Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A6319136981411EE80760936C4F9AE02.roa
File: A6319136981411EE80760936C4F9AE02.roa (raw, json)
Hash identifier: Ni/XsL4EXvdvlI+s8fao4Jwwm5xX5ZMbAjto2s4+3ac=
Subject key identifier: 0A:F5:B9:F4:E9:65:DE:17:98:21:90:EB:6C:1F:73:15:CA:CA:F2:56
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0E40
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A6319136981411EE80760936C4F9AE02.roa
Signing time: Mon 11 Dec 2023 11:05:21 +0000
ROA not before: Mon 11 Dec 2023 11:05:21 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 113.203.211.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.214.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
180.178.140.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.151.0/24 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.164.0/24 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Jan 2024 13:16:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3648 (0xe40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 11 11:05:21 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6576ecf1-6879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:55:9f:58:36:ff:ec:f4:77:0f:e4:0a:09:5e:
8b:2d:24:67:02:05:66:25:51:bd:c2:06:9d:b2:1a:
06:83:89:99:64:3d:32:86:7f:68:7a:61:cd:7a:4d:
28:00:1b:a6:84:a1:b7:d9:a8:85:80:6b:ec:7f:7d:
b5:04:3f:74:31:88:26:7c:95:9f:bc:0d:fe:54:fa:
04:7d:82:e9:1b:d8:3b:57:81:87:63:60:48:ae:dd:
9f:65:d9:a1:82:00:20:68:ec:22:a8:3a:e3:c6:c7:
34:51:53:6a:2d:e3:de:15:02:0f:5e:19:f7:61:cb:
63:27:87:2a:69:37:6c:c4:2f:49:1c:cb:9f:9d:33:
ab:19:c6:7c:3a:0f:0d:ab:7e:a1:48:d7:f3:f6:5f:
a9:ad:5b:d7:94:9b:42:67:bf:22:6e:8d:68:4f:7f:
2e:57:11:72:0b:8d:f3:d9:d4:89:13:9f:d5:f6:e5:
8e:c7:75:18:26:31:46:16:7f:e6:b5:e3:1a:ab:7e:
3d:d6:68:fc:f9:fd:cc:ac:51:ad:bf:77:e9:04:ae:
46:93:11:56:24:12:28:05:e8:e9:24:a3:c3:95:78:
71:51:cc:be:45:dd:13:0a:f2:c1:8e:17:a7:e5:cd:
3c:e7:b2:a6:e3:8e:59:c1:fa:de:2a:8f:70:9d:49:
cb:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:F5:B9:F4:E9:65:DE:17:98:21:90:EB:6C:1F:73:15:CA:CA:F2:56
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A6319136981411EE80760936C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.211.0-113.203.212.255
113.203.214.0/23
113.203.219.0/24
113.203.222.0/24
113.203.227.0/24
113.203.243.0/24
180.178.140.0/24
180.178.148.0/24
180.178.151.0/24
180.178.161.0/24
180.178.164.0/24
180.178.168.0/24
180.178.171.0/24
180.178.190.0/24
Signature Algorithm: sha256WithRSAEncryption
40:6e:44:3b:49:0f:16:82:70:e8:58:da:3e:fe:e5:20:81:d8:
33:97:e0:ad:d8:99:a9:c7:11:55:b3:7a:67:62:0f:8a:06:72:
69:5d:a0:64:fb:f8:34:34:31:3b:82:20:61:81:7b:5e:40:6a:
1f:fe:a6:80:35:5e:b5:c5:32:ae:b2:89:22:77:2d:af:aa:a1:
30:a9:f2:04:08:57:5d:1d:7c:82:dd:f0:79:5b:c7:a9:9f:14:
42:ee:1e:b0:25:8e:b3:b2:44:b7:a2:f7:8a:a3:c4:75:c4:4f:
28:bb:4b:b7:63:e2:9c:ae:f5:ce:57:3d:1d:39:e4:c6:30:2d:
79:e6:06:f5:83:1e:ea:37:44:75:46:19:ed:f5:70:ff:50:41:
65:91:f3:84:50:94:e3:05:1f:83:37:2c:98:16:d4:5c:3d:bd:
a4:35:34:2c:3a:9e:10:8b:15:a2:3b:27:13:48:fe:b7:44:22:
53:b9:19:61:cd:e2:b4:de:b6:60:4c:34:b0:56:ad:f0:ef:26:
9d:dc:c3:0a:9b:16:08:07:14:5c:82:df:c9:0e:7c:ae:b5:86:
8e:b1:2c:9c:7c:88:9b:db:3d:c0:85:e5:2d:b3:58:fc:70:82:
a5:9b:45:5c:d3:9b:23:4a:a4:ee:38:08:48:0c:07:1c:0d:9f:
bd:59:07:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 19 18:27:41 2024 by rpki-client on console-fra.rpki-client.org