Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A49C71664ACB11EDA916F91DC4F9AE02.roa
File: A49C71664ACB11EDA916F91DC4F9AE02.roa (raw, json)
Hash identifier: DwKeRS9Sm19qqUr7gKNoEM5cHjzKTyeXlJ/joSrgmqk=
Subject key identifier: 24:15:9C:55:37:28:B6:86:17:A0:57:32:A7:38:54:09:9A:96:E9:B7
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0989
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A49C71664ACB11EDA916F91DC4F9AE02.roa
Signing time: Wed 19 Oct 2022 05:09:07 +0000
ROA not before: Wed 19 Oct 2022 05:09:07 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 38547
IP address blocks: 115.167.2.0/24 maxlen: 24
115.167.24.0/22 maxlen: 24
115.167.28.0/22 maxlen: 24
115.167.50.0/24 maxlen: 24
115.167.72.0/22 maxlen: 24
115.167.116.0/22 maxlen: 24
115.167.124.0/22 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
175.110.107.0/24 maxlen: 24
202.92.16.0/24 maxlen: 24
202.92.17.0/24 maxlen: 24
202.92.23.0/24 maxlen: 24
202.92.24.0/24 maxlen: 24
202.92.24.32/27 maxlen: 27
202.92.25.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
202.92.27.0/24 maxlen: 24
202.92.28.0/24 maxlen: 24
202.92.29.0/24 maxlen: 24
202.92.30.0/24 maxlen: 24
202.92.31.0/24 maxlen: 24
2400:9560:1::/48 maxlen: 48
2400:9560:5::/48 maxlen: 48
2400:9560:9::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2441 (0x989)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Oct 19 05:09:07 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=634f8673-ae65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:2f:ea:ce:d3:0a:71:f7:be:0d:bd:52:d5:ca:
5f:6a:de:cb:1c:bd:b3:08:bf:2a:ef:1e:46:b0:a2:
7a:68:77:25:ce:1a:af:53:2a:91:19:22:80:b5:41:
69:76:0a:ed:17:4b:05:9c:cb:48:07:3b:95:c8:ca:
9d:be:1a:4c:e1:24:ec:e8:42:99:7a:6b:c6:7d:b9:
ad:6b:51:ba:df:bd:8a:84:b1:71:bc:e8:f4:6c:57:
09:14:d4:40:38:65:f8:ca:cb:01:0c:de:a2:da:af:
95:bc:2f:5d:dd:42:41:a1:9f:66:fa:91:94:da:72:
45:f3:e6:e8:58:e6:dd:b5:d6:d3:d8:03:d4:c9:33:
a1:49:a9:39:b7:40:c8:e2:0d:9f:81:c5:29:7d:ab:
3f:e4:a8:48:8e:32:44:bf:27:7b:ef:5e:e0:46:6b:
8f:97:56:e0:c5:bb:e1:84:fe:03:3e:fc:16:a7:1a:
9d:d0:3f:d0:2b:a7:fd:4c:49:a3:4a:a0:2c:d0:b3:
6e:06:9e:b8:bd:f9:15:91:c5:0e:59:24:30:c9:9d:
9e:8d:96:02:a8:da:82:2c:6b:63:d0:09:83:c7:30:
40:72:42:0f:3d:bf:cd:6a:12:53:2c:de:bc:81:48:
78:d8:04:9e:cf:34:bb:d5:89:5b:5d:53:1d:c4:9f:
95:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:15:9C:55:37:28:B6:86:17:A0:57:32:A7:38:54:09:9A:96:E9:B7
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A49C71664ACB11EDA916F91DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.2.0/24
115.167.24.0/21
115.167.50.0/24
115.167.72.0/22
115.167.116.0/22
115.167.124.0/22
175.110.104.0/22
202.92.16.0/23
202.92.23.0-202.92.31.255
IPv6:
2400:9560:1::/48
2400:9560:5::/48
2400:9560:9::/48
Signature Algorithm: sha256WithRSAEncryption
27:60:a8:99:01:6f:76:97:df:24:31:8d:05:61:69:b0:83:cf:
bd:25:a5:78:62:83:d1:fb:bb:58:13:cd:06:71:b7:fe:c7:79:
15:45:c8:bf:3d:c7:17:59:06:ff:2f:33:53:af:26:f2:20:55:
e1:25:ec:f1:cb:e2:a9:4b:c9:ef:ce:35:b4:56:52:81:06:c8:
6b:98:ba:eb:10:19:fa:1e:97:c7:71:c8:43:d8:47:18:0e:bc:
9a:e7:20:20:8f:23:b4:3b:c9:17:78:68:db:09:4e:b0:66:e8:
36:eb:54:f6:82:f2:eb:a8:99:4f:70:68:7d:e1:f5:9a:4a:0e:
98:ba:75:ca:b0:8e:8c:8a:d6:cf:84:9a:a4:19:8a:90:14:23:
a6:e3:a0:e2:3e:3c:bd:e9:33:00:0a:6f:73:57:62:21:8f:7e:
86:a9:e5:ec:24:6a:0f:c8:c9:13:f8:a3:3c:1f:f1:92:66:a4:
31:82:9e:84:53:3a:56:9e:8f:1f:bb:ef:98:6a:90:15:f2:68:
ef:42:59:eb:0a:cc:d5:fb:fe:b5:ed:e0:21:04:48:70:c7:2d:
8a:84:1f:46:27:4d:5e:10:41:13:b7:ab:42:57:a5:e9:79:4a:
4c:5d:34:8b:77:26:24:10:f2:a2:55:43:74:3a:ca:f2:91:79:
fe:a2:fe:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:12 2023 by rpki-client on console-fra.rpki-client.org