Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/97AB8E906F1211EDBADDB383C4F9AE02.roa
File: 97AB8E906F1211EDBADDB383C4F9AE02.roa (raw, json)
Hash identifier: Qh8Fh83zGC8ASkWuh2UaKCAYXCtVsgCy21v+3oho0Cg=
Subject key identifier: 06:42:C4:83:EE:5E:AA:2A:66:D3:7B:4D:D3:8F:84:DA:A3:83:11:4F
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 09F2
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/97AB8E906F1211EDBADDB383C4F9AE02.roa
Signing time: Fri 02 Dec 2022 07:28:29 +0000
ROA not before: Fri 02 Dec 2022 07:28:29 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 38547
IP address blocks: 115.167.2.0/24 maxlen: 24
115.167.72.0/22 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.108.0/22 maxlen: 24
115.167.116.0/22 maxlen: 24
115.167.126.0/24 maxlen: 24
115.167.127.0/24 maxlen: 24
175.110.96.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
202.92.16.0/24 maxlen: 24
202.92.17.0/24 maxlen: 24
202.92.23.0/24 maxlen: 24
202.92.24.0/24 maxlen: 24
202.92.24.32/27 maxlen: 27
202.92.25.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
202.92.27.0/24 maxlen: 24
202.92.28.0/24 maxlen: 24
202.92.29.0/24 maxlen: 24
202.92.30.0/24 maxlen: 24
202.92.31.0/24 maxlen: 24
2400:9560:1::/48 maxlen: 48
2400:9560:5::/48 maxlen: 48
2400:9560:9::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2546 (0x9f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 2 07:28:29 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=6389a91d-3cdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:ae:af:d9:df:1b:87:f0:45:44:44:38:8a:c5:
9d:4c:9e:dc:3d:89:40:d3:ed:16:51:a2:9b:c4:84:
2a:a0:08:1c:a2:0d:86:2b:23:1f:28:38:e3:7b:ac:
ab:83:5f:30:97:16:2e:d8:91:bf:c1:3c:3e:ef:3f:
1a:04:c2:fd:7e:52:25:6f:d7:8f:01:7f:78:a8:35:
1a:cd:3b:52:63:75:58:35:58:38:60:e0:ff:6b:c7:
d8:1e:2a:ba:3c:e5:4f:77:dc:9c:2e:f5:73:ba:54:
75:2e:97:bd:0f:a2:ed:60:bc:19:d1:76:b0:6b:de:
67:71:aa:c2:42:21:9a:a3:a9:16:9a:c7:b1:22:b0:
8d:f1:2b:84:5b:9b:45:13:e2:47:41:c1:36:cb:05:
4f:ee:4f:26:18:48:cd:3d:c3:38:cd:85:00:b0:a8:
6e:95:f0:67:09:8d:6b:0f:e0:8f:9f:fb:fc:ec:2d:
bb:3e:f0:77:a9:df:1c:4e:4c:72:9b:b1:41:00:5e:
81:10:ee:7d:dd:fd:2a:4a:18:c9:ee:c7:72:89:c0:
2d:b0:30:0e:ec:ff:dd:63:ff:49:42:e6:09:56:c2:
b7:8d:f1:82:82:c4:5e:89:89:e4:d7:55:4a:54:32:
99:4b:91:e4:f6:ea:69:78:3b:56:c1:0e:28:34:7a:
02:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:42:C4:83:EE:5E:AA:2A:66:D3:7B:4D:D3:8F:84:DA:A3:83:11:4F
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/97AB8E906F1211EDBADDB383C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.2.0/24
115.167.72.0/22
115.167.78.0/24
115.167.108.0/22
115.167.116.0/22
115.167.126.0/23
175.110.96.0/24
175.110.105.0/24
175.110.111.0/24
202.92.16.0/23
202.92.23.0-202.92.31.255
IPv6:
2400:9560:1::/48
2400:9560:5::/48
2400:9560:9::/48
Signature Algorithm: sha256WithRSAEncryption
5e:90:4d:7a:46:02:11:0b:c8:88:02:a5:1c:a1:35:f5:d3:10:
dc:e4:2b:24:0d:62:e3:1e:33:41:84:dc:8c:55:1b:c9:de:8c:
60:85:f3:ac:17:4b:28:1e:b3:0d:67:68:48:8e:a6:55:1c:75:
3e:49:f2:b1:40:0f:aa:5e:65:64:5d:9f:4a:b9:8e:d9:28:74:
6f:81:cb:7f:84:ec:71:d0:58:e0:75:d9:37:0e:98:20:f8:6a:
08:85:98:f4:59:b6:fa:69:e0:07:73:70:9a:10:c1:39:b8:ec:
d9:34:7c:16:c8:3b:62:0e:2b:a3:69:f5:19:8e:d0:1a:29:7e:
7a:b4:24:28:ee:a1:9d:a0:b0:39:00:6a:e6:d4:f7:0d:23:be:
14:0c:81:09:05:c4:b8:e9:8b:f2:ec:55:ba:00:0e:f0:78:21:
f2:6f:c3:db:c6:04:b8:a4:06:79:a5:77:07:da:71:3d:97:84:
85:02:8e:82:d9:f9:40:98:41:9b:fa:68:7f:bb:dd:ad:94:a2:
ee:a0:13:7a:0d:df:b3:3c:42:4a:b6:86:72:d6:4b:1d:ce:0f:
bf:c4:dd:31:90:b9:1c:25:27:d7:04:d0:0f:a0:53:73:35:2b:
c4:23:1e:98:a8:90:4b:8f:82:02:6b:87:1c:65:2c:59:ea:65:
bf:ae:ab:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:10 2023 by rpki-client on console-ams.rpki-client.org