Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/91E956089F2811EEA8237329C4F9AE02.roa
File: 91E956089F2811EEA8237329C4F9AE02.roa (raw, json)
Hash identifier: rSnkzg/SPPkFJbblT/0iaR20BeS70asQQ8q8W3BomKQ=
Subject key identifier: AC:0A:01:A7:59:46:18:AF:72:3F:0F:01:1C:31:27:B6:53:6B:46:A5
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0EAB
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/91E956089F2811EEA8237329C4F9AE02.roa
Signing time: Wed 20 Dec 2023 12:56:27 +0000
ROA not before: Wed 20 Dec 2023 12:56:27 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 5650
IP address blocks: 115.167.1.0/24 maxlen: 24
115.167.16.0/22 maxlen: 24
115.167.56.0/22 maxlen: 24
115.167.60.0/22 maxlen: 24
115.167.104.0/22 maxlen: 24
115.167.112.0/22 maxlen: 24
115.167.116.0/22 maxlen: 24
115.167.120.0/22 maxlen: 22
175.110.68.0/22 maxlen: 24
175.110.72.0/22 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.84.0/22 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.104.0/22 maxlen: 24
175.110.111.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3755 (0xeab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 20 12:56:27 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6582e47b-15cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c6:3c:de:b4:d1:e9:00:40:12:03:ab:2e:6b:
fe:de:a8:c3:c7:a6:a1:ff:62:a1:89:79:a0:ec:ca:
4a:58:ec:10:f0:0a:16:44:0a:ef:23:60:9e:fa:7c:
90:8e:3c:8e:9b:46:b9:d4:66:8b:2c:11:eb:2a:9b:
c7:01:e6:77:8c:a6:4f:db:67:ba:98:e7:95:a8:47:
a5:d6:6e:7c:b0:1f:78:54:e2:27:26:04:eb:fd:83:
94:8d:bd:21:84:b4:44:00:c2:57:e4:19:5f:e8:d2:
90:4e:1b:d3:1f:0c:9d:25:05:20:be:e4:f4:61:ef:
94:39:0f:4e:02:1f:1e:ce:5c:a0:8f:62:50:65:84:
91:05:98:2b:4d:51:3d:20:02:11:d0:a5:9c:3c:0f:
e9:12:41:2a:52:4b:ba:0e:13:91:89:86:5a:34:11:
ba:10:12:ca:07:74:b9:4e:e5:c3:fd:92:6e:ca:b0:
05:7c:79:69:06:bf:b6:22:14:71:3d:3d:75:dd:73:
56:cd:0f:10:58:18:31:da:b9:bf:11:80:96:fe:fb:
3c:56:a7:34:b8:81:9b:34:02:2a:5a:47:af:44:56:
5a:a0:31:3f:e1:2c:ee:21:83:a4:f5:4f:e1:a1:93:
1b:4d:36:f5:02:35:f3:4b:1a:52:57:1c:b9:69:20:
ab:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:0A:01:A7:59:46:18:AF:72:3F:0F:01:1C:31:27:B6:53:6B:46:A5
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/91E956089F2811EEA8237329C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.1.0/24
115.167.16.0/22
115.167.56.0/21
115.167.104.0/22
115.167.112.0-115.167.123.255
