Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/BFC99F309DBD11EFAB4B8C81C4F9AE02.roa
File: BFC99F309DBD11EFAB4B8C81C4F9AE02.roa (raw, json)
Hash identifier: GM9XQbtUqMWxjcq1UE+JcyuKPCVmB/j2UxIIkJalUNM=
Subject key identifier: AF:A1:72:DB:76:31:C9:28:69:81:4E:B8:7A:DE:41:49:C0:09:88:B5
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1BFB
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/BFC99F309DBD11EFAB4B8C81C4F9AE02.roa
Signing time: Sun 10 Nov 2024 11:57:35 +0000
ROA not before: Sun 10 Nov 2024 11:57:35 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 43.226.224.0/22 maxlen: 24
103.11.63.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
113.203.246.0/24 maxlen: 24
115.167.6.0/24 maxlen: 24
115.167.16.0/22 maxlen: 22
115.167.29.0/24 maxlen: 24
115.167.30.0/24 maxlen: 24
115.167.31.0/24 maxlen: 24
115.167.48.0/24 maxlen: 24
115.167.64.0/24 maxlen: 24
115.167.65.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
115.167.67.0/24 maxlen: 24
115.167.73.0/24 maxlen: 24
115.167.102.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.64.0/22 maxlen: 22
175.110.89.0/24 maxlen: 24
175.110.91.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.151.0/24 maxlen: 24
180.178.152.0/21 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.229.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Nov 2024 06:22:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7163 (0x1bfb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Nov 10 11:57:35 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67309faf-d276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:66:fb:34:1c:00:e2:f0:58:67:1c:1a:ad:de:
42:4e:43:33:ba:f1:16:36:fe:a8:b2:57:2e:ba:d7:
99:1c:fd:ca:61:61:60:aa:45:08:66:91:4e:0c:ff:
cd:63:f9:58:00:54:8a:07:8a:e5:8e:a9:29:5a:72:
35:e8:fd:da:ce:69:d3:3b:29:1c:3a:d1:42:36:26:
b3:b7:21:fe:ce:33:0e:04:ee:ab:af:11:91:60:84:
03:63:30:45:9f:42:f6:e4:b1:06:de:41:63:7e:55:
af:a2:61:ee:c0:62:40:bc:b4:ff:a2:54:aa:ce:ed:
4e:bc:a8:28:cb:47:2b:47:ed:fe:d8:a4:5e:12:1b:
62:b5:75:2b:64:cf:52:53:14:93:5c:3d:c9:68:aa:
e6:23:13:98:5f:fd:28:02:57:a5:4d:99:a2:1e:8c:
ad:ed:eb:6f:2b:6d:eb:95:dd:d2:15:72:8b:74:e3:
12:fa:c3:09:e0:20:c3:33:71:ef:87:08:a4:84:97:
fc:c0:69:b0:64:76:a4:13:0a:80:64:fa:3f:3a:69:
19:4c:09:ae:3a:0e:1d:6e:ba:fa:9a:47:80:c0:34:
7b:60:48:39:ff:6f:1b:76:7f:b3:2a:64:8f:03:5e:
bf:83:0a:79:db:8a:97:15:03:47:48:7b:80:71:59:
c7:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:A1:72:DB:76:31:C9:28:69:81:4E:B8:7A:DE:41:49:C0:09:88:B5
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/BFC99F309DBD11EFAB4B8C81C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.226.224.0/22
103.11.63.0/24
113.203.208.0/24
113.203.241.0/24
113.203.246.0/24
115.167.6.0/24
115.167.16.0/22
115.167.29.0-115.167.31.255
115.167.48.0/24
115.167.64.0/22
115.167.73.0/24
115.167.102.0/24
115.167.124.0/23
175.110.64.0/22
175.110.89.0/24
175.110.91.0/24
180.178.142.0/24
180.178.146.0/24
180.178.151.0-180.178.159.255
180.178.161.0/24
180.178.188.0/24
202.92.26.0/24
223.29.225.0/24
223.29.227.0/24
223.29.229.0/24
223.29.239.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:85:97:db:f2:77:86:b4:52:37:94:84:ef:02:ab:ce:d1:e0:
a8:0d:89:a3:d3:be:5f:a8:39:42:a2:14:0d:01:af:76:67:29:
a7:c6:8a:8d:ec:9a:12:39:6a:d9:35:09:a0:a0:64:50:46:0f:
61:e5:70:15:0e:6f:1b:c8:1a:80:93:13:ed:d1:d4:65:79:05:
77:f4:b8:0b:dd:68:f2:9c:62:d7:4c:ae:cc:f0:9f:93:26:17:
04:95:29:6f:7e:7c:e7:ed:d9:9d:ac:47:23:47:bb:a7:39:3d:
5e:a4:41:93:6c:0c:87:4d:88:c0:5d:13:e4:29:cf:75:9e:be:
9c:57:9c:bb:7d:34:81:50:ee:f1:13:30:c2:b8:82:49:b0:c9:
3e:ad:be:85:65:e9:eb:a2:e9:d6:f0:f6:d6:9e:07:8e:75:c9:
f7:c2:3b:80:2d:8e:ea:e9:8a:65:8c:50:ff:e6:f8:ad:45:0c:
9d:bf:1c:22:be:cd:76:3d:f7:5a:06:ca:e6:db:51:0a:b2:80:
b3:fb:cf:3d:d7:2b:72:71:15:3f:b3:24:81:35:89:90:22:4a:
ab:c5:ef:09:e7:78:6e:78:76:84:a0:64:17:ee:2f:46:62:2c:
ef:8e:bd:16:6c:41:50:37:a0:e3:16:51:02:08:e9:0d:df:8b:
df:79:fc:f4
-----BEGIN CERTIFICATE-----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Generated at Mon Nov 11 14:33:47 2024 by rpki-client on console.sobornost.net