Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/9B8AC976EFFA11EE8137AC6BC4F9AE02.roa
File: 9B8AC976EFFA11EE8137AC6BC4F9AE02.roa (raw, json)
Hash identifier: aFsc6nQHPjVAlh8D6KL3ZBjLNm6bDM2C48QC9N92VAQ=
Subject key identifier: 7B:AD:25:C2:CD:C2:23:6F:EB:34:98:79:25:70:3C:71:0F:29:DC:56
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1022
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/9B8AC976EFFA11EE8137AC6BC4F9AE02.roa
Signing time: Mon 01 Apr 2024 07:36:53 +0000
ROA not before: Mon 01 Apr 2024 07:36:53 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 136030
IP address blocks: 103.151.26.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
115.167.50.0/24 maxlen: 24
115.167.64.0/24 maxlen: 24
115.167.65.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
115.167.67.0/24 maxlen: 24
115.167.76.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
115.167.125.0/24 maxlen: 24
180.178.130.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Apr 2024 10:39:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4130 (0x1022)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Apr 1 07:36:53 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=660a6414-0f94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9b:48:f6:b7:68:c5:e7:13:4b:6e:42:bd:e6:
8e:06:14:b4:5f:14:d2:9e:d7:e9:d4:ff:de:aa:18:
c3:40:6e:b4:c6:f0:98:96:a4:5a:21:d8:f9:52:e9:
86:d3:2e:91:0c:87:6b:d2:94:2f:de:25:83:e7:30:
fa:dd:a3:8f:b9:80:31:9f:32:f5:86:63:2c:85:1a:
b3:a6:3d:ac:f6:c3:64:96:c5:b4:46:30:48:a0:bb:
27:05:3f:43:17:08:db:5e:e2:9f:1e:b7:f2:b0:1f:
9a:5c:d3:4d:cf:ac:49:de:0b:6d:aa:a2:b4:ff:a0:
e9:37:52:20:65:b6:54:14:d0:7f:7c:8d:1f:df:d6:
75:9c:94:52:0e:1d:9a:dc:77:4b:06:3d:ee:71:f6:
69:ee:e0:03:f6:75:a9:5e:27:67:d8:75:36:2b:ae:
ff:eb:60:c8:5f:db:63:46:c1:d2:b8:f5:d8:d5:f6:
93:2b:c7:df:2e:42:f5:de:e2:3f:27:09:f2:b0:1c:
a8:7c:96:bb:56:1f:1d:b9:d2:f0:9d:e4:6b:5d:08:
a4:40:41:3d:94:ab:77:88:4e:9d:35:3c:67:30:19:
54:e1:cd:12:e2:c3:e4:5f:d0:22:a1:76:1e:29:db:
f0:e4:d2:f4:bd:ca:58:fe:dc:40:72:ff:f8:24:b6:
0e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:AD:25:C2:CD:C2:23:6F:EB:34:98:79:25:70:3C:71:0F:29:DC:56
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/9B8AC976EFFA11EE8137AC6BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.26.0/24
113.203.241.0/24
115.167.50.0/24
115.167.64.0/22
115.167.76.0/24
115.167.124.0/23
180.178.130.0/24
223.29.225.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:9e:a0:cf:f9:88:c4:ac:18:7f:d1:7e:74:e3:00:40:3b:16:
9c:a4:ab:f6:ae:ab:8f:9b:e4:f4:b3:57:bd:c4:dc:f6:ee:89:
4c:27:1d:58:1d:f4:ef:9d:8a:e0:44:ef:34:19:69:3e:29:7a:
7b:05:06:ed:29:9e:c6:f1:e6:41:c3:30:13:58:a5:34:71:2c:
d9:16:a9:b6:75:26:0d:78:cb:ae:81:e5:bd:5e:9d:4a:dc:83:
27:5e:b5:5a:44:d9:7a:e3:90:18:24:40:6e:8c:c1:80:b3:2a:
12:a4:73:0a:7c:0e:48:f3:bc:2a:cd:9a:d3:e3:e3:6e:25:6e:
a1:f7:b7:72:99:8b:8b:62:d8:30:43:ce:fb:a2:e4:02:af:ff:
b3:a0:5d:a1:a8:2a:f8:9d:89:8c:71:c4:70:5e:97:5e:fa:23:
a7:20:89:9a:71:41:a9:57:4c:7c:68:1c:6f:24:d3:66:cc:6e:
b7:52:b4:f7:8c:0a:8b:ed:4a:f4:2d:3a:7d:79:57:47:21:20:
25:bd:f1:16:2d:f9:53:7b:e8:f4:d3:c5:91:67:84:fb:dd:1f:
8f:29:fd:31:5e:c0:d4:a2:94:91:4d:85:ad:8d:73:4f:98:95:
59:90:19:c8:c9:4c:11:ba:8e:6a:7b:95:ae:c1:fe:8e:42:57:
e8:6d:77:f6
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Apr 1 11:23:33 2024 by rpki-client on console-ams.rpki-client.org