Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/B02D7842B38C11EEB3409D2BC4F9AE02.roa
File: B02D7842B38C11EEB3409D2BC4F9AE02.roa (raw, json)
Hash identifier: VihtpnMr0T5KtJbTgFmP6rNH0WcpB506e3ay3+VOtJ8=
Subject key identifier: 0E:AF:9A:CD:B0:D3:CE:BE:8F:77:A7:23:02:1B:60:B7:03:F4:14:E6
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0F81
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/B02D7842B38C11EEB3409D2BC4F9AE02.roa
Signing time: Mon 15 Jan 2024 09:58:53 +0000
ROA not before: Mon 15 Jan 2024 09:58:53 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 138241
IP address blocks: 113.203.208.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.250.0/24 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.116.0/22 maxlen: 24
115.167.120.0/22 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
180.178.152.0/21 maxlen: 21
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jan 2024 05:09:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3969 (0xf81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jan 15 09:58:53 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65a501dd-2aa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:aa:11:63:59:9b:88:16:dd:6a:02:88:53:58:
fa:8d:d5:f4:6b:eb:4c:0b:91:ff:24:65:2d:d8:c5:
c1:c2:7d:6e:da:98:c1:da:51:19:80:a3:8d:54:61:
8d:5d:3a:71:11:37:e1:88:5d:78:ae:6e:70:48:ab:
a8:1d:85:a8:b4:44:bd:cc:0b:87:5a:df:1c:b0:3e:
f9:82:dc:6b:c8:8f:94:1b:9a:cf:04:5d:79:cb:92:
db:5c:e4:5c:6a:eb:80:a8:3c:ae:d4:eb:f7:69:f3:
02:e7:89:91:8a:17:09:e0:68:bd:0e:72:eb:31:c5:
8b:cc:0e:cb:8b:82:75:ad:2f:0b:f1:78:8d:6e:b0:
fd:91:5d:62:ae:b6:e9:6b:73:c4:95:f9:ba:0c:4b:
a4:90:ee:e6:f3:a9:9d:74:4f:3a:41:b2:88:89:94:
a8:77:f1:ed:cd:ea:b3:51:8a:99:c2:c5:5e:79:79:
9b:81:4f:02:3d:f4:12:2f:81:ef:c2:89:ad:0f:79:
05:b2:c8:24:25:60:db:0e:32:3a:cd:78:95:04:74:
df:7e:55:09:b9:19:a2:e0:e0:24:14:cb:48:dc:24:
26:ba:08:77:68:19:52:89:6e:2b:aa:c7:34:a7:07:
a0:ad:45:fc:8b:45:7b:6c:79:e7:32:19:a3:7b:3e:
5e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AF:9A:CD:B0:D3:CE:BE:8F:77:A7:23:02:1B:60:B7:03:F4:14:E6
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/B02D7842B38C11EEB3409D2BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.208.0/24
113.203.216.0/24
113.203.231.0/24
113.203.250.0/24
115.167.49.0/24
115.167.78.0/24
115.167.116.0-115.167.123.255
175.110.80.0/22
175.110.88.0/22
175.110.105.0-175.110.106.255
175.110.111.0/24
180.178.152.0/21
202.92.18.0/24
202.92.20.0/24
223.29.227.0/24
223.29.235.0-223.29.236.255
223.29.238.0/24
Signature Algorithm: sha256WithRSAEncryption
65:6f:2e:8b:e7:9a:e9:d3:a7:c5:0b:ed:e7:2b:f0:f2:08:b6:
55:65:38:27:52:8b:a6:8a:8d:e7:52:aa:e4:07:88:d6:5e:8e:
5a:e5:45:05:83:24:a9:84:66:ff:9a:4c:fa:78:aa:af:e0:b4:
6d:df:aa:81:62:cf:f7:47:64:77:4c:f9:e3:f4:86:44:cd:24:
3a:f1:61:13:80:15:9f:1a:3c:27:0a:20:c1:96:f3:fb:16:9e:
34:64:19:cc:07:6c:31:e8:7c:3c:89:e1:41:a0:bd:78:b8:7b:
f1:b1:d7:26:d7:fd:7d:52:d8:aa:17:14:d5:e2:d2:85:dd:d3:
8c:a1:d5:0a:e6:76:66:a1:f9:69:9a:db:d1:33:26:2e:4f:51:
36:b7:24:b6:05:37:8e:41:ae:5f:b8:e4:c5:ac:cf:ed:23:fe:
b2:8a:40:00:5d:ab:53:7d:c1:4f:d7:da:7f:e3:74:ad:ba:27:
3c:e4:f4:0d:3f:3c:7f:c1:85:7b:5a:52:c7:05:b3:cb:42:da:
69:fc:b7:d9:e7:fe:f6:8c:60:ee:31:a4:75:cf:9c:3c:ae:3b:
10:ac:22:95:dd:1f:46:1c:10:c7:d8:f8:61:2f:6b:38:7f:b4:
6c:47:e1:19:f0:09:35:81:1e:b7:52:a4:0f:46:4b:cc:79:d9:
3b:c0:c6:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 16 09:55:52 2024 by rpki-client on console-ams.rpki-client.org