Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E7B746B6B15211EF8304BB78C4F9AE02.roa
File: E7B746B6B15211EF8304BB78C4F9AE02.roa (raw, json)
Hash identifier: NMV+Jju6nCN+9cRFLz9mWj40y3XtK2XXKWRGpGPTF8I=
Subject key identifier: FC:85:BA:8E:31:A7:86:9E:BB:E9:0E:24:8D:E2:DE:DE:36:9A:C7:EF
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1E9A
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E7B746B6B15211EF8304BB78C4F9AE02.roa
Signing time: Fri 06 Dec 2024 06:13:37 +0000
ROA not before: Fri 06 Dec 2024 06:13:36 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 43.226.224.0/24 maxlen: 24
43.226.225.0/24 maxlen: 24
43.226.226.0/24 maxlen: 24
43.226.227.0/24 maxlen: 24
103.11.63.0/24 maxlen: 24
113.203.214.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
115.167.16.0/22 maxlen: 22
115.167.29.0/24 maxlen: 24
115.167.30.0/24 maxlen: 24
115.167.31.0/24 maxlen: 24
115.167.48.0/24 maxlen: 24
115.167.64.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
115.167.73.0/24 maxlen: 24
115.167.76.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
175.110.81.0/24 maxlen: 24
175.110.82.0/24 maxlen: 24
175.110.83.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.165.0/24 maxlen: 24
180.178.167.0/24 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.229.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Dec 2024 07:25:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7834 (0x1e9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 6 06:13:36 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67529610-4f07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:cb:9a:9f:29:0c:35:3d:6a:7e:f2:b3:4e:24:
7a:b0:7f:31:7c:18:67:a2:90:a8:0c:a8:9e:b8:f9:
bb:8c:f3:38:2e:d8:44:a4:2d:fe:e0:4e:94:dd:01:
e1:3a:c1:05:2b:9d:54:70:e4:38:29:05:15:8c:75:
00:d9:7a:c9:84:6d:50:13:b1:dd:93:aa:2d:71:0c:
43:ee:a6:ff:0c:3e:e6:77:83:16:33:4a:23:bb:0b:
02:39:2a:0e:9e:c1:f7:2d:87:8c:8d:4b:1c:04:8e:
80:f8:66:e9:05:ae:c3:91:56:8a:30:d4:b0:7e:95:
89:ed:92:00:8b:47:01:2e:f0:f3:5b:38:de:27:5f:
71:84:6e:63:70:0e:10:40:38:df:38:f0:3c:fb:d6:
07:19:98:03:e8:40:56:bf:e5:19:ce:5f:1f:c1:f8:
b7:1c:99:e7:ee:b1:73:7f:03:0c:19:1f:8b:7c:e3:
dd:bc:3c:c7:00:18:f0:4a:69:d7:ab:0e:b9:d1:e7:
3b:85:f0:5f:de:53:53:ca:63:a1:91:e4:34:29:8a:
ac:f3:15:68:1a:fd:d9:59:8b:a3:08:32:86:c3:88:
e5:8e:7e:01:64:d0:5f:78:b5:3d:53:25:37:58:06:
af:36:0b:bf:38:d8:65:f3:20:dc:b2:bb:e6:5c:33:
a2:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:85:BA:8E:31:A7:86:9E:BB:E9:0E:24:8D:E2:DE:DE:36:9A:C7:EF
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E7B746B6B15211EF8304BB78C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.224.0/22
103.11.63.0/24
113.203.214.0/24
113.203.222.0/24
113.203.231.0/24
113.203.242.0/24
115.167.16.0/22
115.167.29.0-115.167.31.255
