Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/90A4B810FBB611EEA79D8A7CC4F9AE02.roa
File: 90A4B810FBB611EEA79D8A7CC4F9AE02.roa (raw, json)
Hash identifier: IeeJvz1f4pBw+Vq1IYZfxdH+1wEZal+gAeRr3gtt4q0=
Subject key identifier: 99:AE:20:F7:A1:ED:D4:63:1A:EA:0C:62:C3:24:1C:F6:8C:A8:19:F3
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1069
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/90A4B810FBB611EEA79D8A7CC4F9AE02.roa
Signing time: Tue 16 Apr 2024 06:00:03 +0000
ROA not before: Tue 16 Apr 2024 06:00:03 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 138241
IP address blocks: 103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.250.0/24 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
175.110.68.0/22 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
180.178.152.0/21 maxlen: 21
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Apr 2024 05:10:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4201 (0x1069)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Apr 16 06:00:03 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=661e13e2-6b04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:58:ba:0b:01:31:c9:ba:45:2d:e9:bc:b4:cb:
ff:23:a7:e7:b6:c5:c8:9e:ed:06:13:26:27:ba:a1:
1d:6a:d6:62:6c:ae:b7:15:93:b1:00:b6:68:9f:5c:
cc:15:87:13:9c:6f:e6:26:f9:30:f9:c5:c7:1a:17:
bd:26:55:6f:02:81:de:2d:2d:12:71:2b:21:08:bb:
d8:52:2e:c3:57:2d:dc:13:f5:9c:63:1e:9b:b8:b3:
95:8a:23:53:f5:f5:5c:93:43:13:91:80:6c:12:f2:
34:e9:19:44:bf:bd:1a:ef:01:db:5e:27:58:0f:92:
de:c8:45:9a:7d:3f:da:15:79:ad:41:ee:71:42:58:
12:04:d2:32:5a:76:18:7c:5a:46:24:3a:ba:cb:8a:
11:e0:06:d6:89:f3:b6:18:ee:e2:86:93:10:4c:97:
1d:eb:10:9e:29:25:88:d2:d8:8c:74:24:20:e5:13:
e8:fa:0f:39:d2:29:f7:77:9f:bc:41:d2:0b:d3:92:
76:23:55:74:78:e1:de:81:82:6b:f0:06:be:33:ed:
64:a0:5e:39:d9:ee:47:37:2d:06:fa:b3:0c:1a:0d:
09:50:1c:ff:9b:a8:0e:9c:6d:ce:8d:d6:22:97:71:
26:06:75:4f:5b:28:27:12:77:d1:19:54:44:f4:01:
54:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:AE:20:F7:A1:ED:D4:63:1A:EA:0C:62:C3:24:1C:F6:8C:A8:19:F3
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/90A4B810FBB611EEA79D8A7CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
113.203.208.0/24
113.203.216.0/24
113.203.231.0/24
113.203.250.0/24
115.167.49.0/24
115.167.78.0/24
175.110.68.0/22
175.110.80.0/22
175.110.88.0/22
175.110.105.0-175.110.106.255
175.110.109.0/24
175.110.111.0/24
180.178.152.0/21
202.92.18.0/24
202.92.20.0/24
223.29.227.0/24
223.29.235.0-223.29.236.255
223.29.238.0/24
Signature Algorithm: sha256WithRSAEncryption
17:49:96:1e:43:26:d2:bb:aa:0a:9a:10:b9:89:fc:dc:26:b2:
14:1a:be:c0:d6:5a:dd:d6:e3:b4:5d:6a:70:05:c4:e0:9d:73:
17:81:64:a7:71:e6:ae:fd:5c:b2:5f:7f:6c:5f:cb:e1:ec:f6:
95:e2:a0:6b:5b:df:e0:5b:07:98:45:20:eb:d4:56:52:5d:12:
98:2e:76:1f:db:a7:6a:cb:7d:a3:f8:33:7e:56:f0:1d:0a:e5:
af:6d:f0:96:32:79:a1:bf:5b:3c:f5:84:39:35:60:3c:62:42:
17:fd:aa:9b:af:bb:23:83:43:4d:d6:53:1c:6c:1b:04:98:89:
19:6a:25:f9:31:e6:35:e6:5f:7e:5a:b5:3e:7a:64:aa:5d:73:
8a:8e:89:fe:76:21:d9:7f:bc:48:10:43:0f:df:69:e7:ac:de:
33:ac:5f:dd:ef:d9:10:1a:ff:d2:d1:43:68:39:14:ec:29:b9:
48:76:09:e4:4e:81:a9:ee:f8:4f:c3:67:de:17:19:02:08:3d:
ce:96:25:57:38:f3:7e:48:73:b3:db:3c:cd:ff:3c:b0:93:db:
18:65:51:3b:04:28:94:8e:ed:0f:22:7a:da:90:f8:bc:a9:4f:
bb:ca:d4:58:a0:10:21:46:72:76:c3:05:22:30:0b:02:3a:61:
af:9d:0d:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 05:55:17 2024 by rpki-client on console-fra.rpki-client.org