Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/FFAFB33C259011EF9C164253C4F9AE02.roa
File: FFAFB33C259011EF9C164253C4F9AE02.roa (raw, json)
Hash identifier: HjJnyaaKo+CqN6yedAZe/NZ/ek+ERS5sbhM6ZMPwe6A=
Subject key identifier: B1:A1:5B:F6:23:AD:A9:A2:47:6A:A8:02:AD:47:C2:32:E3:9F:63:13
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 12F0
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/FFAFB33C259011EF9C164253C4F9AE02.roa
Signing time: Sat 08 Jun 2024 12:16:57 +0000
ROA not before: Sat 08 Jun 2024 12:16:57 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 113.203.245.0/24 maxlen: 24
113.203.249.0/24 maxlen: 24
113.203.250.0/24 maxlen: 24
113.203.251.0/24 maxlen: 24
113.203.252.0/22 maxlen: 24
115.167.49.0/24 maxlen: 24
115.167.65.0/24 maxlen: 24
115.167.66.0/24 maxlen: 24
180.178.142.0/24 maxlen: 24
180.178.184.0/24 maxlen: 24
223.29.225.0/24 maxlen: 24
223.29.227.0/24 maxlen: 24
223.29.231.0/24 maxlen: 24
223.29.235.0/24 maxlen: 24
223.29.236.0/24 maxlen: 24
223.29.237.0/24 maxlen: 24
223.29.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jun 2024 12:17:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4848 (0x12f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jun 8 12:16:57 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=66644bb8-b404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:57:14:18:ad:7d:7b:46:b8:ea:03:62:d5:3c:
43:ca:39:d4:0d:29:61:96:1a:2f:07:53:92:73:6c:
76:ae:2b:21:e8:8c:d1:4a:5c:45:62:00:32:d9:66:
3c:1a:b9:26:d7:f8:0f:b4:e6:34:de:77:76:64:a4:
47:f4:a9:64:0e:8f:2a:bd:b7:17:b0:6a:64:4d:3b:
64:f9:39:2d:67:99:9c:63:80:57:dc:30:d2:04:71:
82:81:71:c4:53:db:a6:b5:6f:57:cd:34:cc:0e:19:
1e:b0:b2:15:4c:1a:07:f1:26:4c:7d:2f:b4:72:63:
e3:f7:cc:3f:72:fe:66:a9:02:1a:b2:fd:87:e7:fc:
55:89:55:53:72:2c:9f:78:a2:8e:bc:c1:8c:7e:36:
8f:25:fa:3a:d9:74:15:85:49:c3:45:07:f6:f7:59:
4a:55:b0:09:0a:7c:40:f4:f2:e1:72:92:09:48:78:
12:58:e7:85:bc:24:eb:f7:d4:e0:07:e5:b4:69:86:
a9:14:7a:a4:60:9d:be:4a:d1:10:ac:38:32:ee:7b:
e9:43:38:c3:e2:d9:e6:70:20:3a:04:e4:01:9f:35:
0a:28:0c:ee:d7:7d:b6:f7:9b:19:e3:b7:0a:bb:e4:
91:d3:66:42:c4:98:55:b5:98:be:b6:13:fe:61:c2:
23:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:A1:5B:F6:23:AD:A9:A2:47:6A:A8:02:AD:47:C2:32:E3:9F:63:13
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/FFAFB33C259011EF9C164253C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.245.0/24
113.203.249.0-113.203.255.255
115.167.49.0/24
115.167.65.0-115.167.66.255
180.178.142.0/24
180.178.184.0/24
223.29.225.0/24
223.29.227.0/24
223.29.231.0/24
223.29.235.0-223.29.238.255
Signature Algorithm: sha256WithRSAEncryption
90:9e:23:07:f9:e4:80:39:85:b1:dd:e8:5f:28:98:02:6a:35:
de:56:fb:be:62:56:94:24:06:65:93:2d:12:d1:d7:d3:24:ad:
99:f3:1f:fd:38:92:af:b5:84:90:b1:71:4e:ce:ca:3b:09:aa:
94:0b:c0:f9:7f:f0:c7:27:e4:56:f9:35:a5:62:fb:da:90:d2:
4f:76:6a:05:69:93:c1:51:89:d7:a4:44:d2:f6:32:d4:96:a2:
b1:57:58:46:b6:47:67:02:e2:71:f6:30:f8:7b:3a:0a:5d:cf:
4e:94:ba:59:32:89:50:69:08:29:7a:b4:3e:7e:53:9c:cb:81:
1a:7c:ba:a4:7e:2b:e8:8e:57:56:3a:78:42:1a:cc:3a:c2:fa:
4e:e0:0c:71:0a:9a:2e:cc:98:50:99:c6:fb:aa:ef:e7:77:74:
c4:7c:86:30:c3:98:e0:5d:6b:6f:96:91:56:92:1c:1f:f8:99:
e2:b8:65:b9:64:ed:15:4e:76:f9:24:d4:42:59:6d:3d:81:6c:
e5:6d:70:09:06:74:71:b0:8d:4f:a9:af:7a:9c:96:72:71:cf:
00:43:36:04:57:b6:1b:12:78:5f:12:48:9a:b2:41:2e:ab:76:
c0:e4:58:a7:b2:75:82:55:af:e0:36:45:b4:04:ab:d8:df:43:
e0:0d:bf:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 04:17:40 2025 by rpki-client