Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/7FB605AA54CF11EF8F13252EC4F9AE02.roa
File: 7FB605AA54CF11EF8F13252EC4F9AE02.roa (raw, json)
Hash identifier: BZnX2lu/nu4BZ72N2fuY5lPJiE5JAhARcUyaoWhAJhk=
Subject key identifier: 73:AF:79:EC:29:FE:DD:18:8D:A4:38:AF:08:D6:FE:4D:3F:7A:C0:E4
Certificate issuer: /CN=A91104C9/serialNumber=68AE5BEB1BB7E442CEE0A7E014029FF72E3DB41F
Certificate serial: 0B62
Authority key identifier: 68:AE:5B:EB:1B:B7:E4:42:CE:E0:A7:E0:14:02:9F:F7:2E:3D:B4:1F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/7FB605AA54CF11EF8F13252EC4F9AE02.roa
Signing time: Wed 07 Aug 2024 15:12:45 +0000
ROA not before: Wed 07 Aug 2024 15:12:45 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 153179
IP address blocks: 103.76.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 10:57:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2914 (0xb62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91104C9/serialNumber=68AE5BEB1BB7E442CEE0A7E014029FF72E3DB41F
Validity
Not Before: Aug 7 15:12:45 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=66b38eed-8483
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:62:31:54:8d:5b:59:10:59:79:37:80:59:bc:
1c:a9:92:98:14:43:bd:33:a7:0c:94:1e:5e:ef:7e:
aa:3a:d9:57:17:9c:dc:62:ae:c6:2a:78:50:9c:05:
01:e6:21:30:b9:50:b1:66:ad:7d:17:03:0b:1f:69:
7d:f3:8e:3e:c7:ed:66:ba:0a:75:1d:04:dc:08:4e:
2f:d6:fd:a7:fb:a3:f6:b5:96:d9:b6:73:9c:71:98:
1b:f6:38:5d:84:41:6c:20:bf:40:73:e6:4f:a9:1a:
d3:75:0b:f5:87:cc:16:7f:f4:a6:9c:f4:29:98:d1:
c1:cf:7b:05:5f:ed:36:28:33:2c:d4:d1:ba:80:69:
fe:8f:1f:dd:7c:59:43:bb:3d:2e:e1:32:6b:97:de:
0b:ec:1d:16:28:74:83:e8:4f:74:70:b9:1e:42:f7:
6a:07:df:d2:4f:bf:e9:54:98:ba:9b:3a:ba:c8:7f:
43:12:51:97:6c:65:dc:b0:c4:d2:bd:22:67:92:70:
e5:4d:4f:a3:0f:24:85:76:46:a1:f6:52:f1:d1:f6:
74:5d:6c:de:c6:af:2a:b2:41:df:1c:e1:2d:f9:44:
f2:90:d5:6d:3b:ab:25:cb:41:a5:e1:60:92:e0:79:
fa:d1:ff:b3:41:b8:2c:ff:f1:6f:cb:f3:48:b5:3f:
35:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:AF:79:EC:29:FE:DD:18:8D:A4:38:AF:08:D6:FE:4D:3F:7A:C0:E4
X509v3 Authority Key Identifier:
keyid:68:AE:5B:EB:1B:B7:E4:42:CE:E0:A7:E0:14:02:9F:F7:2E:3D:B4:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/7FB605AA54CF11EF8F13252EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.76.243.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:46:44:79:1d:bc:e6:82:a5:1f:b9:17:fc:a0:c2:8f:f0:8f:
