Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/DD00AEB803BC11EFA969A142C4F9AE02.roa
File: DD00AEB803BC11EFA969A142C4F9AE02.roa (raw, json)
Hash identifier: NmOiHoXz64Pd1rO08hsIyNfUvBqv/blx2FsEAv56W2U=
Subject key identifier: 59:CC:C2:4F:F0:16:F0:72:0C:2B:D7:20:CB:03:A7:F8:09:34:17:C9
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1122
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/DD00AEB803BC11EFA969A142C4F9AE02.roa
Signing time: Fri 26 Apr 2024 11:05:17 +0000
ROA not before: Fri 26 Apr 2024 11:05:17 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 138241
IP address blocks: 103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.250.0/24 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.67.0/24 maxlen: 24
115.167.78.0/24 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.68.0/22 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.97.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.152.0/21 maxlen: 21
202.92.18.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Apr 2024 16:38:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4386 (0x1122)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Apr 26 11:05:17 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=662b8a6d-1c59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:48:c7:8b:ad:69:31:a8:44:e0:33:81:af:85:
d3:fe:fa:0f:54:c9:c7:56:1a:a8:1c:c3:72:af:d1:
0d:cc:56:0a:24:24:70:ae:76:9d:b9:64:fb:a0:62:
be:d5:4f:ed:1e:6e:9f:43:78:32:91:bf:80:91:e6:
98:61:14:58:dd:84:53:40:e7:b1:e7:07:e6:40:d5:
65:57:12:24:16:ae:dd:c7:28:9f:d7:97:40:a9:75:
4a:37:48:6c:15:b8:ea:31:7a:91:b5:6f:5f:2d:b5:
79:bc:fb:8b:32:b2:84:fa:f5:9b:42:9e:77:a5:6e:
51:f5:67:70:d4:0b:25:ea:a0:76:c9:8e:04:ad:56:
7c:8d:f5:75:49:88:90:83:b7:51:07:9d:66:67:d0:
ae:be:d6:e1:d9:32:2c:94:b7:21:17:49:de:87:e9:
d8:dc:3d:c6:d9:52:3d:9d:17:9a:9d:83:c0:e2:16:
31:5b:42:62:2f:1f:ae:fc:08:2a:da:b1:82:2d:43:
38:b5:32:f8:0e:ef:f5:3f:e6:a6:8f:2c:94:db:f3:
4d:ff:21:de:0d:09:7b:3d:e6:10:11:8f:f4:c3:45:
c9:7e:83:84:30:7c:a7:33:43:cc:e1:4b:23:7d:cf:
85:fb:14:61:3b:d2:6d:71:5b:db:1b:6f:cd:d4:5e:
92:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:CC:C2:4F:F0:16:F0:72:0C:2B:D7:20:CB:03:A7:F8:09:34:17:C9
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/DD00AEB803BC11EFA969A142C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.27.0/24
113.203.208.0/24
113.203.216.0/23
113.203.231.0/24
113.203.250.0/24
115.167.49.0/24
115.167.67.0/24
115.167.78.0/24
115.167.125.0/24
175.110.68.0/22
175.110.80.0/22
175.110.97.0/24
175.110.109.0/24
180.178.142.0/24
180.178.152.0/21
202.92.18.0/24
202.92.20.0/24
223.29.227.0/24
223.29.235.0-223.29.236.255
223.29.238.0/23
Signature Algorithm: sha256WithRSAEncryption
99:00:86:a3:37:0c:a0:c2:2a:95:c7:6a:42:cb:4a:be:69:83:
c9:5f:0f:88:4f:24:0e:b3:d5:88:da:5c:a8:43:9e:c6:a7:af:
4d:cb:3e:b1:a2:35:93:0c:aa:60:21:e5:7a:68:45:c4:74:77:
7b:b8:9f:c0:ce:a1:71:81:56:9f:20:7e:7f:89:1a:b4:72:07:
c0:c6:66:33:79:58:5e:6b:9b:f9:1b:02:8f:76:27:14:dc:da:
c8:ca:d6:86:8b:27:c6:43:b9:5e:0d:de:d3:f6:69:0b:d1:c6:
a9:96:67:27:7c:1b:33:a7:ff:cf:38:17:d0:fa:25:b4:f1:37:
f7:e5:7c:ec:44:e2:9a:1d:c0:85:0f:e1:29:ef:68:c0:c4:6a:
a6:57:a7:1c:17:74:87:50:70:d8:be:5e:20:dd:1b:fe:ad:ad:
c4:55:f2:9d:dd:2c:44:4d:f2:80:b9:b3:4d:92:42:53:5b:44:
b2:26:33:f5:9b:ed:86:43:7f:17:7d:1b:bd:10:17:fa:41:df:
5d:1d:f2:0c:15:35:3f:f9:7d:0c:3d:d4:2c:d6:c5:1f:ee:2c:
ee:49:ab:91:60:02:b0:24:cc:f6:7c:bc:54:6d:86:10:a6:5a:
8a:37:8e:ee:0b:89:f8:52:0d:85:d9:13:6f:05:85:e5:e2:f8:
06:90:91:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 22:47:19 2024 by rpki-client on console.sobornost.net