Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A62516F8999611EEAD90FA47C4F9AE02.roa
File: A62516F8999611EEAD90FA47C4F9AE02.roa (raw, json)
Hash identifier: EjjGwroNJLB0qX3orCUVW3KH0Srqbv0+R3JlsQHKBuE=
Subject key identifier: 07:C2:B0:8C:F1:7F:67:35:E1:B1:49:F5:D9:79:68:05:6E:A6:C6:64
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0E5B
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A62516F8999611EEAD90FA47C4F9AE02.roa
Signing time: Thu 14 Dec 2023 09:15:46 +0000
ROA not before: Thu 14 Dec 2023 09:15:46 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.152.0/22 maxlen: 24
180.178.156.0/22 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.178.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3675 (0xe5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 14 09:15:46 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=657ac7c2-038f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e8:38:a7:de:be:96:34:5e:f7:42:c0:14:ed:
7e:7c:9a:17:1b:a8:7e:50:94:7f:06:ad:9c:65:99:
c5:f6:f8:ba:57:6e:a2:13:14:b8:5b:af:be:56:b9:
9b:3e:b2:5a:a5:8c:d8:75:90:e5:2d:29:46:ca:d2:
0c:a7:97:be:dc:e3:db:40:b6:cc:83:3f:01:c3:4f:
4b:b4:a9:68:e7:7b:e1:52:a2:4e:5a:28:21:ac:40:
84:cd:ba:48:a8:92:38:ff:84:95:0e:fc:b5:c3:b0:
fd:ec:96:3e:5f:2d:84:72:8e:41:d6:b6:87:d4:bc:
c2:14:a6:a7:cc:64:a2:6d:f0:96:85:83:38:f4:94:
19:94:9b:cc:59:86:bd:1e:9c:62:57:08:a1:9b:38:
28:3c:5f:e6:b6:21:11:0b:9f:95:98:75:f6:19:a5:
ac:4c:65:9a:dd:b3:ab:73:ac:44:be:1a:4c:d6:d3:
e0:a8:36:89:fc:fd:42:f2:dc:3b:81:cd:cd:01:06:
be:4a:4e:01:6e:b8:1a:ae:d3:33:61:75:9d:d2:a6:
68:ef:5f:73:cd:63:86:e0:1d:81:48:b7:4b:93:4f:
87:36:f0:9b:3e:e6:14:40:7f:df:27:75:d3:73:4d:
30:a1:b3:4e:08:75:22:a9:9b:d9:4c:7b:7e:eb:44:
38:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C2:B0:8C:F1:7F:67:35:E1:B1:49:F5:D9:79:68:05:6E:A6:C6:64
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A62516F8999611EEAD90FA47C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
113.203.218.0/24
113.203.228.0/24
113.203.234.0-113.203.240.255
113.203.253.0/24
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.147.0/24
180.178.149.0/24
180.178.152.0-180.178.160.255
180.178.172.0/24
180.178.174.0-180.178.176.255
180.178.178.0/24
180.178.180.0/22
180.178.191.0/24
223.29.226.0-223.29.228.255
223.29.231.0/24
223.29.235.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
b4:e2:ed:6e:27:28:d4:63:40:ea:0f:70:ec:1c:aa:f3:84:2b:
d8:a7:a4:fa:94:ed:4f:8c:af:4c:2e:b8:41:3d:f8:76:7a:72:
69:29:f1:9b:79:42:25:e5:b5:93:be:93:4a:28:87:0f:fa:0f:
64:61:46:d3:17:ad:92:07:fa:0f:cd:ce:66:9e:6e:e1:7b:93:
8d:54:47:09:e2:3a:7d:20:c4:1f:68:72:49:70:6d:59:9a:aa:
12:77:d5:e0:71:29:cc:70:ea:74:e9:8d:2a:98:71:d4:9f:d0:
a4:e6:1b:b2:ad:b7:7e:27:00:34:c0:76:4d:e0:2d:dd:38:c5:
17:b5:e3:a0:ca:9d:cb:a0:46:4d:ef:99:66:8c:a7:74:07:9b:
ad:e3:bb:9e:55:5e:2b:89:90:e2:71:c8:b0:94:dd:ea:41:26:
43:1b:65:23:83:02:7c:94:0f:0b:5b:31:fa:1f:6c:d0:c9:00:
20:c5:c8:ea:64:4b:30:ac:e6:ff:fe:fb:23:06:eb:12:71:1d:
cf:ac:86:e4:ce:08:cb:21:9e:aa:49:c4:e3:9d:a1:68:18:10:
f8:84:e8:37:e0:bf:bc:13:39:28:e6:e2:69:1e:7b:18:3f:d6:
d9:59:bc:14:30:09:30:a1:68:87:14:f2:3a:95:b6:28:ee:ed:
db:ff:a4:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 15 08:36:22 2023 by rpki-client on console-fra.rpki-client.org