Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/FE49B3285BBD11EE8675FA71C4F9AE02.roa
File: FE49B3285BBD11EE8675FA71C4F9AE02.roa (raw, json)
Hash identifier: iGw58dNtfjd9/ZPRX3YGPeTuy4sDNq2wxS+HaoP8/+I=
Subject key identifier: 4A:4C:6B:C4:2C:F4:E5:4D:46:7A:AA:0A:13:C5:72:69:12:3A:BC:50
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0D4E
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/FE49B3285BBD11EE8675FA71C4F9AE02.roa
Signing time: Tue 26 Sep 2023 10:13:56 +0000
ROA not before: Tue 26 Sep 2023 10:13:56 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 9387
IP address blocks: 103.11.60.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.212.0/22 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.234.0/24 maxlen: 24
113.203.235.0/24 maxlen: 24
113.203.236.0/24 maxlen: 24
113.203.237.0/24 maxlen: 24
113.203.238.0/24 maxlen: 24
113.203.239.0/24 maxlen: 24
113.203.240.0/24 maxlen: 24
113.203.252.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
113.203.254.0/24 maxlen: 24
180.178.128.0/24 maxlen: 24
180.178.129.0/24 maxlen: 24
180.178.132.0/24 maxlen: 24
180.178.133.0/24 maxlen: 24
180.178.134.0/24 maxlen: 24
180.178.135.0/24 maxlen: 24
180.178.136.0/24 maxlen: 24
180.178.137.0/24 maxlen: 24
180.178.138.0/24 maxlen: 24
180.178.139.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.164.0/22 maxlen: 24
180.178.172.0/24 maxlen: 24
180.178.173.0/24 maxlen: 24
180.178.174.0/24 maxlen: 24
180.178.175.0/24 maxlen: 24
180.178.176.0/24 maxlen: 24
180.178.178.0/24 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.185.0/24 maxlen: 24
180.178.187.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.189.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.229.0/24 maxlen: 24
223.29.230.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3406 (0xd4e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Sep 26 10:13:56 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6512aee4-1cf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:34:52:82:dc:65:34:80:24:ab:11:95:8f:0a:
8e:f3:ba:b2:c5:25:73:99:0b:f1:96:2a:2c:04:06:
56:8b:41:06:b7:6b:5e:cc:f4:c2:76:48:2a:34:60:
5a:77:5d:d1:78:94:63:56:23:94:f9:32:d4:80:75:
86:9c:41:0d:9d:df:d1:59:a1:48:3f:f7:a4:46:3d:
3d:3a:2a:c6:4d:3f:96:2f:e9:56:ce:ff:31:c2:49:
3f:d6:3c:00:85:b8:e5:fc:dc:8c:3f:1f:1a:68:3f:
c5:7a:7f:bf:20:ee:63:7c:fb:93:37:20:f5:a8:d1:
db:d0:86:df:0f:73:40:c0:9c:d7:dc:55:e4:f5:f0:
cb:ed:de:ad:b6:df:73:8e:82:81:df:b4:6c:c0:b7:
7c:bf:6d:57:92:d7:53:70:ed:a4:37:2f:60:6a:83:
ac:6e:fb:a4:b9:10:d8:0b:17:d6:12:0e:58:c5:1b:
1c:0d:6b:81:a8:c3:bc:10:8a:f3:de:5c:84:ab:99:
37:50:88:6e:36:8d:29:17:28:87:5f:83:fa:29:ae:
c2:83:21:a5:88:3d:33:0b:68:a6:ce:12:c9:3e:fa:
1e:7c:66:3f:63:95:77:67:0d:9b:51:12:bd:a2:b3:
a0:fc:68:6f:a0:16:04:cb:d1:30:f0:a7:fa:36:40:
7e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:4C:6B:C4:2C:F4:E5:4D:46:7A:AA:0A:13:C5:72:69:12:3A:BC:50
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/FE49B3285BBD11EE8675FA71C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.60.0/24
113.203.210.0/24
113.203.212.0-113.203.216.255
113.203.218.0/24
113.203.220.0/24
113.203.222.0/24
113.203.227.0-113.203.228.255
113.203.234.0-113.203.240.255
113.203.252.0-113.203.254.255
180.178.128.0/23
180.178.132.0-180.178.139.255
180.178.148.0/23
180.178.161.0-180.178.162.255
180.178.164.0/22
180.178.172.0-180.178.176.255
180.178.178.0/24
180.178.180.0/22
180.178.185.0/24
180.178.187.0-180.178.191.255
223.29.226.0-223.29.231.255
223.29.235.0/24
Signature Algorithm: sha256WithRSAEncryption
45:04:04:39:6c:54:9e:e7:43:d2:0f:74:b3:4f:a3:30:b0:74:
7d:3e:7f:2b:73:c1:ab:f0:11:96:f4:65:3a:ac:d2:28:aa:df:
c9:c8:0b:86:1d:40:dc:02:f9:e0:36:ba:6b:85:e7:84:1c:b5:
db:2f:ee:81:5e:33:b2:5d:0f:b0:8a:10:46:c8:a8:c1:31:83:
24:e1:2c:d7:20:03:50:2b:98:24:86:47:03:5f:dc:f0:b2:da:
50:58:fe:ce:16:67:7a:6c:58:b3:fe:1c:b3:1c:f8:6b:13:85:
40:44:31:25:93:cb:8f:46:92:08:c8:47:78:ce:e7:c0:5f:ad:
ad:c9:59:be:52:33:33:86:28:a1:74:64:98:fb:0b:92:03:e8:
8f:f3:27:a0:dd:d6:f3:18:54:09:4a:fb:bf:c6:8b:54:02:50:
69:4b:bf:88:c1:b6:25:c3:72:3b:f7:6c:39:8f:13:d3:3b:8d:
a3:f4:e5:f4:98:39:5e:6b:44:8b:e0:0d:70:e1:06:cf:20:b3:
d5:4e:7b:2e:0e:0f:cb:18:e4:50:d0:df:03:0e:90:87:b2:b0:
9e:a4:4f:94:b2:aa:08:85:61:c6:12:0a:38:1b:0b:3f:28:c9:
0b:95:af:c1:bc:09:53:fb:fa:0a:08:b9:73:12:bf:50:3f:c9:
b7:0f:32:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 4 10:26:03 2023 by rpki-client on console-ams.rpki-client.org