175.110.68.0-175.110.75.255
175.110.80.0-175.110.91.255
175.110.104.0/22
175.110.111.0/24
202.92.20.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:81:e5:8e:5c:d7:99:49:2a:cd:8a:78:6f:e3:6a:fd:ff:5e:
63:8a:31:80:ef:e5:bd:8c:9c:79:f8:d2:c0:fe:be:36:a4:75:
c1:45:90:f5:22:16:54:83:f0:e5:30:19:f9:d4:50:1d:1c:76:
4e:c6:65:44:00:be:07:d5:c5:b8:c9:59:91:5c:33:30:a8:1c:
4e:93:42:9d:3c:49:3f:f5:e4:2d:53:9f:36:35:ff:d3:ba:37:
24:53:ad:f0:c9:97:36:dd:c8:4e:c7:05:46:38:e8:8e:17:39:
59:f8:6b:f4:df:70:82:93:60:a8:93:eb:99:fd:f8:b0:a2:f5:
e3:57:b5:8e:c8:a7:66:cf:ff:13:10:79:08:0a:85:50:a4:64:
2e:ef:f7:8d:20:11:1d:0b:95:60:22:6f:03:ee:d8:ec:ff:63:
47:24:7e:2e:2f:11:70:0f:0b:02:2a:b2:b5:7d:22:29:49:7d:
89:0c:41:0d:46:ed:2a:c8:29:fd:4e:4a:fb:08:04:7d:0d:d4:
ac:7f:c5:48:42:e2:eb:5c:1c:f5:69:0f:1b:b1:dd:98:d7:5c:
8c:86:47:6b:1e:2c:18:1b:8c:71:0a:ee:e6:17:9c:81:83:02:
15:53:7a:08:33:1b:07:07:86:cf:c1:99:35:ff:a5:c8:62:3b:
b5:b8:a4:45
-----BEGIN CERTIFICATE-----
MIIFvzCCBKegAwIBAgICDqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjMxMjIwMTI1NjI3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTgyZTQ3Yi0xNWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAycY83rTR6QBAEgOrLmv+3qjDx6ah/2KhiXmg7MpKWOwQ8AoWRArvI2Ce+nyQ
jjyOm0a51GaLLBHrKpvHAeZ3jKZP22e6mOeVqEel1m58sB94VOInJgTr/YOUjb0h
hLREAMJX5Blf6NKQThvTHwydJQUgvuT0Ye+UOQ9OAh8ezlygj2JQZYSRBZgrTVE9
IAIR0KWcPA/pEkEqUku6DhORiYZaNBG6EBLKB3S5TuXD/ZJuyrAFfHlpBr+2IhRx
PT113XNWzQ8QWBgx2rm/EYCW/vs8Vqc0uIGbNAIqWkevRFZaoDE/4SzuIYOk9U/h
oZMbTTb1AjXzSxpSVxy5aSCrdwIDAQABo4IC4zCCAt8wHQYDVR0OBBYEFKwKAadZ
Rhivcj8PARwxJ7ZTa0alMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvOTFFOTU2MDg5
RjI4MTFFRUE4MjM3MzI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbQYIKwYBBQUHAQcBAf8E
XjBcMFoEAgABMFQDBABzpwEDBAJzpxADBANzpzgDBAJzp2gwDAMEBHOncAMEAnOn
eDAMAwQCr25EAwQCr25IMAwDBASvblADBAKvblgDBAKvbmgDBACvbm8DBADKXBQw
DQYJKoZIhvcNAQELBQADggEBAEyB5Y5c15lJKs2KeG/jav3/XmOKMYDv5b2MnHn4
0sD+vjakdcFFkPUiFlSD8OUwGfnUUB0cdk7GZUQAvgfVxbjJWZFcMzCoHE6TQp08
ST/15C1TnzY1/9O6NyRTrfDJlzbdyE7HBUY46I4XOVn4a/TfcIKTYKiT65n9+LCi
9eNXtY7Ip2bP/xMQeQgKhVCkZC7v940gER0LlWAibwPu2Oz/Y0ckfi4vEXAPCwIq
srV9IilJfYkMQQ1G7SrIKf1OSvsIBH0N1Kx/xUhC4utcHPVpDxux3ZjXXIyGR2se
LBgbjHEK7uYXnIGDAhVTeggzGwcHhs/BmTX/pchiO7W4pEU=
-----END CERTIFICATE-----
Generated at Thu Dec 28 12:37:12 2023 by rpki-client on console-ams.rpki-client.org