Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/C98CD3AC40D511EE93D2A61EC4F9AE02.roa
File: C98CD3AC40D511EE93D2A61EC4F9AE02.roa (raw, json)
Hash identifier: he0Af5nwY3TJOOvK3RG4+CkDagO9qroQfXg+knF5lps=
Subject key identifier: F7:FB:86:87:C4:6A:F9:99:AA:CF:7E:50:E6:84:11:7D:79:30:13:7D
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0E23
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/C98CD3AC40D511EE93D2A61EC4F9AE02.roa
Signing time: Wed 29 Nov 2023 10:56:36 +0000
ROA not before: Wed 29 Nov 2023 10:56:36 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 115.167.1.0/24 maxlen: 24
115.167.16.0/22 maxlen: 24
115.167.56.0/22 maxlen: 24
115.167.60.0/22 maxlen: 24
115.167.104.0/22 maxlen: 24
115.167.112.0/22 maxlen: 24
115.167.116.0/22 maxlen: 24
175.110.68.0/22 maxlen: 24
175.110.72.0/22 maxlen: 24
175.110.76.0/22 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.84.0/22 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.104.0/22 maxlen: 24
175.110.111.0/24 maxlen: 24
180.178.152.0/21 maxlen: 24
202.92.20.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3619 (0xe23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Nov 29 10:56:36 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=656718e4-7242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1c:68:2f:63:3f:ed:14:a1:89:27:7f:a6:9b:
41:77:98:3b:2c:33:c2:cc:fd:d7:a1:76:7c:79:cf:
d2:1c:9e:c9:6c:2a:a9:1f:bf:f6:79:50:07:67:a5:
e4:67:84:ba:3a:20:ab:9f:90:dc:41:42:2d:de:a2:
d8:23:dd:40:37:90:bb:ba:7d:89:c2:3d:79:b5:04:
7a:af:08:13:1d:c0:13:87:1a:88:3a:ac:b9:27:04:
61:a7:bd:d1:7c:f4:1a:5c:e2:f6:fd:5e:0d:e2:e9:
78:7d:4d:b1:58:79:4c:66:b5:c6:cf:84:ad:22:c1:
ef:61:b6:5c:a6:61:82:20:42:d3:ad:07:4a:d6:97:
14:ce:33:e3:21:7a:7f:a2:76:f2:51:d7:7f:6e:22:
af:b8:27:fc:2e:a5:3e:4a:aa:de:78:f2:bb:d3:18:
d0:8e:85:a2:13:cd:54:49:a4:86:e9:f6:22:27:d9:
2c:b4:fd:df:2f:a1:54:61:01:8e:9f:79:d9:6c:2b:
93:18:d1:30:f5:19:dc:70:d7:cf:66:4a:47:8c:29:
d6:f4:79:b0:68:0e:c5:28:ff:3d:f5:a9:1b:7a:5e:
a1:27:27:4d:0b:cc:3b:75:e5:53:6a:f8:68:ba:0a:
19:03:27:9d:7c:62:e5:4d:c6:a0:d9:88:68:23:c4:
76:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:FB:86:87:C4:6A:F9:99:AA:CF:7E:50:E6:84:11:7D:79:30:13:7D
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/C98CD3AC40D511EE93D2A61EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.1.0/24
115.167.16.0/22
115.167.56.0/21
115.167.104.0/22
115.167.112.0/21
175.110.68.0-175.110.91.255
175.110.104.0/22
175.110.111.0/24
180.178.152.0/21
202.92.20.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:41:30:9c:15:39:5b:c5:c7:4a:02:ed:8b:6b:0c:89:e6:78:
ee:90:2e:4a:47:e6:71:0d:25:76:9f:fc:f2:24:2f:14:d9:34:
37:a0:b4:b5:08:17:ce:00:3f:b8:77:ca:67:87:8e:1c:82:55:
d8:d1:ad:a9:57:8a:4d:92:5a:8a:94:bf:a8:d3:d6:28:ca:32:
5a:8c:b3:73:51:26:7d:a8:12:17:d1:f4:83:cb:37:5c:f9:2e:
e9:d4:43:b5:e8:0f:99:ca:3c:b8:40:b3:56:0f:4b:d4:cd:19:
eb:32:3d:66:0d:15:e7:99:82:b3:fb:f7:84:b9:cb:ed:ef:0d:
5e:aa:02:21:a0:3c:96:32:9b:e9:45:e2:42:cb:3c:45:ff:68:
f7:65:4f:84:70:79:b0:f3:63:7e:f9:29:8f:59:5d:51:bd:24:
39:3d:83:3c:27:9e:8b:fa:93:35:21:d5:45:ec:e9:1f:03:ed:
f0:bb:17:3c:b5:ca:27:07:74:76:ce:9e:ea:34:e9:26:55:bb:
01:0a:11:18:b3:e3:94:ef:86:50:95:ea:24:b9:96:25:9b:11:
55:ce:4e:ef:cc:ac:2e:1f:0c:9e:40:23:c6:c8:a8:70:dc:cd:
61:2f:11:32:bc:7a:32:30:60:d1:b3:90:dc:1a:46:bf:bc:25:
68:1c:4d:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 14 09:39:13 2023 by rpki-client on console-fra.rpki-client.org