Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A1AF4AE4870211EF83F2E610C4F9AE02.roa
File: A1AF4AE4870211EF83F2E610C4F9AE02.roa (raw, json)
Hash identifier: G7aZQZO7r10gkLAxiF/owy3W8Km8Ijs1mMQ/52W5qcE=
Subject key identifier: A7:64:BD:60:11:E1:F2:67:AC:96:D3:5F:D0:71:E4:9C:1B:3A:91:8E
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1797
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A1AF4AE4870211EF83F2E610C4F9AE02.roa
Signing time: Thu 10 Oct 2024 12:24:44 +0000
ROA not before: Thu 10 Oct 2024 12:24:44 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 43.226.224.0/22 maxlen: 24
103.11.63.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.252.0/22 maxlen: 24
115.167.2.0/24 maxlen: 24
115.167.5.0/24 maxlen: 24
115.167.6.0/24 maxlen: 24
115.167.12.0/22 maxlen: 24
115.167.16.0/22 maxlen: 24
115.167.20.0/22 maxlen: 24
115.167.50.0/24 maxlen: 24
115.167.56.0/22 maxlen: 24
115.167.60.0/22 maxlen: 24
115.167.64.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.116.0/24 maxlen: 24
115.167.117.0/24 maxlen: 24
115.167.120.0/22 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.152.0/21 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.165.0/24 maxlen: 24
180.178.167.0/24 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.176.0/22 maxlen: 24
180.178.180.0/22 maxlen: 24
180.178.184.0/22 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 12:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6039 (0x1797)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Oct 10 12:24:44 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6707c78c-e5da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1d:19:20:2c:ef:f5:e8:af:01:8a:0e:b9:a6:
30:30:d8:ca:49:58:96:90:27:90:8f:5e:55:c7:d6:
24:45:d8:75:71:aa:ff:22:f0:54:8c:a5:ea:ba:b8:
cf:0e:49:0e:ec:cf:fe:d1:a0:b6:70:94:4b:51:0e:
e5:96:97:b6:44:25:29:89:22:2a:a7:72:16:ac:d8:
10:5a:0d:44:4f:e6:6a:7f:ff:8d:4b:7d:4c:ad:42:
72:6e:75:c1:ac:12:23:18:7f:87:d4:43:a3:20:ce:
5c:7b:9d:ae:31:18:0f:ca:5e:de:d3:7f:e2:c4:68:
97:a5:b8:e8:f2:08:0f:06:e1:17:9a:03:18:59:f2:
6d:ca:ae:b5:97:d2:58:6c:2f:ab:af:d5:35:54:0f:
96:fe:23:99:fc:2b:8c:f9:e0:81:5b:82:ec:41:d7:
f8:e3:03:17:1d:32:7a:fc:0d:d3:37:10:dd:41:42:
37:76:be:fe:c7:a1:cd:4e:44:1b:b6:19:a1:4e:77:
97:a6:79:7b:f7:19:f0:81:1c:8f:7b:80:74:c5:fe:
0e:03:20:dd:29:27:fc:f3:17:81:89:d1:77:c7:54:
e2:38:0e:e7:75:02:7b:2f:38:78:75:c2:29:f7:b7:
af:12:a8:0b:a1:94:8d:c2:cd:5a:d8:30:ef:8c:5c:
86:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:64:BD:60:11:E1:F2:67:AC:96:D3:5F:D0:71:E4:9C:1B:3A:91:8E
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/A1AF4AE4870211EF83F2E610C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.224.0/22
103.11.63.0/24
113.203.210.0/24
113.203.215.0/24
113.203.217.0/24
113.203.219.0-113.203.220.255
113.203.222.0/24
113.203.224.0/23
113.203.227.0/24
113.203.243.0/24
113.203.252.0/22
115.167.2.0/24
115.167.5.0-115.167.6.255