b5:11:47:b0:94:fd:90:a9:75:5d:c5:e4:69:0e:5f:2a:b6:9e:
21:1f:3d:44:e7:2a:08:19:3f:2c:8b:59:7c:8e:88:9c:37:af:
7a:18:59:37:90:2e:05:91:ae:15:e3:3d:4a:39:0a:02:3b:21:
09:62:49:6d:2e:af:00:3a:8a:87:17:99:f0:ea:0d:b5:65:50:
15:06:be:b8:1a:70:5f:91:f2:e8:e8:e4:5e:63:a5:21:58:b2:
66:01:74:bf:36:db:8a:f0:de:f4:da:72:fd:a6:48:07:5b:97:
a6:cb:12:77:ed:0f:e0:7b:2b:d6:0d:04:08:bf:49:1f:09:f8:
ea:a6:5c:88:19:09:5c:94:25:c4:ef:db:59:4f:0c:c8:b2:c0:
68:29:94:b9:8b:2f:1c:90:b1:e0:70:9e:3e:7e:1b:0e:cf:a5:
c9:79:15:72:ca:61:e5:1d:7a:4c:ec:c5:05:70:6a:52:4d:16:
53:a8:02:b6:ce:86:3d:7e:67:4a:ef:a6:06:7c:b2:1c:78:24:
09:4f:ed:b5:be:1a:dd:c4:47:28:6d:c9:a2:12:70:94:ee:5d:
b7:0f:b8:fc:a3:2a:d0:0b:aa:d4:fc:99:b5:8b:2c:19:d4:a8:
d0:e5:9a:17
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICC2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MTA0QzkxMTAvBgNVBAUTKDY4QUU1QkVCMUJCN0U0NDJDRUUwQTdFMDE0MDI5RkY3
MkUzREI0MUYwHhcNMjQwODA3MTUxMjQ1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmIzOGVlZC04NDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1mIxVI1bWRBZeTeAWbwcqZKYFEO9M6cMlB5e736qOtlXF5zcYq7GKnhQnAUB
5iEwuVCxZq19FwMLH2l9844+x+1mugp1HQTcCE4v1v2n+6P2tZbZtnOccZgb9jhd
hEFsIL9Ac+ZPqRrTdQv1h8wWf/SmnPQpmNHBz3sFX+02KDMs1NG6gGn+jx/dfFlD
uz0u4TJrl94L7B0WKHSD6E90cLkeQvdqB9/ST7/pVJi6mzq6yH9DElGXbGXcsMTS
vSJnknDlTU+jDySFdkah9lLx0fZ0XWzexq8qskHfHOEt+UTykNVtO6sly0Gl4WCS
4Hn60f+zQbgs//Fvy/NItT81XQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHOveewp
/t0YjaQ4rwjW/k0/esDkMB8GA1UdIwQYMBaAFGiuW+sbt+RCzuCn4BQCn/cuPbQf
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRDOS8yQUE4QjM4ODE0
QzgxMUVBODdEMTUxNkNDNEY5QUUwMi9hSzViNnh1MzVFTE80S2ZnRkFLZjl5NDl0
QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2FLNWI2eHUzNUVMTzRLZmdGQUtmOXk0OXRCOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MTA0QzkvMkFBOEIzODgxNEM4MTFFQTg3RDE1MTZDQzRGOUFFMDIvN0ZCNjA1QUE1
NENGMTFFRjhGMTMyNTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnTPMwDQYJKoZIhvcNAQELBQADggEBAA5GRHkdvOaCpR+5
F/ygwo/wj7URR7CU/ZCpdV3F5GkOXyq2niEfPUTnKggZPyyLWXyOiJw3r3oYWTeQ
LgWRrhXjPUo5CgI7IQliSW0urwA6iocXmfDqDbVlUBUGvrgacF+R8ujo5F5jpSFY
smYBdL8224rw3vTacv2mSAdbl6bLEnftD+B7K9YNBAi/SR8J+OqmXIgZCVyUJcTv
21lPDMiywGgplLmLLxyQseBwnj5+Gw7Ppcl5FXLKYeUdekzsxQVwalJNFlOoArbO
hj1+Z0rvpgZ8shx4JAlP7bW+Gt3ERyhtyaIScJTuXbcPuPyjKtALqtT8mbWLLBnU
qNDlmhc=
-----END CERTIFICATE-----
Generated at Thu Aug 15 14:01:24 2024 by rpki-client on console-ams.rpki-client.org