Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/3515D6D2F0B811ED9780AD26C4F9AE02.roa
File: 3515D6D2F0B811ED9780AD26C4F9AE02.roa (raw, json)
Hash identifier: oY28ANKs5jQJA3penYJJh6qvtwTXI/jGIQYRlxw5YG0=
Subject key identifier: 2A:77:92:3C:B0:0B:08:26:AF:51:29:3A:45:57:4E:23:17:11:21:21
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0F13
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/3515D6D2F0B811ED9780AD26C4F9AE02.roa
Signing time: Mon 08 Jan 2024 05:01:55 +0000
ROA not before: Mon 08 Jan 2024 05:01:55 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 10753
IP address blocks: 115.167.24.0/22 maxlen: 22
115.167.48.0/24 maxlen: 24
115.167.52.0/22 maxlen: 24
115.167.77.0/24 maxlen: 24
115.167.100.0/22 maxlen: 24
175.110.64.0/22 maxlen: 24
175.110.68.0/22 maxlen: 24
175.110.72.0/22 maxlen: 24
175.110.84.0/22 maxlen: 24
175.110.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jan 2024 04:27:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3859 (0xf13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jan 8 05:01:55 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=659b81c3-2233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d5:1f:fb:81:6a:e9:bd:46:56:55:e1:a7:d8:
d1:e9:73:98:d4:fb:29:00:2a:1a:03:4e:a5:d0:c4:
7f:78:d5:a9:c7:eb:23:15:1a:1e:ab:9c:e3:eb:c6:
44:60:d2:08:65:d8:5c:22:66:b7:ec:88:d4:a0:74:
47:ef:c7:c7:cc:b3:08:8f:71:77:24:b3:32:21:6c:
26:16:a6:f2:93:19:df:dc:bf:41:42:00:db:98:72:
21:07:6a:ba:f8:86:00:d8:1d:45:64:60:2c:38:a4:
b9:80:1c:c5:b6:fe:2b:d5:2c:e6:29:25:96:3b:30:
48:f2:cd:a2:da:52:a7:60:d1:75:43:2f:88:7b:5c:
5b:33:62:ac:3f:34:54:8f:8f:40:ba:9b:23:4f:6b:
ba:43:aa:72:55:cd:42:c0:64:73:cb:9f:58:6d:7d:
c6:24:b7:7f:c1:06:24:6a:b9:24:4a:4c:bd:fe:ef:
e6:33:54:56:9d:b6:c6:ca:36:25:1f:57:9b:78:07:
1f:78:a1:1b:f7:09:4f:7c:84:29:fa:2f:6b:c6:cb:
10:f9:97:e3:cc:79:02:a5:bc:4c:85:12:29:90:de:
0e:de:e3:1e:b5:01:6e:a0:0a:a1:a1:ef:20:fb:51:
9c:03:62:cd:f2:3f:ef:7a:9a:b2:9f:81:e7:17:a3:
9c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:77:92:3C:B0:0B:08:26:AF:51:29:3A:45:57:4E:23:17:11:21:21
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/3515D6D2F0B811ED9780AD26C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.24.0/22
115.167.48.0/24
115.167.52.0/22
115.167.77.0/24
115.167.100.0/22
175.110.64.0-175.110.75.255
175.110.84.0/22
175.110.96.0/24
Signature Algorithm: sha256WithRSAEncryption
68:fe:a5:27:66:36:1e:66:82:70:34:4c:5d:1a:81:f2:d3:a3:
6a:8d:14:25:97:dd:1e:95:20:0f:f2:b9:56:06:42:17:c3:f4:
fa:d9:19:5a:6b:d6:92:b7:05:53:ce:1e:f8:71:58:70:13:f5:
5a:54:ed:28:64:11:02:d1:49:fc:19:3f:e8:99:31:fd:00:f7:
06:7b:15:40:c8:9d:09:9c:b1:f6:83:fe:0e:48:c0:62:70:f8:
8f:bf:e2:4d:b8:e2:75:cc:5b:23:f5:21:37:54:d1:e3:db:23:
e3:6f:fd:07:1f:66:89:6c:04:58:34:c5:e0:28:b6:f1:3a:37:
46:8a:f3:16:6e:43:71:48:7c:cd:f1:15:4c:90:59:da:41:f9:
28:49:14:37:22:8b:32:f5:06:71:87:84:76:e5:c9:bb:d1:f7:
1f:ae:e1:4e:58:88:45:4c:35:d5:f5:88:64:3b:f5:47:11:c4:
81:2a:99:fb:79:de:c1:3e:2c:2c:31:89:c0:cb:9f:39:08:65:
02:33:96:2b:b6:9c:29:d9:5d:4d:dd:1e:ec:e8:b2:12:a7:69:
47:53:ba:65:99:b4:a6:53:3e:c2:a4:06:52:d5:09:49:5b:86:
d0:87:cc:64:22:c0:3c:72:3a:63:d0:23:77:8e:c0:36:a8:57:
ec:a3:ce:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 00:58:03 2024 by rpki-client on console.sobornost.net