Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/93F2C57AB46211EE94F72B38C4F9AE02.roa
File: 93F2C57AB46211EE94F72B38C4F9AE02.roa (raw, json)
Hash identifier: M93cX/hXbD+uTky5dp7hFjqrrAbb7M1jH7s3bRnLBLU=
Subject key identifier: 3E:4F:A9:C2:BC:E7:07:A1:03:F1:1C:6B:CC:C4:BF:E2:51:9B:E3:08
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0FCE
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/93F2C57AB46211EE94F72B38C4F9AE02.roa
Signing time: Mon 29 Jan 2024 09:56:23 +0000
ROA not before: Mon 29 Jan 2024 09:56:23 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 138241
IP address blocks: 103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.250.0/24 maxlen: 24
115.167.20.0/22 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.116.0/22 maxlen: 22
115.167.120.0/22 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
180.178.152.0/21 maxlen: 21
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jan 2024 11:24:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4046 (0xfce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jan 29 09:56:23 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65b77646-563f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c2:67:98:6c:dd:8a:18:53:72:e1:f3:6d:64:
ba:b3:60:4f:22:fa:a0:1f:5f:4b:f2:f7:12:09:1c:
6c:d2:c3:85:ea:05:ad:45:d6:b5:82:ad:89:8c:14:
a2:fc:18:57:7f:88:da:bc:a9:b0:6b:74:be:23:cf:
c1:19:7b:b1:b2:be:3f:71:9c:9a:33:61:f8:a3:e7:
d4:fb:21:34:e7:3d:ed:84:94:cb:99:24:ad:8a:3f:
05:8c:ca:ee:63:63:7d:c8:5d:d7:e3:63:02:0d:ee:
c2:a8:eb:76:ed:fc:db:d4:40:4b:e9:4f:c4:a5:93:
a0:b7:38:7c:b6:41:6c:44:8e:d3:d8:1d:f2:05:69:
8d:c8:93:ec:85:fe:06:32:61:4f:97:c8:07:46:da:
2e:83:a1:b9:81:2c:a7:dc:f6:2a:e6:5a:b3:c5:ef:
88:38:a6:b2:c6:03:79:fa:4a:f4:d5:12:7b:19:f7:
60:85:d5:c5:b2:51:11:2f:fc:64:57:33:f1:95:0e:
f9:37:ef:96:aa:47:5b:bd:0d:97:47:ce:2b:31:a2:
5f:12:f1:ea:00:06:85:81:e3:02:5f:10:19:75:99:
aa:5b:64:56:e1:05:59:7b:77:b1:26:fd:6a:f9:e3:
af:73:0b:a0:75:07:43:70:dd:df:07:c5:e1:fb:67:
17:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:4F:A9:C2:BC:E7:07:A1:03:F1:1C:6B:CC:C4:BF:E2:51:9B:E3:08
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/93F2C57AB46211EE94F72B38C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
113.203.208.0/24
113.203.216.0/24
113.203.231.0/24
113.203.250.0/24
115.167.20.0/22
115.167.49.0/24
115.167.78.0/24
115.167.116.0-115.167.123.255
175.110.80.0/22
175.110.88.0/22
175.110.105.0-175.110.106.255
175.110.109.0/24
175.110.111.0/24
