Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8D3590E2349611EEB7CB257AC4F9AE02.roa
File: 8D3590E2349611EEB7CB257AC4F9AE02.roa (raw, json)
Hash identifier: i/S4Id9Wu6xkSECbT4Em95yH7S8l1uCFkbbx1STx8+g=
Subject key identifier: 17:99:E3:46:75:CE:70:3A:7F:FC:F8:61:01:19:49:66:AC:31:15:57
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0CA2
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8D3590E2349611EEB7CB257AC4F9AE02.roa
Signing time: Sun 06 Aug 2023 20:19:31 +0000
ROA not before: Sun 06 Aug 2023 20:19:31 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 9387
IP address blocks: 43.254.12.0/22 maxlen: 24
103.11.60.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.214.0/23 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.229.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.233.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.248.0/22 maxlen: 24
113.203.253.0/24 maxlen: 24
113.203.254.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.151.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.164.0/22 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.173.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.178.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.185.0/24 maxlen: 24
180.178.186.0/24 maxlen: 24
180.178.187.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.229.0/24 maxlen: 24
223.29.230.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3234 (0xca2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Aug 6 20:19:31 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=64d00053-1e43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:c7:43:11:ee:b4:4e:8d:9c:18:c0:a5:ec:65:
5b:85:33:41:9e:b1:3b:c4:db:3c:58:81:ca:36:39:
75:9c:fd:1f:10:18:7f:60:99:79:a3:c6:c1:f4:36:
dc:18:d6:fd:a0:ab:31:85:dc:11:2d:22:6f:d8:ab:
89:97:be:ac:ec:36:3f:36:e2:78:bb:24:81:a8:a1:
5e:e6:ca:5f:3c:31:91:2f:9f:b9:58:ba:0d:65:14:
ea:26:67:83:d6:d1:b8:23:2d:49:17:94:72:83:51:
42:81:b4:a3:6a:c8:da:8b:87:3d:cd:65:20:a8:30:
f9:c3:1b:5b:ac:ca:b0:90:27:4f:8c:c0:0a:0e:17:
98:d6:c6:ca:ef:6a:1a:cc:4c:af:c6:1c:58:27:ff:
03:1e:e7:04:7f:3d:2f:54:8c:b6:26:d8:67:b8:19:
2f:28:b7:05:a5:56:2d:60:19:ec:b8:02:6b:98:53:
4f:61:81:70:47:d0:9c:c7:9b:41:70:5b:db:9c:a8:
72:c9:f8:32:09:ec:5f:a2:69:f5:8e:f1:aa:2e:1f:
b2:c9:aa:f6:b3:1c:55:b5:30:be:b2:40:36:b4:87:
84:27:1d:7b:2b:77:bc:a0:43:20:c0:4d:4f:21:3f:
bb:8e:b8:fd:bc:7e:11:5d:0b:6f:ce:4b:76:a4:8d:
a4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:99:E3:46:75:CE:70:3A:7F:FC:F8:61:01:19:49:66:AC:31:15:57
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8D3590E2349611EEB7CB257AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.254.12.0/22
103.11.60.0/24
113.203.212.0-113.203.216.255
113.203.218.0-113.203.220.255
113.203.222.0/24
113.203.225.0/24
113.203.228.0/22
113.203.233.0-113.203.240.255
113.203.243.0/24
113.203.248.0/22
113.203.253.0-113.203.254.255
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.148.0/23
180.178.151.0/24
180.178.162.0/24
180.178.164.0/22
180.178.172.0-180.178.176.255
180.178.178.0/24
180.178.180.0/22
180.178.185.0-180.178.191.255
223.29.226.0-223.29.231.255
223.29.235.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
72:b0:5a:81:0c:58:88:6a:3e:50:23:16:e9:4f:7e:bf:ac:b7:
f7:46:ca:6b:f8:1e:90:ef:ca:40:13:38:ff:ed:55:3f:55:ea:
4b:2c:cd:94:47:29:92:af:df:2b:5a:8f:eb:44:c5:07:e4:d7:
24:a3:b1:3c:9a:9e:f1:30:c6:e3:1c:ee:24:5d:9e:90:25:fa:
53:c3:7a:8c:cf:fb:92:d1:b1:e3:f1:a6:51:ee:d3:11:6a:2a:
1d:f3:9f:07:98:66:54:29:be:af:18:b0:c5:4d:62:fd:e8:04:
57:80:68:79:79:ef:2d:52:a3:43:e6:e8:44:7a:71:b4:b2:89:
e7:22:2b:49:6c:47:0b:3a:e5:4e:80:c4:a5:a1:84:66:84:43:
cf:5a:4b:6f:fc:89:93:02:a2:93:10:29:12:75:b7:10:56:2c:
51:d8:e4:0b:e4:ed:8f:52:8a:2a:46:ff:e8:53:bc:33:4f:47:
e4:d9:c6:ac:47:7c:a8:0f:47:67:51:51:70:c9:81:5e:33:2c:
be:ba:02:dd:8e:f7:4c:09:71:54:02:10:82:1f:29:ef:be:29:
ee:16:79:1d:4f:cc:4b:e9:3d:44:ce:e7:0d:21:8f:2b:ac:bf:
2b:6e:d5:74:8e:08:b1:7e:6f:44:4c:24:4b:fe:79:b2:50:9b:
2c:25:95:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 8 16:32:50 2023 by rpki-client on console-fra.rpki-client.org