115.167.12.0-115.167.23.255
115.167.50.0/24
115.167.56.0-115.167.64.255
115.167.78.0/24
115.167.116.0/23
115.167.120.0/22
115.167.125.0/24
175.110.104.0/24
180.178.142.0/24
180.178.144.0/24
180.178.146.0/24
180.178.148.0-180.178.150.255
180.178.152.0-180.178.160.255
180.178.163.0/24
180.178.165.0/24
180.178.167.0-180.178.168.255
180.178.170.0/24
180.178.176.0-180.178.187.255
202.92.26.0/24
223.29.231.0/24
223.29.235.0-223.29.239.255
Signature Algorithm: sha256WithRSAEncryption
1e:5c:e2:e2:bf:66:64:2d:90:06:1d:8b:a7:61:49:42:e9:cc:
a0:ec:f3:bd:f6:48:a9:be:7e:eb:b5:9a:13:5d:82:ff:d9:c3:
fa:93:cb:ae:61:b1:7d:20:f9:53:af:43:35:63:1d:d6:6e:ac:
a2:e9:80:fb:bf:0c:6c:b2:c4:f3:7b:89:1d:fe:65:c1:7e:6f:
ea:23:52:d9:a7:cf:e9:98:ba:d7:fe:3b:cc:57:74:b0:c5:de:
19:9d:35:d5:2b:77:b8:3f:9b:dd:1d:cb:f6:c7:ac:92:57:b4:
06:2c:b0:5e:0b:c0:8a:d1:a2:98:c6:d8:da:90:94:49:9e:6c:
a7:3c:85:4c:76:52:a7:89:59:0f:05:78:ae:52:7a:e7:30:9a:
42:68:96:e1:eb:88:99:11:ef:f9:3c:04:d9:a0:8c:a3:15:f9:
52:9c:56:fb:dd:a5:3e:26:aa:86:9b:c9:31:5d:6d:7f:50:61:
f8:8c:ed:58:47:ef:b7:8c:60:3b:47:10:ec:ea:53:1d:b2:74:
01:33:80:bb:22:70:c7:37:8f:bd:d5:b4:8e:9e:4e:c0:9f:8c:
21:7b:b9:0d:12:18:f0:57:4a:0e:b3:4e:9d:e8:2b:8a:0a:99:
c8:03:08:9a:1e:86:f1:e3:38:65:d2:0e:db:c9:54:55:6b:13:
02:f8:0f:50
-----BEGIN CERTIFICATE-----
MIIGiTCCBXGgAwIBAgICF5cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQxMDEwMTIyNDQ0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzA3Yzc4Yy1lNWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvh0ZICzv9eivAYoOuaYwMNjKSViWkCeQj15Vx9YkRdh1car/IvBUjKXqurjP
DkkO7M/+0aC2cJRLUQ7llpe2RCUpiSIqp3IWrNgQWg1ET+Zqf/+NS31MrUJybnXB
rBIjGH+H1EOjIM5ce52uMRgPyl7e03/ixGiXpbjo8ggPBuEXmgMYWfJtyq61l9JY
bC+rr9U1VA+W/iOZ/CuM+eCBW4LsQdf44wMXHTJ6/A3TNxDdQUI3dr7+x6HNTkQb
thmhTneXpnl79xnwgRyPe4B0xf4OAyDdKSf88xeBidF3x1TiOA7ndQJ7Lzh4dcIp
97evEqgLoZSNws1a2DDvjFyGgwIDAQABo4IDrTCCA6kwHQYDVR0OBBYEFKdkvWAR
4fJnrJbTX9Bx5JwbOpGOMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvQTFBRjRBRTQ4
NzAyMTFFRjgzRjJFNjEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggE1BggrBgEFBQcBBwEB
/wSCASQwggEgMIIBHAQCAAEwggEUAwQCK+LgAwQAZws/AwQAccvSAwQAccvXAwQA
ccvZMAwDBABxy9sDBABxy9wDBABxy94DBAFxy+ADBABxy+MDBABxy/MDBAJxy/wD
BABzpwIwDAMEAHOnBQMEAHOnBjAMAwQCc6cMAwQDc6cQAwQAc6cyMAwDBANzpzgD
BABzp0ADBABzp04DBAFzp3QDBAJzp3gDBABzp30DBACvbmgDBAC0so4DBAC0spAD
BAC0spIwDAMEArSylAMEALSyljAMAwQDtLKYAwQAtLKgAwQAtLKjAwQAtLKlMAwD
BAC0sqcDBAC0sqgDBAC0sqowDAMEBLSysAMEArSyuAMEAMpcGgMEAN8d5zAMAwQA
3x3rAwQE3x3gMA0GCSqGSIb3DQEBCwUAA4IBAQAeXOLiv2ZkLZAGHYunYUlC6cyg
7PO99kipvn7rtZoTXYL/2cP6k8uuYbF9IPlTr0M1Yx3Wbqyi6YD7vwxsssTze4kd
/mXBfm/qI1LZp8/pmLrX/jvMV3Swxd4ZnTXVK3e4P5vdHcv2x6ySV7QGLLBeC8CK
0aKYxtjakJRJnmynPIVMdlKniVkPBXiuUnrnMJpCaJbh64iZEe/5PATZoIyjFflS
nFb73aU+JqqGm8kxXW1/UGH4jO1YR++3jGA7RxDs6lMdsnQBM4C7InDHN4+91bSO
nk7An4whe7kNEhjwV0oOs06d6CuKCpnIAwiaHobx4zhl0g7byVRVaxMC+A9Q
Generated at Thu Oct 10 15:37:33 2024 by rpki-client on console.sobornost.net