Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/3F452D58774711EFADB5976CC4F9AE02.roa
File: 3F452D58774711EFADB5976CC4F9AE02.roa (raw, json)
Hash identifier: nJIRVkvN8PfVduMXvP0twYvK6anKgZgjHfK5TJ4g5GI=
Subject key identifier: C4:9F:C8:6A:AE:A4:8C:E1:C8:35:81:C8:11:C9:B1:45:C0:A4:A8:47
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1652
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/3F452D58774711EFADB5976CC4F9AE02.roa
Signing time: Fri 20 Sep 2024 11:55:36 +0000
ROA not before: Fri 20 Sep 2024 11:55:36 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 16589
IP address blocks: 113.203.223.0/24 maxlen: 24
113.203.224.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Sep 2024 12:03:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5714 (0x1652)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Sep 20 11:55:36 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66ed62b8-f088
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7f:56:95:82:88:f3:53:91:a7:39:1f:c9:18:
f5:72:ac:c7:80:ec:93:61:e3:e8:4f:73:2b:64:60:
ba:c9:cc:3f:05:bc:f8:31:9e:59:6f:1e:e6:22:04:
83:f7:0f:0f:10:20:5a:bb:e2:c2:0a:6c:11:74:a8:
4b:4a:5e:8e:13:66:50:e8:f4:b7:5d:e0:44:25:4a:
55:f9:9c:44:5e:2e:3d:83:9e:9c:01:5e:4c:13:07:
05:2e:74:66:a7:6c:86:25:44:c2:15:02:5b:c5:93:
28:15:1c:77:14:b2:70:e4:fc:d2:25:9c:71:3e:10:
58:cc:2a:af:75:61:98:15:a5:c0:03:ea:a4:86:f1:
fa:27:21:e6:d0:7f:a8:ba:9d:cd:85:d4:37:0c:8e:
07:da:69:e8:dd:76:bd:37:ce:96:71:b8:50:d7:d1:
b0:35:37:87:8a:08:9e:40:57:13:b4:21:84:8b:7f:
6c:ca:8c:95:b2:12:76:d7:09:42:d1:80:f5:9b:5d:
30:e0:49:15:58:83:90:33:a9:91:18:40:7b:94:d7:
f1:4b:17:9f:8d:82:80:65:01:9b:69:27:75:5f:31:
e5:d9:3d:56:99:b2:58:d5:a2:55:31:49:ce:c4:f1:
27:fc:28:db:9c:c1:51:1d:e5:43:71:82:ed:65:5d:
4c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:9F:C8:6A:AE:A4:8C:E1:C8:35:81:C8:11:C9:B1:45:C0:A4:A8:47
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/3F452D58774711EFADB5976CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.223.0-113.203.226.255
Signature Algorithm: sha256WithRSAEncryption
2d:ce:26:b0:13:36:53:e9:ff:96:b3:03:fe:18:7a:79:42:4a:
9d:99:92:a4:4b:00:4f:5b:35:1e:58:ad:1d:7a:89:de:96:d0:
41:66:0f:11:2c:60:d9:92:44:27:c6:a6:e7:5e:e4:74:bc:20:
a3:f3:72:a5:3a:a8:bf:16:52:dd:1c:84:b5:3e:87:46:f2:7d:
35:e5:36:a9:ee:b0:27:0f:30:e8:6e:3b:47:93:a6:b8:31:b9:
a9:71:e9:97:ab:f4:fd:da:46:0e:99:40:b7:95:06:54:b1:4e:
ed:96:8c:80:e2:99:c6:b2:7b:3f:34:fe:47:cf:69:53:ff:5a:
94:b4:cf:5f:1f:a8:18:59:42:d6:8c:01:10:85:58:3d:f9:7f:
4f:d2:24:bd:da:a1:d7:dd:9e:41:ea:1f:3f:42:d8:a8:7e:32:
42:e6:68:ad:4b:2f:60:18:8e:b8:b1:99:27:b5:2f:5e:c8:bb:
8a:6d:e8:ff:39:68:10:21:36:d0:fc:f6:c5:23:b7:84:80:53:
61:1a:96:dc:53:89:3b:d9:0f:40:99:fc:f3:dc:58:20:5d:e1:
d6:17:05:6b:9c:7e:00:61:ef:6d:a1:5b:4a:7a:82:6d:7e:6d:
5d:2c:b8:6e:14:a2:3f:fb:b8:8d:0d:c6:7d:73:86:a6:1b:8a:
38:90:fa:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 03:30:42 2025 by rpki-client