Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/DA1EC4E42DD211EDA90B5223C4F9AE02.roa
File: DA1EC4E42DD211EDA90B5223C4F9AE02.roa (raw, json)
Hash identifier: SuvHZvQZJGQJrdaomjPg4PzQsUc4Wg2oYYENAwF7qwc=
Subject key identifier: 6C:B6:EE:CC:F4:EF:20:23:1F:60:68:38:E0:75:63:AC:FE:76:C4:C7
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 08FE
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/DA1EC4E42DD211EDA90B5223C4F9AE02.roa
Signing time: Tue 06 Sep 2022 10:58:34 +0000
ROA not before: Tue 06 Sep 2022 10:58:34 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 38547
IP address blocks: 115.167.2.0/24 maxlen: 24
115.167.24.0/22 maxlen: 24
115.167.28.0/22 maxlen: 24
115.167.72.0/22 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.107.2/32 maxlen: 32
175.110.107.14/32 maxlen: 32
175.110.107.114/32 maxlen: 32
175.110.108.0/22 maxlen: 23
175.110.108.0/23 maxlen: 24
175.110.110.0/24 maxlen: 24
202.92.16.0/24 maxlen: 24
202.92.17.0/24 maxlen: 24
202.92.18.0/24 maxlen: 24
202.92.19.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
202.92.21.0/24 maxlen: 24
202.92.23.0/24 maxlen: 24
202.92.24.0/24 maxlen: 24
202.92.24.32/27 maxlen: 27
202.92.25.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
202.92.27.0/24 maxlen: 24
202.92.28.0/24 maxlen: 24
202.92.29.0/24 maxlen: 24
202.92.30.0/24 maxlen: 24
202.92.31.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2302 (0x8fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Sep 6 10:58:34 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=631727da-20b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2e:18:34:6e:26:f2:3a:27:7f:a6:53:ba:ac:
2d:1b:77:6d:bb:47:5c:1e:65:f7:f5:0f:87:f1:05:
39:a6:9b:8c:be:e3:91:f2:87:a2:bf:ee:b5:4c:2f:
b0:26:9f:2d:5f:68:22:01:e2:9a:92:57:28:2c:de:
22:72:66:d0:f7:96:eb:6f:03:32:0f:c0:fb:6a:7e:
40:cc:ce:58:d5:9a:c7:98:fb:e6:67:79:df:ce:b1:
a5:25:4c:9e:5a:c9:54:38:7c:84:05:c3:8e:44:89:
d8:d9:a7:b6:a5:74:5e:5a:78:aa:fb:ae:fb:49:eb:
5a:76:7e:ca:e8:f6:9c:ce:38:ec:f7:84:c1:17:90:
54:5b:34:2e:cd:21:8f:a5:74:ad:7c:52:c5:15:4e:
5c:db:95:d9:f5:55:06:0c:77:93:81:6c:f1:4a:c3:
06:e2:7b:be:32:29:56:e7:da:7e:3e:8d:d0:5c:99:
86:17:af:88:02:03:c2:e6:3a:b0:3d:51:b6:71:ed:
92:9c:bd:9c:b3:3b:44:dd:3d:35:21:c2:76:0b:0f:
e5:56:23:6c:e6:98:7e:b1:f8:3c:77:bb:fc:f9:46:
3f:e3:78:e5:40:0f:5f:9a:67:f0:00:65:ed:1c:16:
9c:df:f1:5b:25:2b:85:5a:ec:00:4a:4f:e0:a5:bb:
be:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:B6:EE:CC:F4:EF:20:23:1F:60:68:38:E0:75:63:AC:FE:76:C4:C7
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/DA1EC4E42DD211EDA90B5223C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.2.0/24
115.167.24.0/21
115.167.72.0/22
175.110.88.0/22
175.110.104.0/24
175.110.107.2/32
175.110.107.14/32
175.110.107.114/32
175.110.108.0/22
202.92.16.0-202.92.21.255
202.92.23.0-202.92.31.255
Signature Algorithm: sha256WithRSAEncryption
a3:69:3c:b7:12:a2:71:5b:37:20:d5:fe:c7:33:73:c8:59:45:
a5:4e:bc:57:47:2e:ec:6d:04:1e:a2:f4:98:0d:50:24:0d:c2:
36:44:13:86:c2:f8:34:73:91:ff:9b:13:01:fc:ee:ef:a1:50:
53:1d:2e:6f:8a:85:1f:af:22:80:9e:6e:58:b5:fd:7f:c5:85:
f2:a1:44:e8:e1:ee:59:0d:05:45:3d:56:d2:1d:7c:df:bb:16:
fd:cb:d4:bf:3a:27:6b:10:2e:67:c7:f1:a0:a3:91:4f:00:3b:
0c:45:91:80:85:55:6c:d8:c0:ca:43:32:83:13:b0:2b:45:72:
c9:28:5e:2f:0d:3b:78:9e:59:ac:da:78:37:cd:9d:0e:4e:b7:
2b:cb:18:66:9c:37:98:b2:51:1f:67:7b:69:7c:fb:f8:e3:18:
f4:b2:13:ec:4b:5e:ea:0b:3f:86:6e:d1:74:1e:dc:09:35:ca:
67:5c:63:e0:9c:20:59:cc:cc:54:4d:06:5a:77:70:e6:cb:b1:
84:09:93:8c:1d:04:cf:f9:87:dc:91:7e:90:13:5f:2b:a0:a4:
b5:dc:d6:69:36:09:08:cf:81:e8:db:09:00:95:99:09:40:df:
fd:75:fd:82:9f:ec:0b:3a:90:1f:55:b5:3b:11:0f:0e:08:f7:
7c:c7:b6:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:12 2023 by rpki-client on console-fra.rpki-client.org