Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/CB5370D41E9A11F08C496D42C4F9AE02.roa
File: CB5370D41E9A11F08C496D42C4F9AE02.roa (raw, json)
Hash identifier: TMUvBvWh2RgdYg+O13BejJXVszSMabYPvPgjRn3Gom4=
Subject key identifier: A2:A4:A7:AA:71:CB:3D:17:DE:4C:72:94:50:42:53:77:2E:73:66:BB
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 260D
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/CB5370D41E9A11F08C496D42C4F9AE02.roa
Signing time: Mon 21 Apr 2025 10:24:23 +0000
ROA not before: Mon 21 Apr 2025 10:24:23 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 103.11.63.0/24 maxlen: 24
103.151.26.0/24 maxlen: 24
103.151.27.0/24 maxlen: 24
113.203.208.0/24 maxlen: 24
113.203.209.0/24 maxlen: 24
113.203.210.0/24 maxlen: 24
113.203.211.0/24 maxlen: 24
113.203.212.0/24 maxlen: 24
113.203.213.0/24 maxlen: 24
113.203.214.0/24 maxlen: 24
113.203.215.0/24 maxlen: 24
113.203.216.0/24 maxlen: 24
113.203.217.0/24 maxlen: 24
113.203.218.0/24 maxlen: 24
113.203.219.0/24 maxlen: 24
113.203.220.0/24 maxlen: 24
113.203.222.0/24 maxlen: 24
113.203.223.0/24 maxlen: 24
113.203.225.0/24 maxlen: 24
113.203.226.0/24 maxlen: 24
113.203.227.0/24 maxlen: 24
113.203.228.0/24 maxlen: 24
113.203.229.0/24 maxlen: 24
113.203.230.0/24 maxlen: 24
113.203.231.0/24 maxlen: 24
113.203.233.0/24 maxlen: 24
113.203.241.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.244.0/24 maxlen: 24
113.203.245.0/24 maxlen: 24
113.203.246.0/24 maxlen: 24
113.203.248.0/24 maxlen: 24
113.203.252.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
113.203.254.0/24 maxlen: 24
113.203.255.0/24 maxlen: 24
115.167.61.0/24 maxlen: 24
115.167.64.0/24 maxlen: 24
115.167.77.0/24 maxlen: 24
115.167.101.0/24 maxlen: 24
115.167.102.0/24 maxlen: 24
115.167.103.0/24 maxlen: 24
115.167.112.0/22 maxlen: 24
115.167.117.0/24 maxlen: 24
115.167.118.0/24 maxlen: 24
115.167.119.0/24 maxlen: 24
115.167.124.0/24 maxlen: 24
115.167.125.0/24 maxlen: 24
175.110.64.0/22 maxlen: 24
175.110.81.0/24 maxlen: 24
175.110.82.0/24 maxlen: 24
175.110.90.0/24 maxlen: 24
175.110.91.0/24 maxlen: 24
175.110.97.0/24 maxlen: 24
175.110.98.0/24 maxlen: 24
175.110.99.0/24 maxlen: 24
175.110.101.0/24 maxlen: 24
175.110.102.0/24 maxlen: 24
175.110.103.0/24 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
175.110.107.0/24 maxlen: 24
175.110.108.0/24 maxlen: 24
175.110.109.0/24 maxlen: 24
175.110.110.0/24 maxlen: 24
175.110.111.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.144.0/24 maxlen: 24
180.178.146.0/24 maxlen: 24
180.178.147.0/24 maxlen: 24
180.178.148.0/24 maxlen: 24
180.178.149.0/24 maxlen: 24
180.178.150.0/24 maxlen: 24
180.178.160.0/24 maxlen: 24
