Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/9213CEB456E011EEA2652F59C4F9AE02.roa
File: 9213CEB456E011EEA2652F59C4F9AE02.roa (raw, json)
Hash identifier: lkuhO2JsO0L+r2aLKFeUhttoNgXfZvt5evYUEDz7tI4=
Subject key identifier: 4D:14:7F:E1:08:B6:05:A8:71:01:40:25:A8:17:90:E4:C0:8D:7A:17
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0D36
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/9213CEB456E011EEA2652F59C4F9AE02.roa
Signing time: Tue 19 Sep 2023 11:35:02 +0000
ROA not before: Tue 19 Sep 2023 11:35:02 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
113.203.212.0/22 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.229.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
113.203.254.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.164.0/22 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.173.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.178.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.185.0/24 maxlen: 24
180.178.187.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.229.0/24 maxlen: 24
223.29.230.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3382 (0xd36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Sep 19 11:35:02 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65098766-7cc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:75:d2:b7:34:00:c8:1a:ef:4b:78:a8:84:8f:
4b:90:0a:92:4f:65:68:59:4a:46:04:32:15:ae:ed:
7a:4b:b2:3a:6a:3a:e3:13:d2:4f:57:92:ad:b9:9c:
59:18:6b:24:25:71:b0:eb:7f:81:3e:e6:49:75:9a:
8f:fe:9c:1d:f5:20:1d:f4:76:b7:66:6f:35:ae:ba:
2b:0f:19:07:ca:12:e1:5b:d5:69:e4:0e:90:2e:4b:
05:bd:cc:09:43:63:bc:98:25:5e:67:50:d2:35:f3:
a9:47:8d:4d:86:0b:b8:be:16:e0:44:a4:94:a9:8e:
55:f3:ad:31:db:11:17:4b:ef:aa:6d:f2:e5:d2:49:
7c:04:78:b9:84:16:a7:a0:ea:6d:86:f3:b8:69:d3:
61:5b:63:ca:97:bd:41:4e:22:6d:de:87:af:cf:b6:
1b:d4:9c:65:e5:08:d9:da:9e:85:4c:c5:45:92:94:
7e:a4:6d:c9:42:68:28:2f:56:da:7d:0c:74:6f:25:
53:66:bf:cb:d7:4f:6c:51:b6:b1:91:05:60:b4:8f:
dc:70:a2:f6:c5:5d:25:9d:94:c4:7b:55:b5:1f:b6:
26:d7:46:f4:a2:8e:94:aa:f8:f1:bc:ec:d3:9b:d8:
83:c1:83:ec:e2:45:ce:c9:95:db:6a:65:e8:b4:c2:
e4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:14:7F:E1:08:B6:05:A8:71:01:40:25:A8:17:90:E4:C0:8D:7A:17
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/9213CEB456E011EEA2652F59C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
113.203.212.0-113.203.216.255
113.203.218.0/24
113.203.220.0/24
113.203.222.0/24
113.203.227.0-113.203.231.255
113.203.234.0-113.203.240.255
113.203.253.0-113.203.254.255
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.148.0/23
