Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A3AB3D9264D811EDA41EF047C4F9AE02.roa
File: A3AB3D9264D811EDA41EF047C4F9AE02.roa (raw, json)
Hash identifier: oLTHPMR11OTxJkC3DiVqa8XXmLxdcz+Ploiw08CJNFs=
Subject key identifier: A6:70:C4:7E:07:11:A1:1B:88:55:13:66:7D:60:2F:4A:BD:09:A1:60
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0BB4
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A3AB3D9264D811EDA41EF047C4F9AE02.roa
Signing time: Wed 24 May 2023 23:25:17 +0000
ROA not before: Wed 24 May 2023 23:25:17 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 136030
IP address blocks: 103.151.26.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
115.167.50.0/24 maxlen: 24
115.167.64.0/24 maxlen: 24
115.167.65.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
115.167.67.0/24 maxlen: 24
115.167.76.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
115.167.125.0/24 maxlen: 24
180.178.130.0/24 maxlen: 24
180.178.131.0/24 maxlen: 24
180.178.143.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2996 (0xbb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: May 24 23:25:17 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=646e9cdc-e02b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:55:d2:a7:98:9c:8a:7c:4c:a9:2a:f3:d2:df:
d1:41:63:66:5e:c0:de:8d:d8:15:77:b6:ff:aa:79:
20:80:0e:06:b1:30:17:b7:c7:a1:4d:bb:10:12:df:
e9:49:12:18:89:a4:a2:63:7c:58:e6:44:fd:a1:61:
0c:a8:2c:43:81:7e:58:45:f1:64:4e:63:71:60:89:
64:d6:99:4f:4c:ca:41:8c:6d:ac:8f:c7:c0:b3:0a:
6f:a7:1f:28:75:c1:b5:4f:39:5d:dd:9c:2b:79:9a:
d2:7b:71:3c:c1:cb:23:5b:b1:8a:d6:b1:77:c3:f8:
96:2e:f7:43:36:7a:bb:72:af:12:5e:4d:00:1d:b7:
9e:ff:93:1c:c5:f1:96:d0:7b:65:f7:81:2a:2c:89:
82:63:6a:0b:e7:51:66:71:4c:39:98:24:92:9a:de:
e0:da:3f:78:3a:1a:d6:de:93:c4:d2:3f:ee:76:53:
54:3d:3d:3d:c7:6c:fe:88:95:c3:40:0d:21:17:53:
97:45:36:a3:67:8c:16:71:17:a2:53:75:92:69:5c:
eb:74:aa:ca:b3:2b:d7:e1:5e:e2:42:65:11:ef:d5:
13:16:4c:ea:a6:4e:d9:2d:9c:44:bb:b6:5a:51:28:
86:d9:99:36:26:7c:52:1c:a8:f8:30:82:64:a7:11:
e5:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:70:C4:7E:07:11:A1:1B:88:55:13:66:7D:60:2F:4A:BD:09:A1:60
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A3AB3D9264D811EDA41EF047C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.26.0/24
113.203.241.0/24
115.167.50.0/24
115.167.64.0/22
115.167.76.0/24
115.167.124.0/23
180.178.130.0/23
180.178.143.0-180.178.144.255
180.178.169.0/24
223.29.225.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:db:96:8f:1b:b5:b6:a7:9f:c7:ba:c7:e7:de:50:05:bb:d5:
33:9a:47:26:d3:a5:90:cb:df:08:bd:b6:81:85:07:a1:86:bc:
68:ca:2f:2e:3b:17:06:04:60:fa:f6:c7:48:54:ad:75:c7:58:
f3:c8:39:59:43:2c:28:3d:43:8c:e6:5a:bd:0d:fb:a1:5e:65:
6b:5c:8e:05:68:04:93:d3:e9:82:5a:aa:fd:4b:57:37:19:e8:
5c:33:d0:ec:57:5f:7d:32:46:19:79:8f:63:af:7a:98:e8:39:
60:f4:6d:b4:80:25:03:bd:cf:44:13:30:d1:53:b7:8c:7c:30:
5a:97:70:98:6d:a8:08:65:aa:0a:e8:b0:f3:92:0c:5e:e5:8d:
73:34:3d:08:b4:e0:e5:a3:2a:ba:0d:95:5b:5c:37:b4:e5:b6:
98:b3:78:9d:e6:73:e9:44:ee:77:25:b6:df:9f:d6:80:98:e5:
4f:51:12:ae:db:19:c9:d8:d5:8d:83:a8:2a:f3:97:c6:f9:4a:
d6:e2:e1:58:14:19:6e:cc:e8:de:7a:d7:3e:88:52:eb:64:91:
1d:33:8b:ab:d8:8f:d1:67:6f:ff:d8:e5:bd:6f:8a:85:96:8c:
e1:06:72:30:1c:ef:91:4e:38:8b:a7:ad:7e:52:d4:ba:7f:d5:
a7:d9:af:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:12 2023 by rpki-client on console-fra.rpki-client.org