180.178.161.0/24 maxlen: 24
180.178.162.0/24 maxlen: 24
180.178.163.0/24 maxlen: 24
180.178.164.0/24 maxlen: 24
180.178.165.0/24 maxlen: 24
180.178.166.0/24 maxlen: 24
180.178.167.0/24 maxlen: 24
180.178.168.0/24 maxlen: 24
180.178.169.0/24 maxlen: 24
180.178.170.0/24 maxlen: 24
180.178.171.0/24 maxlen: 24
180.178.176.0/22 maxlen: 22
180.178.180.0/24 maxlen: 24
180.178.181.0/24 maxlen: 24
180.178.182.0/24 maxlen: 24
180.178.183.0/24 maxlen: 24
180.178.184.0/22 maxlen: 22
180.178.185.0/24 maxlen: 24
180.178.186.0/24 maxlen: 24
180.178.187.0/24 maxlen: 24
180.178.188.0/24 maxlen: 24
180.178.190.0/24 maxlen: 24
180.178.191.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.226.0/24 maxlen: 24
223.29.228.0/24 maxlen: 24
223.29.229.0/24 maxlen: 24
223.29.230.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Apr 2025 10:26:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9741 (0x260d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Apr 21 10:24:23 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=68061cd7-e00d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ea:47:4b:37:f2:11:00:96:60:2f:1d:9e:76:
96:26:96:c3:f0:1d:fb:9c:ba:e2:d3:5b:42:13:be:
21:76:75:ce:28:63:d0:4a:7e:8f:82:90:c7:da:a8:
2e:4e:b1:a1:02:d5:a8:20:fb:19:53:88:cb:6c:93:
53:54:04:e4:35:93:95:33:71:cc:c9:80:08:61:a7:
c8:87:5a:04:94:2a:82:77:68:82:27:64:f2:65:93:
82:93:0e:1c:e0:49:97:0a:74:94:b1:56:9a:ae:c9:
a9:d1:cb:33:4a:84:f8:2f:62:0c:a6:51:78:68:c7:
75:97:02:05:e8:5c:41:75:13:26:7d:3f:a5:15:91:
9d:38:c7:35:75:f1:2c:5c:98:53:83:0d:3b:49:5a:
9f:69:0d:1d:6f:87:5b:79:8f:30:d5:04:1e:d5:48:
1d:e2:f4:1e:a5:9d:8d:70:bc:70:0a:11:b9:f6:0c:
9d:5b:29:35:90:fa:65:07:4f:a0:9c:7b:4c:8a:ae:
59:31:9c:d1:3c:2b:8c:49:7d:24:09:19:30:29:19:
64:2f:2f:7e:a8:8d:d3:9e:92:a1:f2:4b:eb:7c:f0:
0c:a8:88:ac:14:fa:7a:d6:a6:6c:2c:fc:7e:87:d8:
5b:fd:49:ee:09:3d:f8:d1:4e:4f:1f:90:5f:46:36:
e0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:A4:A7:AA:71:CB:3D:17:DE:4C:72:94:50:42:53:77:2E:73:66:BB
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/CB5370D41E9A11F08C496D42C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.11.63.0/24
103.151.26.0/23
113.203.208.0-113.203.220.255
113.203.222.0/23
113.203.225.0-113.203.231.255
113.203.233.0/24
113.203.241.0-113.203.246.255
113.203.248.0/24
113.203.252.0/22
115.167.61.0/24
115.167.64.0/24
115.167.77.0/24
115.167.101.0-115.167.103.255
115.167.112.0/22
115.167.117.0-115.167.119.255
115.167.124.0/23
175.110.64.0/22
175.110.81.0-175.110.82.255
175.110.90.0/23
175.110.97.0-175.110.99.255
175.110.101.0-175.110.111.255
180.178.142.0/24
180.178.144.0/24
180.178.146.0-180.178.150.255
180.178.160.0-180.178.171.255
