Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A5B7B8B0905811EF998A650CC4F9AE02.roa
File: A5B7B8B0905811EF998A650CC4F9AE02.roa (raw, json)
Hash identifier: aaoowbkT+vI/dPiAMavYN6q0nptyQIJqh51wzz47hNs=
Subject key identifier: 42:C2:B3:29:B9:E3:34:64:AB:EF:14:7C:72:B4:85:06:D4:89:80:31
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1890
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A5B7B8B0905811EF998A650CC4F9AE02.roa
Signing time: Tue 22 Oct 2024 09:33:08 +0000
ROA not before: Tue 22 Oct 2024 09:33:08 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 43.226.224.0/22 maxlen: 24
103.11.63.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.252.0/22 maxlen: 24
115.167.5.0/24 maxlen: 24
115.167.6.0/24 maxlen: 24
115.167.9.0/24 maxlen: 24
115.167.48.0/24 maxlen: 24
115.167.77.0/24 maxlen: 24
115.167.96.0/22 maxlen: 24
115.167.125.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.152.0/21 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.176.0/22 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/22 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 12:21:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6288 (0x1890)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Oct 22 09:33:08 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67177154-5dbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:88:ed:fa:84:1a:b6:26:35:9d:d7:70:77:f2:
02:15:91:0a:59:20:99:f0:6b:a4:f5:a1:84:8c:6e:
d2:aa:96:87:e5:5c:e3:a7:58:52:fb:59:3b:f0:32:
da:58:ff:4b:70:6d:35:2a:d0:3e:c8:8e:de:1e:e5:
1c:1c:b7:ae:87:7d:05:4c:ab:49:0f:bf:54:fe:66:
bb:b1:7f:a4:cf:30:a7:7e:34:26:a4:7d:e0:3b:82:
80:8f:db:4c:c3:40:66:35:8c:e4:34:80:73:83:1f:
60:84:0f:31:2b:50:f4:05:a6:7c:e9:66:a9:ea:c6:
7c:41:9d:f9:cb:47:c3:30:8f:25:9d:0d:5e:2c:df:
3e:cd:80:7e:c3:a9:46:71:38:08:74:d6:81:2a:aa:
ef:5d:81:33:d4:3c:6b:d4:cb:d8:4f:04:6c:53:42:
24:ce:17:15:b1:d3:72:b4:53:7f:2b:be:71:a7:bd:
e0:0b:8a:38:f4:0f:43:32:e9:85:e1:2e:46:c9:1b:
47:c2:8a:0a:b1:4b:1a:78:fb:f3:57:be:4a:cf:ce:
ce:95:be:65:f6:de:e6:17:23:75:45:19:28:cd:e9:
60:ae:00:51:7a:8c:32:f2:54:80:4c:73:a1:87:dc:
33:84:7b:a7:5a:ae:20:a0:d9:f2:4d:64:13:00:b9:
f0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:C2:B3:29:B9:E3:34:64:AB:EF:14:7C:72:B4:85:06:D4:89:80:31
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A5B7B8B0905811EF998A650CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.224.0/22
103.11.63.0/24
113.203.222.0/24
113.203.224.0/23
113.203.252.0/22
115.167.5.0-115.167.6.255
115.167.9.0/24
115.167.48.0/24
115.167.77.0/24
115.167.96.0/22
115.167.125.0/24
180.178.142.0/24
180.178.146.0/24
180.178.149.0-180.178.150.255
180.178.152.0/21
180.178.163.0/24
180.178.168.0/24
180.178.170.0/24
180.178.176.0-180.178.187.255
202.92.26.0/24
223.29.235.0/24
223.29.238.0/23
Signature Algorithm: sha256WithRSAEncryption
69:6a:ff:1f:1a:a2:18:5f:64:8c:e9:ae:55:bc:f7:5b:cf:31:
39:4c:98:1d:c3:1d:b9:25:cb:6f:4c:82:58:a0:a8:0d:8e:2e:
9a:5c:d4:c0:80:87:36:fe:10:fc:31:cd:b1:11:15:00:fa:9d:
c5:75:f0:ae:22:d4:fc:81:7e:07:9b:f2:77:d0:3f:eb:df:01:
f6:be:a1:39:b7:a1:77:80:cc:1d:9d:f2:e4:9d:3b:e0:2e:f2:
9c:73:c1:30:4e:5b:f6:39:36:a9:6c:9b:1f:d8:74:ec:cc:57:
f5:2b:04:6e:cb:0e:2f:f1:24:f5:0a:fb:3a:aa:d5:b9:f7:c1:
08:01:ac:71:7c:44:53:b5:c7:58:e5:4e:d2:fd:7c:a4:eb:2a:
b6:d5:9b:d0:aa:89:ee:4a:ca:ef:cb:e7:2e:6c:cd:b6:d6:c8:
c1:1e:24:b0:7e:28:55:95:90:59:9f:29:42:0e:cf:eb:0f:07:
c4:ea:4f:41:97:73:77:83:7e:f7:19:81:b0:f3:d0:8f:28:5d:
19:93:c3:aa:e6:2f:36:42:62:77:fc:cd:41:2e:a5:12:07:ea:
a8:43:af:53:1d:dd:9e:be:84:47:6b:84:c1:f9:ec:57:11:46:
c8:ae:e2:e4:de:3b:69:12:89:bf:7c:f1:95:c2:17:79:f8:87:
85:7d:01:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:10:59 2025 by rpki-client