Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8BA2434A24C411F0B36AC786C4F9AE02.roa
File: 8BA2434A24C411F0B36AC786C4F9AE02.roa (raw, json)
Hash identifier: gQc3YV5mtxfxkvQvTd4vtYGDSUchmsy+meq+ZVo2U/U=
Subject key identifier: 37:B6:B1:8E:66:10:49:15:91:DB:49:05:00:7E:EF:9A:55:38:87:C7
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 262E
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8BA2434A24C411F0B36AC786C4F9AE02.roa
Signing time: Tue 29 Apr 2025 06:38:22 +0000
ROA not before: Tue 29 Apr 2025 06:38:22 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 213990
IP address blocks: 115.167.77.0/24 maxlen: 24
175.110.81.0/24 maxlen: 24
175.110.83.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Apr 2025 06:51:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9774 (0x262e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Apr 29 06:38:22 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=681073de-f619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:88:29:2a:cc:99:46:eb:ad:63:80:96:41:92:
0b:e1:40:7d:4d:34:f5:6e:1a:45:e2:40:a7:fb:a1:
6f:90:ab:bf:75:4e:7f:36:d4:15:6b:86:60:20:09:
4c:b6:10:0b:61:ca:53:cc:ef:af:b3:04:68:a0:ed:
b2:39:69:e1:4d:2c:36:25:c1:ba:cc:7a:20:4b:64:
65:5a:c0:24:b8:4e:d2:33:a1:97:05:6c:05:bd:cf:
cd:17:75:a0:ae:03:bf:b1:5a:d2:8b:b8:09:78:48:
e6:5b:ef:35:e5:9f:87:68:53:9d:1d:a5:90:b0:ae:
fa:5c:e8:5e:aa:b8:8a:1d:cb:cb:06:1f:2a:ad:42:
82:d9:bb:6b:41:a8:3b:09:02:2a:c1:22:d2:f0:40:
ec:84:4c:da:48:cf:63:a2:c4:b1:5c:8b:52:4d:47:
29:33:9b:91:50:99:80:7a:1c:4b:0b:72:04:1a:c8:
0c:26:92:b9:e0:8a:bf:51:ce:a0:8b:f4:94:02:0b:
2a:d9:6a:a2:79:84:29:7d:b1:12:61:d1:87:a0:7f:
41:90:c8:c1:82:ce:42:2a:2b:19:fa:5c:4c:c9:53:
28:f8:0b:70:33:e9:20:5e:b6:15:64:5b:28:7b:b2:
1a:6e:69:cd:de:4a:e5:20:c8:a9:98:87:1b:56:d1:
06:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:B6:B1:8E:66:10:49:15:91:DB:49:05:00:7E:EF:9A:55:38:87:C7
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8BA2434A24C411F0B36AC786C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.77.0/24
175.110.81.0/24
175.110.83.0/24
202.92.20.0/24
223.29.235.0/24
223.29.238.0/24
Signature Algorithm: sha256WithRSAEncryption
51:ac:b4:43:cf:4f:8d:93:a4:80:ee:ed:e2:f7:8f:db:5a:5c:
de:8f:1c:db:86:8c:d7:88:62:18:ff:6f:6c:23:99:0a:60:f3:
ac:0d:73:52:0a:90:fa:4c:09:1b:ea:fd:e1:65:53:f5:42:79:
a9:17:37:df:a2:7f:89:10:93:77:b5:61:da:f2:3e:38:e7:85:
b8:4f:39:72:c4:a8:2b:5b:26:e7:65:be:d5:ae:eb:87:59:b2:
c3:f4:e7:a9:aa:70:9b:ec:4f:7d:ea:eb:0a:e8:51:5a:1b:fd:
cf:3e:57:65:4b:77:77:76:50:b5:98:47:39:de:1b:76:9e:e0:
06:51:aa:32:e0:ed:6b:75:34:1b:c8:6c:8e:3b:16:f9:42:96:
ba:cf:72:ee:27:43:e4:f6:99:68:25:d3:e1:44:2a:48:ed:1e:
f5:a5:01:ac:9f:52:cc:1a:49:a4:2c:b7:b3:08:b8:f9:2d:61:
22:9e:84:9c:21:a0:9a:14:e6:82:e3:7c:23:8c:95:1a:dd:10:
fd:77:ab:4b:ba:95:64:c5:ea:1d:f8:c6:57:71:ae:ae:e5:7d:
92:3a:b8:3d:c5:95:ad:45:11:6e:b3:3d:e6:b6:38:1a:e9:8b:
e4:94:ab:b1:cd:9b:72:70:90:12:b3:2e:a1:ee:79:95:92:46:
5a:a5:5f:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 05:12:37 2025 by rpki-client