180.178.176.0-180.178.188.255
180.178.190.0/23
202.92.26.0/24
223.29.225.0-223.29.226.255
223.29.228.0/22
223.29.235.0/24
223.29.238.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:ee:79:ac:27:a7:ef:e7:af:0b:86:8f:fb:9d:09:ec:35:b4:
3f:d0:e8:26:f2:bc:40:96:b0:2a:6c:78:4c:8d:bd:a1:ce:3d:
58:98:0c:d3:c1:42:6f:64:42:ea:30:44:fe:77:95:fb:c9:bf:
1f:53:f0:bf:e3:27:17:41:08:0f:66:50:cf:73:0a:ef:5f:eb:
32:75:19:3f:8f:a4:8b:3b:f9:11:2d:d6:6f:10:93:73:66:57:
7c:0e:8b:cc:7c:b5:a2:fe:28:26:c8:c6:fe:a0:0a:f5:b0:fd:
25:67:38:46:de:22:1f:3d:00:88:16:7b:11:54:8c:21:ba:35:
aa:8b:0f:0d:d9:cb:4b:6a:8c:a6:86:2f:80:2e:84:14:01:a0:
2e:2d:ec:fd:a7:76:6c:8f:53:6a:25:33:33:0f:cb:64:0b:9e:
7f:f1:63:62:90:4f:81:d1:ec:57:22:ca:96:6c:62:82:e1:0a:
1e:2f:46:5b:6d:75:95:6c:42:8a:ed:ff:20:82:87:6a:fc:bb:
bd:b4:46:3f:47:6f:70:49:78:2d:5b:af:a9:e2:70:f2:71:25:
3b:3c:4a:ce:bc:eb:38:fa:92:ef:2a:4f:e6:f6:74:90:4c:e1:
89:77:fa:c2:0b:3a:f9:69:7d:42:42:f4:23:ac:b3:57:ec:0c:
08:ee:4d:06
-----BEGIN CERTIFICATE-----
MIIGlTCCBX2gAwIBAgICJg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjUwNDIxMTAyNDIzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02ODA2MWNkNy1lMDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyupHSzfyEQCWYC8dnnaWJpbD8B37nLri01tCE74hdnXOKGPQSn6PgpDH2qgu
TrGhAtWoIPsZU4jLbJNTVATkNZOVM3HMyYAIYafIh1oElCqCd2iCJ2TyZZOCkw4c
4EmXCnSUsVaarsmp0cszSoT4L2IMplF4aMd1lwIF6FxBdRMmfT+lFZGdOMc1dfEs
XJhTgw07SVqfaQ0db4dbeY8w1QQe1Ugd4vQepZ2NcLxwChG59gydWyk1kPplB0+g
nHtMiq5ZMZzRPCuMSX0kCRkwKRlkLy9+qI3TnpKh8kvrfPAMqIisFPp61qZsLPx+
h9hb/UnuCT340U5PH5BfRjbgDwIDAQABo4IDuTCCA7UwHQYDVR0OBBYEFKKkp6px
yz0X3kxylFBCU3cuc2a7MB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvQ0I1MzcwRDQx
RTlBMTFGMDhDNDk2RDQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwggFBBggrBgEFBQcBBwEB
/wSCATAwggEsMIIBKAQCAAEwggEgAwQAZws/AwQBZ5caMAwDBARxy9ADBABxy9wD
BAFxy94wDAMEAHHL4QMEA3HL4AMEAHHL6TAMAwQAccvxAwQAccv2AwQAccv4AwQC
ccv8AwQAc6c9AwQAc6dAAwQAc6dNMAwDBABzp2UDBANzp2ADBAJzp3AwDAMEAHOn
dQMEA3OncAMEAXOnfAMEAq9uQDAMAwQAr25RAwQAr25SAwQBr25aMAwDBACvbmED
BAKvbmAwDAMEAK9uZQMEBK9uYAMEALSyjgMEALSykDAMAwQBtLKSAwQAtLKWMAwD
BAW0sqADBAK0sqgwDAMEBLSysAMEALSyvAMEAbSyvgMEAMpcGjAMAwQA3x3hAwQA
3x3iAwQC3x3kAwQA3x3rAwQA3x3uMA0GCSqGSIb3DQEBCwUAA4IBAQBc7nmsJ6fv
568Lho/7nQnsNbQ/0Ogm8rxAlrAqbHhMjb2hzj1YmAzTwUJvZELqMET+d5X7yb8f
U/C/4ycXQQgPZlDPcwrvX+sydRk/j6SLO/kRLdZvEJNzZld8DovMfLWi/igmyMb+
oAr1sP0lZzhG3iIfPQCIFnsRVIwhujWqiw8N2ctLaoymhi+ALoQUAaAuLez9p3Zs
j1NqJTMzD8tkC55/8WNikE+B0exXIsqWbGKC4QoeL0ZbbXWVbEKK7f8ggodq/Lu9
tEY/R29wSXgtW6+p4nDycSU7PErOvOs4+pLvKk/m9nSQTOGJd/rCCzr5aX1CQvQj
rLNX7AwI7k0G
-----END CERTIFICATE-----
Generated at Mon May 12 03:57:01 2025 by rpki-client