Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/17586456B2FF11EF89A81932C4F9AE02.roa
File: 17586456B2FF11EF89A81932C4F9AE02.roa (raw, json)
Hash identifier: iOZ2pQBVqY37wP31yNclTIOwAkweIR4ZWpBi08hJEng=
Subject key identifier: D3:3C:1B:56:17:9F:B9:DE:BA:32:44:51:E8:35:C8:F6:88:FC:F5:B7
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1E91
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/17586456B2FF11EF89A81932C4F9AE02.roa
Signing time: Thu 05 Dec 2024 11:50:15 +0000
ROA not before: Thu 05 Dec 2024 11:50:15 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 213990
IP address blocks: 113.203.208.0/24 maxlen: 24
113.203.209.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.233.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
115.167.6.0/24 maxlen: 24
115.167.48.0/24 maxlen: 24
115.167.60.0/23 maxlen: 23
115.167.62.0/23 maxlen: 23
175.110.64.0/22 maxlen: 22
175.110.105.0/24 maxlen: 24
180.178.164.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Dec 2024 12:14:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7825 (0x1e91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 5 11:50:15 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67519377-0204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d5:38:2a:78:7e:e2:9c:d7:43:58:4e:66:0a:
ae:b7:fc:38:9b:4e:d2:3f:bb:48:95:fa:01:95:25:
84:2c:fd:13:2d:15:49:01:76:af:32:02:bf:21:ac:
11:7e:6c:a2:63:db:20:f2:16:ec:14:98:77:2d:1d:
bf:a8:7f:4a:1e:45:ec:b6:23:09:f1:cb:df:bb:fb:
27:a5:3b:8b:75:20:1d:67:f3:58:e7:17:d7:70:a3:
93:80:20:cd:01:bd:7f:95:f5:ca:a4:00:1c:10:f0:
7d:d8:95:95:5a:53:d5:d5:c2:59:02:96:aa:81:89:
61:4f:6d:3b:26:39:e9:74:bf:1f:c7:77:ec:7b:a7:
36:2d:3f:aa:d9:43:28:5e:d5:16:7e:55:ab:c3:3e:
61:09:27:c0:ec:f8:97:1e:c7:d0:c0:78:b5:51:8a:
d9:3f:04:15:10:cd:8a:f4:59:31:c5:8f:b8:ac:e0:
8e:ce:1b:6c:dc:ae:f7:cc:dd:49:74:72:6b:8f:10:
12:da:d8:08:8f:6a:56:32:cb:d1:19:ec:50:b1:82:
f0:9c:93:44:39:f2:a1:3a:5c:fd:6f:2e:1c:4d:dd:
81:bf:d9:45:2c:d0:f9:17:a7:6a:51:b3:29:ba:21:
f6:bd:5d:77:84:f4:1a:18:ed:60:95:d2:3a:06:f3:
87:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:3C:1B:56:17:9F:B9:DE:BA:32:44:51:E8:35:C8:F6:88:FC:F5:B7
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/17586456B2FF11EF89A81932C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.208.0/23
113.203.212.0/24
113.203.233.0/24
113.203.245.0/24
115.167.6.0/24
115.167.48.0/24
115.167.60.0/22
175.110.64.0/22
175.110.105.0/24
180.178.164.0/24
180.178.190.0/24
223.29.226.0/24
Signature Algorithm: sha256WithRSAEncryption
72:1a:ea:35:c1:57:7f:5f:74:8d:50:39:c8:8a:cb:e4:21:d5:
16:ee:29:08:6d:1d:6e:d8:e5:6f:63:fd:17:04:ea:45:c2:f5:
a1:51:3d:72:62:8a:96:77:f9:1e:14:53:42:94:72:89:c8:67:
7e:8b:70:89:6a:2f:b0:bc:1e:8e:1d:bd:e2:4f:50:95:fe:6a:
16:df:38:c7:5d:9d:97:8d:23:39:e2:8d:cb:9b:5b:1c:cb:87:
4a:50:29:28:d8:29:f7:6b:a3:b9:13:31:6d:d7:8f:de:94:66:
b0:c5:52:09:72:b7:e9:31:96:75:12:ca:30:7b:85:d5:08:8d:
c9:a2:62:97:ce:43:43:63:d9:dd:2a:17:01:23:72:b1:3d:5d:
ae:90:d1:fa:3d:e5:e0:27:62:a3:61:ff:df:4d:02:6a:07:75:
af:ce:f0:c2:c2:bd:c7:0c:fe:00:53:6e:e7:cd:78:c7:11:7f:
b8:15:66:e6:f1:ac:a0:e0:78:99:f2:c6:9a:28:e1:20:f1:e2:
d7:83:e5:9c:e6:d3:ac:63:f7:de:a3:c5:e3:3e:0d:9e:b0:80:
d8:e7:b8:27:b6:ed:81:f5:4e:6d:6d:97:2c:10:39:04:bb:64:
4e:b8:5a:60:68:3b:c2:ad:29:b4:11:28:0c:4f:40:98:29:d7:
de:de:01:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 5 15:16:08 2024 by rpki-client on console.sobornost.net