Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/ED321B4A907111EFA926A957C4F9AE02.roa
File: ED321B4A907111EFA926A957C4F9AE02.roa (raw, json)
Hash identifier: J/LCfwESHXQf3sVgAMDAVDVxBA0ix0OOb9AQ+3NqrqE=
Subject key identifier: F6:60:52:9B:F6:FE:BB:B6:D6:8C:0F:DD:D9:0C:43:56:0A:8C:1E:53
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 18B6
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/ED321B4A907111EFA926A957C4F9AE02.roa
Signing time: Tue 22 Oct 2024 12:34:06 +0000
ROA not before: Tue 22 Oct 2024 12:34:06 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 43.226.224.0/22 maxlen: 24
103.11.63.0/24 maxlen: 24
113.203.252.0/22 maxlen: 24
115.167.5.0/24 maxlen: 24
115.167.6.0/24 maxlen: 24
115.167.48.0/24 maxlen: 24
115.167.77.0/24 maxlen: 24
115.167.96.0/22 maxlen: 24
115.167.125.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.152.0/21 maxlen: 24
180.178.176.0/22 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/22 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 12:42:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6326 (0x18b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Oct 22 12:34:06 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67179bbd-28bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ad:9f:a5:72:43:30:48:e0:2b:19:aa:26:49:
13:93:1d:93:71:80:3d:43:82:b6:a8:26:67:de:5b:
9f:04:96:a7:42:fb:70:50:b1:12:cb:40:c4:d9:ff:
6d:d0:11:b8:09:fe:70:40:93:0d:d7:e6:e0:5e:38:
24:c1:30:e9:ef:a4:58:1f:56:ab:85:e7:ca:5e:4f:
26:ab:aa:d6:9e:25:dd:c0:a7:fb:d1:c0:5b:b7:d0:
e8:f1:36:66:97:c7:d5:34:e0:be:7a:7f:e1:9f:cc:
f9:74:1e:94:d6:2b:9f:71:7b:73:0f:67:cd:94:ee:
d0:58:ee:9c:5a:14:b2:fc:37:c6:6a:e9:17:ea:5a:
75:7d:0c:b1:5a:3c:de:49:7c:e9:4d:a5:c8:83:ff:
9a:90:5c:3f:c0:fc:c5:eb:b1:f8:3c:3f:0b:0e:8c:
d8:46:a1:3e:70:3a:7c:3f:d6:58:a5:3f:47:2e:6a:
22:ef:48:80:c3:26:53:3b:28:73:3c:14:cc:4f:e3:
25:47:23:8f:08:a6:49:cf:71:38:2e:3d:c7:b7:56:
c1:b7:09:3c:78:5a:0d:40:37:a6:b8:17:42:88:1e:
1a:6e:93:c9:34:66:0e:e0:a8:0b:2a:5d:65:61:f6:
ca:d5:33:ad:1d:6b:0d:81:7f:b3:c2:b1:d9:9f:5e:
45:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:60:52:9B:F6:FE:BB:B6:D6:8C:0F:DD:D9:0C:43:56:0A:8C:1E:53
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/ED321B4A907111EFA926A957C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.224.0/22
103.11.63.0/24
113.203.252.0/22
115.167.5.0-115.167.6.255
115.167.48.0/24
115.167.77.0/24
115.167.96.0/22
115.167.125.0/24
180.178.142.0/24
180.178.146.0/24
180.178.152.0/21
180.178.176.0-180.178.187.255
202.92.26.0/24
223.29.235.0/24
223.29.238.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:43:cd:5f:7d:d5:1a:55:1e:11:0d:aa:4f:7e:83:fc:a4:ac:
b0:df:90:aa:63:75:00:12:21:6b:57:e5:b8:04:3a:16:ae:7e:
5a:8e:5d:36:f2:05:2f:cd:11:7b:3d:a4:d6:de:3e:a9:5a:76:
12:92:87:95:ee:bf:3e:84:d4:b7:d4:d1:fb:4d:f0:dd:ce:7d:
96:de:0b:62:f1:13:28:a5:b7:34:ff:16:ec:e0:d5:f3:67:b3:
7e:71:39:69:f3:2c:6b:b4:65:ed:ce:f8:a2:33:f1:e9:36:02:
52:66:e7:37:52:49:9f:10:0e:84:52:f2:2c:8f:34:e7:a7:b3:
06:c4:54:5d:80:e6:c6:a6:87:42:a0:bc:3f:35:cc:00:3d:20:
8f:7c:b9:3a:50:91:86:bc:fb:01:93:14:cf:cd:91:1c:eb:97:
ec:e6:89:a6:be:64:d3:fe:32:86:e3:6e:37:21:b1:40:1d:3f:
5a:12:ed:bc:81:a5:2c:e1:3a:05:c0:81:11:37:8d:ce:e9:26:
fc:42:6b:9f:00:2d:3c:4d:ed:f9:f5:21:ff:60:4a:27:b8:a9:
85:9b:4e:e6:4c:0f:c4:94:4f:da:b5:7e:67:9a:35:9f:ce:b8:
ff:43:92:6c:2c:0d:15:b4:fc:aa:14:cb:f5:1c:ff:99:f1:c5:
fd:d1:f3:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:01:57 2025 by rpki-client