Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/36D4E6E6DCE511EFBACFCC2FC4F9AE02.roa
File: 36D4E6E6DCE511EFBACFCC2FC4F9AE02.roa (raw, json)
Hash identifier: jZ8Aqmh8g4t6UvPFW5W6TU4S9jLuKbIlA0Z0DRQt1lg=
Subject key identifier: E9:B5:00:29:D5:16:5C:B4:58:C2:B9:5F:20:2C:0E:CE:3D:DB:AC:95
Certificate issuer: /CN=A9155647/serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB
Certificate serial: D5
Authority key identifier: AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/36D4E6E6DCE511EFBACFCC2FC4F9AE02.roa
Signing time: Mon 27 Jan 2025 19:30:50 +0000
ROA not before: Mon 27 Jan 2025 19:30:50 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 834
IP address blocks: 43.231.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 Jan 2025 13:23:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 213 (0xd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9155647
Validity
Not Before: Jan 27 19:30:50 2025 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=6797dee9-4802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:55:6d:d9:0a:27:de:b8:d0:20:52:30:3e:ff:
fd:2a:90:36:d4:72:72:24:7f:24:68:ab:3a:58:61:
89:ae:59:5c:79:f4:00:b2:7a:f5:29:00:dd:bc:69:
fe:ff:cb:df:26:be:43:82:d2:96:d1:9e:45:ee:a7:
19:39:53:ef:ea:00:09:4d:e1:9f:45:e2:be:56:77:
aa:9a:5c:e5:dc:95:e6:24:ab:5c:53:73:ce:9f:7d:
7b:f4:ac:af:90:f5:6f:48:7f:7b:80:58:e9:8b:a3:
26:f7:db:7f:ea:ec:a6:7b:53:28:4e:e9:c5:62:71:
e6:47:e0:c6:56:a5:db:9b:97:3d:82:ce:88:b9:7e:
44:ea:cd:f6:ad:16:22:d2:a6:4b:1b:f1:81:10:d0:
e7:fb:3f:91:ac:3a:28:cb:84:7b:97:33:c6:0a:96:
10:b0:5e:19:05:23:18:54:f9:58:82:3e:f8:02:73:
0c:e8:93:f8:38:df:dc:83:48:7f:10:55:9a:d1:1b:
17:8c:21:4d:4e:f8:e7:f8:30:91:a4:fb:c2:70:60:
ea:1d:83:bf:c3:48:c3:36:fc:0a:76:45:3e:56:75:
6f:17:bb:55:db:f1:2b:f1:c2:00:74:8b:c7:30:b0:
ab:fa:7c:33:45:9f:6d:5f:11:b1:e4:7f:81:3e:19:
45:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B5:00:29:D5:16:5C:B4:58:C2:B9:5F:20:2C:0E:CE:3D:DB:AC:95
X509v3 Authority Key Identifier:
keyid:AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/36D4E6E6DCE511EFBACFCC2FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.231.207.0/24
Signature Algorithm: sha256WithRSAEncryption
88:43:cb:bf:b7:4a:78:0e:8f:8b:45:08:1e:27:4c:e0:eb:f1:
86:47:38:c8:27:32:fc:8e:7e:56:ec:42:c8:f1:2d:25:3e:ca:
65:9c:8f:b9:94:e5:c8:40:bd:1a:b0:f6:5b:a2:7d:ec:b4:70:
13:f0:39:7a:dd:74:9c:87:91:64:79:15:32:37:6a:27:0c:35:
f3:d6:ce:5d:60:0f:e4:c1:4f:81:18:4d:92:98:48:96:68:8e:
bf:e5:67:c9:dd:98:e5:5a:da:12:55:de:17:fa:25:79:f0:a6:
a7:37:e7:aa:45:3b:c7:45:e6:8e:14:5a:12:3d:dd:7f:82:96:
49:48:94:3d:e7:a5:c7:92:f5:92:37:bc:e0:f8:da:60:71:9c:
fb:0d:e7:e6:53:d5:ab:a4:26:c2:b7:ce:01:35:a2:c0:de:5d:
c0:ae:eb:b5:62:0b:1e:10:89:db:e5:f8:50:c7:82:98:5a:e1:
b7:63:88:db:04:cc:57:e5:e8:8c:85:d4:1e:b8:5b:b5:99:09:
a7:0d:2f:75:d6:b8:a2:33:c6:8d:58:31:50:21:39:99:2b:37:
bc:9d:e6:b1:82:d8:14:85:d8:08:5a:2a:49:1f:ec:c9:31:00:
36:3d:4a:92:14:96:96:33:b3:86:63:9b:13:99:0c:43:a0:6a:
e1:5d:cb:5e
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTU2NDcxMTAvBgNVBAUTKEFEMzQ0NURCNDIwMTBCMTIxNUE0OUU0MjdGMUFFNzQw
MEQ3ODhCRkIwHhcNMjUwMTI3MTkzMDUwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD
VQQDEw02Nzk3ZGVlOS00ODAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAu1Vt2Qon3rjQIFIwPv/9KpA21HJyJH8kaKs6WGGJrllcefQAsnr1KQDdvGn+
/8vfJr5DgtKW0Z5F7qcZOVPv6gAJTeGfReK+Vneqmlzl3JXmJKtcU3POn3179Kyv
kPVvSH97gFjpi6Mm99t/6uyme1MoTunFYnHmR+DGVqXbm5c9gs6IuX5E6s32rRYi
0qZLG/GBENDn+z+RrDooy4R7lzPGCpYQsF4ZBSMYVPlYgj74AnMM6JP4ON/cg0h/
EFWa0RsXjCFNTvjn+DCRpPvCcGDqHYO/w0jDNvwKdkU+VnVvF7tV2/Er8cIAdIvH
MLCr+nwzRZ9tXxGx5H+BPhlFZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOm1ACnV
Fly0WMK5XyAsDs4926yVMB8GA1UdIwQYMBaAFK00RdtCAQsSFaSeQn8a50ANeIv7
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY0Ny85MDVDMTA0NkYz
NkYxMUVFOTk3MkVCNzlDNEY5QUUwMi9yVFJGMjBJQkN4SVZwSjVDZnhyblFBMTRp
X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3JUUkYyMElCQ3hJVnBKNUNmeHJuUUExNGlfcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NTU2NDcvOTA1QzEwNDZGMzZGMTFFRTk5NzJFQjc5QzRGOUFFMDIvMzZENEU2RTZE
Q0U1MTFFRkJBQ0ZDQzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAAr588wDQYJKoZIhvcNAQELBQADggEBAIhDy7+3SngOj4tF
CB4nTODr8YZHOMgnMvyOflbsQsjxLSU+ymWcj7mU5chAvRqw9luifey0cBPwOXrd
dJyHkWR5FTI3aicMNfPWzl1gD+TBT4EYTZKYSJZojr/lZ8ndmOVa2hJV3hf6JXnw
pqc356pFO8dF5o4UWhI93X+ClklIlD3npceS9ZI3vOD42mBxnPsN5+ZT1aukJsK3
zgE1osDeXcCu67ViCx4Qidvl+FDHgpha4bdjiNsEzFfl6IyF1B64W7WZCacNL3XW
uKIzxo1YMVAhOZkrN7yd5rGC2BSF2AhaKkkf7MkxADY9SpIUlpYzs4ZjmxOZDEOg
auFdy14=
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:57:49 2025 by rpki-client