Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/9624FD9EFFAA11ED81F4244CC4F9AE02.roa
File: 9624FD9EFFAA11ED81F4244CC4F9AE02.roa (raw, json)
Hash identifier: l8g6K/9npaHd8oeKILZSEymn95SiFi3P5NGCdDYAmeg=
Subject key identifier: 14:C1:13:32:BA:B6:4A:15:E0:34:BD:FF:88:E3:8D:ED:D4:7E:7B:76
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0CD8
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/9624FD9EFFAA11ED81F4244CC4F9AE02.roa
Signing time: Mon 28 Aug 2023 15:47:12 +0000
ROA not before: Mon 28 Aug 2023 15:47:12 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 43.254.12.0/22 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
113.203.249.0/24 maxlen: 24
113.203.251.0/24 maxlen: 24
115.167.68.0/22 maxlen: 24
115.167.108.0/22 maxlen: 24
175.110.76.0/22 maxlen: 24
175.110.92.0/22 maxlen: 24
175.110.98.0/24 maxlen: 24
180.178.151.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3288 (0xcd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Aug 28 15:47:12 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=64ecc180-05ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3a:be:e7:c9:ca:2c:1c:11:15:2d:aa:e2:fe:
a3:cb:0d:e6:0c:c6:11:ac:ae:5e:d5:61:4e:62:71:
3a:f4:6e:cc:01:08:85:4d:27:7d:ed:ca:0b:dd:6e:
4f:f9:c2:ac:24:9d:f5:45:2f:9a:8a:fd:51:29:08:
e9:fb:13:91:15:df:1a:f8:1e:f3:ce:c9:1d:3a:1f:
78:71:fd:04:0e:be:cd:06:00:b4:72:2e:ff:f4:5e:
95:c7:1f:bb:eb:0a:31:43:98:19:88:6f:97:3f:bf:
46:4a:32:1f:75:85:40:93:f7:9b:44:47:27:9f:03:
87:46:e8:bb:36:fe:ff:b2:48:b2:a5:96:c5:3a:a4:
0a:9e:76:de:f1:5a:fd:4c:01:47:0c:e2:34:d2:81:
de:55:ce:ed:82:48:c3:f9:c7:e7:44:6b:3b:54:b7:
d7:2e:b1:26:2f:76:ec:f4:bf:b5:2f:6c:13:5d:3d:
3c:28:6d:8c:3d:3a:46:b8:08:bf:34:70:7d:ec:0e:
77:bd:a3:0b:74:08:b5:f1:fc:3f:38:65:68:ac:2a:
a8:60:20:5a:e1:48:75:4a:a4:2b:f5:1d:a4:d6:ac:
36:88:9e:99:0f:5d:55:e1:3a:56:3b:0c:ce:20:72:
b6:4c:81:36:58:1b:38:3d:38:15:cb:07:f8:31:f4:
56:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C1:13:32:BA:B6:4A:15:E0:34:BD:FF:88:E3:8D:ED:D4:7E:7B:76
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/9624FD9EFFAA11ED81F4244CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.254.12.0/22
113.203.225.0/24
113.203.248.0/23
113.203.251.0/24
115.167.68.0/22
115.167.108.0/22
175.110.76.0/22
175.110.92.0/22
175.110.98.0/24
180.178.151.0/24
223.29.236.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
03:3c:cd:83:37:1a:3e:2d:36:e4:bc:a7:6b:a0:b6:8c:b6:6d:
e5:53:76:04:52:4a:be:2b:57:96:19:98:e2:8d:eb:8f:37:36:
f6:6e:dc:1a:68:4d:e7:12:b7:9c:eb:b0:5d:ae:88:54:f9:5e:
3c:b8:70:76:91:40:67:a5:42:ad:27:85:0a:18:40:9d:de:36:
42:dc:74:29:af:a4:49:45:d5:07:c4:ca:c0:3d:d1:2e:e0:a3:
c8:22:64:60:d8:c4:2b:01:4c:e8:f0:78:38:0a:bf:ed:3d:64:
28:d1:73:9a:c9:f3:d0:5a:31:44:87:dd:af:af:73:24:ec:87:
de:ee:07:41:29:8a:7f:89:9b:3e:40:83:f8:d3:2f:bc:9a:d9:
e3:09:66:af:f6:dd:99:9f:2a:91:98:ab:1d:63:04:6e:2e:a4:
c1:cc:40:c8:29:e7:d4:36:02:02:15:e4:44:07:06:a0:8f:48:
14:e3:d0:70:c7:75:32:54:3c:40:ab:25:90:2e:b4:ad:ec:5c:
de:8e:ee:79:18:ae:29:94:90:81:70:79:01:e1:47:1b:f0:e9:
8f:36:66:26:64:3b:bf:4c:04:b8:19:8f:55:b8:e2:ec:f7:7a:
5d:d0:43:26:91:4c:81:dd:98:8c:53:95:36:4b:b1:c9:33:a9:
37:7d:15:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 28 15:16:01 2023 by rpki-client on console-ams.rpki-client.org