180.178.152.0/21
202.92.18.0/24
202.92.20.0/24
223.29.227.0/24
223.29.235.0-223.29.236.255
223.29.238.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:83:92:90:56:c9:20:22:88:8a:28:a1:d5:9c:46:5c:54:5a:
e2:c0:3b:c6:6a:52:7c:75:d1:fd:de:51:55:30:9d:3b:d6:63:
a8:be:5f:b1:3c:d5:2c:3d:19:66:e7:06:64:c6:4c:83:bd:cf:
6f:dd:7f:d6:96:91:67:c1:91:e0:5d:f8:fd:97:96:bb:db:6d:
bb:42:df:40:cc:3e:b7:a1:03:90:18:3b:6d:4e:44:ed:09:48:
cc:92:5b:40:ec:e7:24:c6:1c:d2:13:72:f9:42:84:0a:69:1e:
80:a2:71:f7:e1:16:e1:ce:7c:35:d7:c9:17:78:59:53:54:16:
87:26:8a:ee:b3:82:76:5a:3c:e0:20:f9:4e:56:a9:ce:e5:27:
72:1c:11:72:8f:2b:45:29:ed:c5:36:f9:62:38:cc:d0:99:6b:
55:d8:f6:99:d7:55:bf:c1:59:e1:37:93:4b:1a:2e:e2:e5:51:
28:a8:12:96:75:b6:32:0b:bb:ff:34:4c:a9:af:9c:99:51:f4:
a6:b6:f8:23:47:66:cc:8d:c7:3d:d8:8c:40:41:3c:39:64:16:
50:36:05:ea:ab:26:31:0d:8d:bc:0e:9e:da:f6:44:1a:88:7c:
cf:d1:19:8c:99:4d:5d:70:03:37:49:b4:cf:fd:e4:07:95:3d:
6d:3d:9f:31
-----BEGIN CERTIFICATE-----
MIIGADCCBOigAwIBAgICD84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQwMTI5MDk1NjIzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NWI3NzY0Ni01NjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAscJnmGzdihhTcuHzbWS6s2BPIvqgH19L8vcSCRxs0sOF6gWtRda1gq2JjBSi
/BhXf4javKmwa3S+I8/BGXuxsr4/cZyaM2H4o+fU+yE05z3thJTLmSStij8FjMru
Y2N9yF3X42MCDe7CqOt27fzb1EBL6U/EpZOgtzh8tkFsRI7T2B3yBWmNyJPshf4G
MmFPl8gHRtoug6G5gSyn3PYq5lqzxe+IOKayxgN5+kr01RJ7GfdghdXFslERL/xk
VzPxlQ75N++WqkdbvQ2XR84rMaJfEvHqAAaFgeMCXxAZdZmqW2RW4QVZe3exJv1q
+eOvcwugdQdDcN3fB8Xh+2cXLwIDAQABo4IDJDCCAyAwHQYDVR0OBBYEFD5PqcK8
5wehA/Eca8zEv+JRm+MIMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvOTNGMkM1N0FC
NDYyMTFFRTk0RjcyQjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwga0GCCsGAQUFBwEHAQH/
BIGdMIGaMIGXBAIAATCBkAMEAGeXGwMEAHHL0AMEAHHL2AMEAHHL5wMEAHHL+gME
AnOnFAMEAHOnMQMEAHOnTjAMAwQCc6d0AwQCc6d4AwQCr25QAwQCr25YMAwDBACv
bmkDBACvbmoDBACvbm0DBACvbm8DBAO0spgDBADKXBIDBADKXBQDBADfHeMwDAME
AN8d6wMEAN8d7AMEAN8d7jANBgkqhkiG9w0BAQsFAAOCAQEAHIOSkFbJICKIiiih
1ZxGXFRa4sA7xmpSfHXR/d5RVTCdO9ZjqL5fsTzVLD0ZZucGZMZMg73Pb91/1paR
Z8GR4F34/ZeWu9ttu0LfQMw+t6EDkBg7bU5E7QlIzJJbQOznJMYc0hNy+UKECmke
gKJx9+EW4c58NdfJF3hZU1QWhyaK7rOCdlo84CD5TlapzuUnchwRco8rRSntxTb5
YjjM0JlrVdj2mddVv8FZ4TeTSxou4uVRKKgSlnW2Mgu7/zRMqa+cmVH0prb4I0dm
zI3HPdiMQEE8OWQWUDYF6qsmMQ2NvA6e2vZEGoh8z9EZjJlNXXADN0m0z/3kB5U9
bT2fMQ==
-----END CERTIFICATE-----
Generated at Tue Jan 30 16:41:41 2024 by rpki-client on console-fra.rpki-client.org