180.178.161.0-180.178.162.255
180.178.164.0/22
180.178.172.0-180.178.176.255
180.178.178.0/24
180.178.180.0/22
180.178.185.0/24
180.178.187.0-180.178.191.255
223.29.226.0-223.29.231.255
223.29.235.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:2d:25:e1:6a:c3:fb:e7:b0:42:ee:2e:eb:53:aa:70:8a:fb:
4f:09:4f:c7:64:e6:a4:a8:3d:6b:e5:5a:35:a2:04:16:f9:62:
50:45:fb:92:51:00:bc:f4:fb:33:b3:52:fd:70:26:17:c2:9e:
37:5c:1f:08:62:8b:11:44:67:0c:23:f2:f9:83:08:e1:80:82:
55:43:83:92:10:7d:07:33:43:4c:6b:4e:2f:6d:d0:bb:9f:0f:
01:f4:fd:e2:1f:4a:f7:73:37:3e:df:4c:9c:d0:9c:fa:3b:4e:
70:da:36:9a:e4:bd:47:4c:78:ff:45:89:1f:fc:f7:bb:c3:fc:
a7:b8:8a:2a:fa:33:6a:71:a3:92:16:42:d4:96:04:9d:fb:73:
af:6f:a5:17:48:bd:a4:67:07:1d:18:91:84:be:e1:71:71:de:
b9:2d:9a:c8:fa:e8:68:0e:93:72:b9:a3:8d:a3:2d:ce:00:b3:
23:1f:01:09:22:57:0a:f1:f2:1f:9f:fa:36:14:af:30:86:9b:
0b:c6:18:a3:c0:09:90:2c:97:e2:07:5b:10:4f:5b:fe:4f:65:
f2:e4:cb:9a:c0:2e:e4:c2:2f:9b:23:ba:56:5e:fc:df:a3:8b:
48:01:f7:51:36:b0:b7:1b:b7:15:77:99:97:49:36:1e:8c:50:
ce:8a:bd:81
-----BEGIN CERTIFICATE-----
MIIGMDCCBRigAwIBAgICDTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjMwOTE5MTEzNTAyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTA5ODc2Ni03Y2M4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEApXXStzQAyBrvS3iohI9LkAqST2VoWUpGBDIVru16S7I6ajrjE9JPV5KtuZxZ
GGskJXGw63+BPuZJdZqP/pwd9SAd9Ha3Zm81rrorDxkHyhLhW9Vp5A6QLksFvcwJ
Q2O8mCVeZ1DSNfOpR41Nhgu4vhbgRKSUqY5V860x2xEXS++qbfLl0kl8BHi5hBan
oOpthvO4adNhW2PKl71BTiJt3oevz7Yb1Jxl5QjZ2p6FTMVFkpR+pG3JQmgoL1ba
fQx0byVTZr/L109sUbaxkQVgtI/ccKL2xV0lnZTEe1W1H7Ym10b0oo6UqvjxvOzT
m9iDwYPs4kXOyZXbamXotMLk8QIDAQABo4IDVDCCA1AwHQYDVR0OBBYEFE0Uf+EI
tgWocQFAJagXkOTAjXoXMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvOTIxM0NFQjQ1
NkUwMTFFRUEyNjUyRjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgd0GCCsGAQUFBwEHAQH/
BIHNMIHKMIHHBAIAATCBwAMEAGcLPDAMAwQCccvUAwQAccvYAwQAccvaAwQAccvc
AwQAccveMAwDBABxy+MDBANxy+AwDAMEAXHL6gMEAHHL8DAMAwQAccv9AwQAccv+
AwQBtLKAMAwDBAK0soQDBAK0sogDBAG0spQwDAMEALSyoQMEALSyogMEArSypDAM
AwQCtLKsAwQAtLKwAwQAtLKyAwQCtLK0AwQAtLK5MAwDBAC0srsDBAa0soAwDAME
Ad8d4gMEA98d4AMEAN8d6zANBgkqhkiG9w0BAQsFAAOCAQEAjS0l4WrD++ewQu4u
61OqcIr7TwlPx2TmpKg9a+VaNaIEFvliUEX7klEAvPT7M7NS/XAmF8KeN1wfCGKL
EURnDCPy+YMI4YCCVUODkhB9BzNDTGtOL23Qu58PAfT94h9K93M3Pt9MnNCc+jtO
cNo2muS9R0x4/0WJH/z3u8P8p7iKKvozanGjkhZC1JYEnftzr2+lF0i9pGcHHRiR
hL7hcXHeuS2ayProaA6TcrmjjaMtzgCzIx8BCSJXCvHyH5/6NhSvMIabC8YYo8AJ
kCyX4gdbEE9b/k9l8uTLmsAu5MIvmyO6Vl7836OLSAH3UTawtxu3FXeZl0k2HoxQ
zoq9gQ==
-----END CERTIFICATE-----
Generated at Wed Sep 20 20:19:21 2023 by rpki-client on console-fra.rpki-client.org