Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/99386508982E11EE8F7E393DC4F9AE02.roa
File: 99386508982E11EE8F7E393DC4F9AE02.roa (raw, json)
Hash identifier: TcOeIBY239sTOXoYn6/e+Ajoz0MYb5t7yCZjy86O4HQ=
Subject key identifier: 70:79:99:D7:0B:8B:56:B9:4F:8D:42:C8:E7:5E:AD:C6:6F:F6:6F:DA
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0E44
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/99386508982E11EE8F7E393DC4F9AE02.roa
Signing time: Mon 11 Dec 2023 14:07:21 +0000
ROA not before: Mon 11 Dec 2023 14:07:21 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.178.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3652 (0xe44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 11 14:07:21 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65771798-30f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:31:9e:dd:de:b7:21:dc:f5:05:1b:e6:e5:9b:
37:de:ee:9b:4b:78:9e:aa:05:ac:44:63:32:29:d6:
c9:42:4d:21:bb:0d:f7:12:93:02:2e:fa:31:52:13:
ac:72:56:48:ec:63:ac:ce:14:e8:e2:78:76:b4:87:
0f:7d:26:9a:d4:52:de:92:d8:b4:1f:c9:df:15:47:
95:1b:f9:b2:09:dc:71:90:14:ef:6e:e4:95:80:8b:
d7:bb:21:30:82:69:de:16:e2:ac:32:a7:06:8f:71:
06:e9:38:c1:1b:d7:7f:3f:d0:3e:91:7b:d7:1b:6f:
de:5a:ba:24:31:d0:2f:bf:dd:a7:ea:43:e2:bf:b9:
ab:c2:dc:09:ec:3d:66:47:00:c0:1e:df:29:e3:96:
cf:6e:dd:9d:c3:48:7b:2a:78:bc:85:31:41:3d:e4:
ed:ce:90:1a:13:c1:06:c6:e9:d3:d6:fa:a0:4e:08:
f5:b9:73:c9:ab:c3:67:01:2c:f1:47:ae:ec:f0:94:
50:da:9e:31:d5:70:53:7b:43:45:41:65:90:23:d2:
99:14:7a:6c:47:f4:fb:c8:d1:a1:40:5b:5a:51:e8:
0e:91:97:2c:ca:75:57:63:02:20:8d:32:67:03:56:
ef:62:90:a1:19:f2:d8:70:65:50:1f:28:82:64:f7:
78:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:79:99:D7:0B:8B:56:B9:4F:8D:42:C8:E7:5E:AD:C6:6F:F6:6F:DA
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/99386508982E11EE8F7E393DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
113.203.218.0/24
113.203.228.0/24
113.203.234.0-113.203.240.255
113.203.253.0/24
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.147.0/24
180.178.149.0/24
180.178.160.0/24
180.178.162.0/24
180.178.172.0/24
180.178.174.0-180.178.176.255
180.178.178.0/24
180.178.180.0/22
180.178.188.0/24
180.178.191.0/24
223.29.226.0-223.29.228.255
223.29.231.0/24
223.29.235.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
9b:80:0b:83:68:f7:2f:37:79:06:4f:be:0f:ef:29:97:35:67:
0f:7f:5d:2f:1b:4c:ed:4b:a2:1c:1f:8e:c3:6b:c5:1a:45:d0:
c6:49:ad:03:ac:b5:c0:81:32:67:50:2e:de:f0:88:d5:c0:69:
b5:bc:40:6e:94:b8:5b:af:38:f8:ee:83:22:65:6f:0a:aa:4c:
37:2a:c8:9f:22:73:59:a3:54:c2:cc:44:a2:a3:2f:b0:4a:10:
b3:c6:4c:45:c4:7c:5c:64:02:a8:c6:ae:a2:6f:fa:72:7c:f6:
22:15:c6:a8:47:5e:63:8e:98:3e:a7:96:30:b1:98:20:19:ea:
30:80:c8:cb:b6:c0:10:72:04:84:92:63:dd:4c:b9:3a:4f:2d:
69:d1:bb:d4:3b:ce:d3:f0:f4:be:2f:2a:b5:35:2b:97:19:af:
2d:27:2a:ab:f0:ff:49:9d:7d:78:4e:c3:d8:6b:42:da:9e:74:
62:1c:fc:f6:d6:14:08:27:86:13:1a:b6:8c:bd:81:e3:cc:c9:
c2:b5:58:3a:57:9b:9b:e3:07:61:ad:e9:d5:ed:28:39:f9:c5:
2b:13:51:f3:9a:3c:80:f5:e0:d5:5a:60:18:00:1a:af:46:62:
3a:57:97:5b:0e:6c:22:65:31:0b:78:41:ae:7b:46:63:f2:55:
ec:25:e6:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 12 12:02:47 2023 by rpki-client on console-ams.rpki-client.org