkC9ItpAK7FuVn09Rakw=
Subject key identifier: 60:05:43:28:3C:87:E7:4A:4B:CA:4C:37:08:FE:58:92:04:E0:64:63
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0944
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/84CFE3383A3E11ED974FCC85C4F9AE02.roa
Signing time: Thu 22 Sep 2022 06:19:31 +0000
ROA not before: Thu 22 Sep 2022 06:19:31 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 38547
IP address blocks: 115.167.2.0/24 maxlen: 24
115.167.24.0/22 maxlen: 24
115.167.28.0/22 maxlen: 24
115.167.50.0/24 maxlen: 24
115.167.72.0/22 maxlen: 24
115.167.116.0/22 maxlen: 24
115.167.124.0/22 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.107.2/32 maxlen: 32
175.110.107.14/32 maxlen: 32
175.110.107.114/32 maxlen: 32
202.92.16.0/24 maxlen: 24
202.92.17.0/24 maxlen: 24
202.92.23.0/24 maxlen: 24
202.92.24.0/24 maxlen: 24
202.92.24.32/27 maxlen: 27
202.92.25.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
202.92.27.0/24 maxlen: 24
202.92.28.0/24 maxlen: 24
202.92.29.0/24 maxlen: 24
202.92.30.0/24 maxlen: 24
202.92.31.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2372 (0x944)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Sep 22 06:19:31 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=632bfe73-a9bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:58:8e:24:aa:af:8a:7a:8d:32:68:11:9b:db:
5c:8e:55:ac:22:d9:bc:d9:0b:65:07:82:2f:06:30:
31:ab:0b:db:cb:0a:27:e7:15:a3:32:ca:11:2f:8e:
20:09:41:b3:21:61:34:a5:29:0f:0e:5d:a0:7b:fa:
a2:47:d2:cf:7e:f5:b4:61:d6:7d:8a:5f:69:24:e4:
63:23:12:e2:62:1e:fb:61:06:db:bb:cb:25:91:80:
2e:db:19:9f:d9:01:02:bd:db:8c:f9:c1:cd:88:3b:
f3:70:9b:b8:6c:9d:a1:38:9e:de:bc:90:f5:5a:f1:
0a:4b:b9:d1:6e:d4:d6:21:f1:ff:ea:f1:a1:e1:bc:
bb:db:ec:3c:db:8a:2f:0d:66:cf:fd:ca:22:1b:5d:
2b:55:d8:bb:ad:17:e3:0d:a0:2d:c7:b6:11:f8:a0:
0a:7a:2e:45:13:7d:8e:17:2e:2d:c5:15:37:f2:10:
6d:67:06:ee:e4:2f:20:1c:b2:67:7a:86:53:6c:56:
0e:01:76:b0:09:c9:25:f4:ff:8f:65:85:29:eb:c2:
47:bd:be:0a:c6:88:14:be:20:0c:de:67:d9:3b:01:
5c:9f:f8:39:e9:f7:7c:5b:b6:71:7c:99:92:a4:0f:
c3:61:6f:00:c5:79:25:f9:c4:90:c1:b0:5b:9f:43:
06:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:05:43:28:3C:87:E7:4A:4B:CA:4C:37:08:FE:58:92:04:E0:64:63
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/84CFE3383A3E11ED974FCC85C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.2.0/24
115.167.24.0/21
115.167.50.0/24
115.167.72.0/22
115.167.116.0/22
115.167.124.0/22
175.110.104.0/24
175.110.107.2/32
175.110.107.14/32
175.110.107.114/32
202.92.16.0/23
202.92.23.0-202.92.31.255
Signature Algorithm: sha256WithRSAEncryption
1a:d3:83:b5:fe:c8:21:8e:ae:99:4b:4b:fb:a0:09:44:b2:d1:
40:7e:9b:10:9a:9f:aa:bf:c2:c1:99:c0:b4:47:5e:b0:08:cb:
b3:6d:ce:c7:0e:a9:dd:96:e2:d3:24:e4:a0:4f:ca:e8:09:d8:
2c:79:12:4a:df:a9:08:b6:bb:0e:3b:91:f1:2c:6f:63:a5:9d:
24:37:7d:47:20:46:b9:6b:b4:97:cc:2a:0e:ff:5f:52:27:b8:
24:b4:77:4c:fc:ea:76:d8:22:98:59:a6:bf:8b:42:20:82:b4:
f5:d8:63:4c:cf:7f:01:a8:ce:9a:24:40:2b:6e:5e:74:07:2c:
68:a8:a4:c0:dd:6e:7c:ee:59:e0:39:e3:9f:83:cb:ef:f9:fc:
b3:4d:ed:33:12:a3:fb:21:5b:27:16:9e:aa:dd:70:18:0d:f8:
c0:ae:04:65:ed:be:bd:72:65:76:91:6a:9b:f2:e1:cd:54:8d:
6c:a4:30:6d:0d:c9:e8:06:6f:37:c0:35:c7:3e:a2:06:73:ef:
0d:ff:ca:83:b2:f4:25:25:fe:ca:87:95:32:3f:af:0b:69:1f:
de:17:02:e3:cb:f0:9c:3a:5c:b1:76:d2:2b:36:5e:48:80:7a:
0a:59:eb:45:83:e8:14:d9:ef:8c:09:c7:df:73:c6:0b:a6:c3:
c7:63:1c:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:12 2023 by rpki-client on console-fra.rpki-client.org