Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5482276E39C811EF8C1E2A53C4F9AE02.roa
File: 5482276E39C811EF8C1E2A53C4F9AE02.roa (raw, json)
Hash identifier: ZkKu7owPUc6s/A+o/mvFUZQAtn0ZJl6sdkr3qJJHhZQ=
Subject key identifier: 30:09:89:80:C3:80:13:3E:D7:00:3C:2F:19:9B:F9:89:F2:67:40:8D
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1471
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5482276E39C811EF8C1E2A53C4F9AE02.roa
Signing time: Thu 18 Jul 2024 10:36:32 +0000
ROA not before: Thu 18 Jul 2024 10:36:32 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 113.203.209.0/24 maxlen: 24
113.203.211.0/24 maxlen: 24
113.203.214.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.246.0/24 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.60.0/22 maxlen: 22
115.167.65.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.68.0/22 maxlen: 22
175.110.80.0/22 maxlen: 22
180.178.142.0/24 maxlen: 24
180.178.151.0/24 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.164.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Jul 2024 10:29:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5233 (0x1471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jul 18 10:36:32 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6698f030-17e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1b:1a:a2:d3:02:c3:71:9e:73:20:34:14:1b:
35:e3:97:6e:e0:f6:c3:11:77:3a:ad:54:57:b7:cd:
e2:5a:13:ee:85:b6:06:69:08:c8:68:08:46:8f:50:
7b:aa:18:22:65:b8:fd:ac:a8:13:46:ea:0d:4b:4d:
3d:d9:c2:9d:00:c3:fd:11:8e:93:27:a2:e7:44:6f:
fc:12:d6:b2:cc:55:fc:44:d8:66:c8:9a:d4:b5:77:
b1:3f:ce:68:bf:39:e8:70:8e:a4:ad:ed:f4:fb:11:
1d:d2:b7:b7:3f:54:c9:90:96:5c:a6:1e:be:46:a5:
0a:e6:8e:af:b5:61:ea:c0:07:9c:05:33:ba:fe:99:
f5:70:dc:63:cc:19:05:bb:46:27:78:64:7f:ac:1e:
3b:ad:a0:64:8e:a5:70:5b:7e:6f:e5:af:32:04:d4:
e9:b6:40:43:a8:5e:b9:c6:98:4b:28:29:fc:dd:03:
9c:29:70:8e:b9:7c:4b:c8:e2:0f:96:be:6c:58:ac:
c8:b1:e3:9f:d6:e1:5f:8a:09:94:92:35:46:a5:e7:
8a:a5:19:a4:88:58:43:82:9a:c9:ab:7d:00:04:b9:
5e:ce:ae:7e:2f:aa:06:cc:1e:10:8d:c0:68:71:1a:
66:a1:be:ff:e2:f7:c8:2e:10:45:50:dd:3f:cf:e1:
86:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:09:89:80:C3:80:13:3E:D7:00:3C:2F:19:9B:F9:89:F2:67:40:8D
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5482276E39C811EF8C1E2A53C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.209.0/24
113.203.211.0/24
113.203.214.0/23
113.203.219.0/24
113.203.222.0/24
113.203.227.0/24
113.203.241.0/24
113.203.243.0/24
113.203.246.0/24
115.167.49.0/24
115.167.60.0/22
115.167.65.0/24
115.167.124.0/23
175.110.68.0/22
175.110.80.0/22
180.178.142.0/24
180.178.151.0/24
180.178.161.0-180.178.162.255
180.178.164.0/24
180.178.188.0/24
180.178.190.0/24
223.29.227.0/24
223.29.239.0/24
Signature Algorithm: sha256WithRSAEncryption
65:c9:c8:37:5a:9a:7e:33:b1:f4:e6:3a:59:83:d2:7c:85:74:
61:0a:98:82:8f:98:23:5c:14:4c:c2:33:e2:c9:10:95:17:03:
f7:8d:15:90:8d:53:ca:a9:3a:0a:e8:bb:2e:0a:e4:27:ce:ad:
69:fe:8b:5a:ff:6b:54:49:d9:af:ac:f8:01:72:71:b9:17:32:
2d:7e:bf:e3:7b:dc:16:95:3b:67:6b:5c:81:8a:96:63:40:d7:
76:65:8e:f3:2e:46:05:a0:0d:3d:8f:b9:a3:85:0e:a9:eb:5e:
96:ce:31:3c:93:0b:b8:61:8e:1e:b0:c2:ae:50:10:d0:c3:3b:
8e:a4:3a:99:95:c4:c2:f9:d5:62:aa:a2:05:e8:9f:8f:27:d0:
48:22:33:27:1a:f7:e1:50:76:c2:3a:fe:9e:17:5e:c5:34:7e:
27:6b:4d:f0:2d:a8:19:b6:17:3f:cf:7b:b8:79:e9:a5:90:0a:
03:95:e7:3b:ab:de:bd:1f:64:ba:24:ba:8b:d0:0d:85:69:7d:
fb:aa:b0:bd:a8:9a:1c:b2:a1:57:f8:33:da:61:2c:18:93:6c:
d0:72:3f:85:12:be:da:d8:a1:19:89:ac:ee:35:8c:98:01:08:
14:0f:0c:51:61:49:69:26:f9:e2:af:aa:98:d7:6f:9c:03:b7:
5a:7c:d8:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 27 03:34:29 2024 by rpki-client on console.sobornost.net