115.167.48.0/24
115.167.64.0/24
115.167.66.0/24
115.167.73.0/24
115.167.76.0/24
115.167.78.0/24
115.167.124.0/24
175.110.81.0-175.110.83.255
175.110.111.0/24
180.178.142.0/24
180.178.144.0/24
180.178.146.0/24
180.178.148.0/24
180.178.150.0/24
180.178.160.0/22
180.178.165.0/24
180.178.167.0-180.178.168.255
180.178.188.0/24
180.178.191.0/24
202.92.26.0/24
223.29.229.0/24
223.29.236.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:bf:de:d0:0a:fe:98:65:b0:af:c2:a8:84:68:c8:44:11:80:
91:1c:30:84:d3:e8:0e:b3:13:cd:af:cd:c9:4a:10:12:8b:52:
6a:ec:8e:31:e4:83:63:32:18:f3:dd:7e:05:cf:15:19:7d:1d:
1c:73:35:90:15:56:b8:33:26:84:2a:68:b1:20:96:83:a1:63:
34:fb:8c:3e:64:46:b6:ed:0f:bc:bf:b4:a2:ad:1c:bd:b0:7f:
7f:ae:2c:e6:63:c1:76:7f:53:21:7a:8c:ab:86:8f:71:e0:05:
40:d0:0d:c3:1d:5f:08:f4:62:f3:17:31:e9:78:97:e4:9c:e7:
b6:c7:cb:72:ab:03:e7:20:de:74:ff:e2:19:79:39:15:39:4b:
8f:ba:04:f8:29:b9:e1:35:85:2b:8b:b7:6d:4b:90:f5:78:96:
7b:00:f0:fa:33:21:05:d3:02:5f:e3:c6:57:59:c9:f9:13:37:
3b:2d:a3:38:07:64:33:ea:d8:ad:c6:53:a8:fd:5e:9b:72:0d:
46:f7:ee:23:82:66:2d:40:14:52:8b:72:bb:1c:54:02:4e:a7:
66:05:89:e3:18:ca:c1:49:ef:43:b6:dc:c3:9f:2f:bb:6e:93:
e1:63:ac:5c:97:04:fc:2a:d5:ef:77:97:c5:e3:bd:e9:45:d9:
81:a7:9a:64
-----BEGIN CERTIFICATE-----
MIIGPDCCBSSgAwIBAgICHpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQxMjA2MDYxMzM2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzUyOTYxMC00ZjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0suanykMNT1qfvKzTiR6sH8xfBhnopCoDKieuPm7jPM4LthEpC3+4E6U3QHh
OsEFK51UcOQ4KQUVjHUA2XrJhG1QE7Hdk6otcQxD7qb/DD7md4MWM0ojuwsCOSoO
nsH3LYeMjUscBI6A+GbpBa7DkVaKMNSwfpWJ7ZIAi0cBLvDzWzjeJ19xhG5jcA4Q
QDjfOPA8+9YHGZgD6EBWv+UZzl8fwfi3HJnn7rFzfwMMGR+LfOPdvDzHABjwSmnX
qw650ec7hfBf3lNTymOhkeQ0KYqs8xVoGv3ZWYujCDKGw4jljn4BZNBfeLU9UyU3
WAavNgu/ONhl8yDcsrvmXDOi8QIDAQABo4IDYDCCA1wwHQYDVR0OBBYEFPyFuo4x
p4aeu+kOJI3i3t42msfvMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvRTdCNzQ2QjZC
MTUyMTFFRjgzMDRCQjc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwgekGCCsGAQUFBwEHAQH/
BIHZMIHWMIHTBAIAATCBzAMEAivi4AMEAGcLPwMEAHHL1gMEAHHL3gMEAHHL5wME
AHHL8gMEAnOnEDAMAwQAc6cdAwQFc6cAAwQAc6cwAwQAc6dAAwQAc6dCAwQAc6dJ
AwQAc6dMAwQAc6dOAwQAc6d8MAwDBACvblEDBAKvblADBACvbm8DBAC0so4DBAC0
spADBAC0spIDBAC0spQDBAC0spYDBAK0sqADBAC0sqUwDAMEALSypwMEALSyqAME
ALSyvAMEALSyvwMEAMpcGgMEAN8d5QMEAN8d7DANBgkqhkiG9w0BAQsFAAOCAQEA
tr/e0Ar+mGWwr8KohGjIRBGAkRwwhNPoDrMTza/NyUoQEotSauyOMeSDYzIY891+
Bc8VGX0dHHM1kBVWuDMmhCposSCWg6FjNPuMPmRGtu0PvL+0oq0cvbB/f64s5mPB
dn9TIXqMq4aPceAFQNANwx1fCPRi8xcx6XiX5JzntsfLcqsD5yDedP/iGXk5FTlL
j7oE+Cm54TWFK4u3bUuQ9XiWewDw+jMhBdMCX+PGV1nJ+RM3Oy2jOAdkM+rYrcZT
qP1em3INRvfuI4JmLUAUUotyuxxUAk6nZgWJ4xjKwUnvQ7bcw58vu26T4WOsXJcE
/CrV73eXxeO96UXZgaeaZA==
-----END CERTIFICATE-----
Generated at Sat Apr 26 12:59:31 2025 by rpki-client