Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/4B22EFDAF6EF11EEA680295EC4F9AE02.roa
File: 4B22EFDAF6EF11EEA680295EC4F9AE02.roa (raw, json)
Hash identifier: x2t5pv4y9drMIc+RGepFtg8uAiQh1stEHOMux4LuCv0=
Subject key identifier: 65:20:37:FC:B3:14:8A:48:51:CC:AF:5B:78:95:E7:2B:EB:37:8B:25
Certificate issuer: /CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3
Certificate serial: C0
Authority key identifier: C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/4B22EFDAF6EF11EEA680295EC4F9AE02.roa
Signing time: Wed 10 Apr 2024 04:03:31 +0000
ROA not before: Wed 10 Apr 2024 04:03:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 155.60.128.0/24 maxlen: 24
155.60.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Apr 2024 08:08:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 192 (0xc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3
Validity
Not Before: Apr 10 04:03:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=66160f93-be14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d3:39:e4:54:64:e8:30:3f:72:23:c5:98:61:
87:47:21:09:8f:1d:fb:5d:43:c6:d7:2b:5d:77:ce:
7e:fa:c5:05:aa:b5:de:b8:bf:0d:65:6e:16:15:22:
23:18:f1:fa:5e:a6:6f:7e:d0:14:5c:91:4f:17:2b:
5c:e0:0d:0c:0e:cf:d6:54:b2:f7:55:7f:42:2f:7e:
c8:89:16:4c:c9:ee:04:1b:c0:54:a9:ee:28:ba:10:
1d:50:ab:1a:44:f5:94:75:79:2e:57:4a:a7:35:84:
8b:35:fd:8e:97:d1:b8:24:6b:06:07:c7:f8:f4:41:
9d:e3:a6:eb:24:88:a1:5e:c8:6e:06:89:05:d7:da:
a3:f8:74:f2:c5:9a:29:c4:89:f2:96:dc:92:29:59:
33:1e:ba:00:c3:28:e6:5e:88:d0:20:2b:b9:7c:35:
01:d2:3a:e7:90:ff:0b:62:ed:6e:a5:89:a1:e4:2a:
3e:dd:c2:08:88:a6:a3:fc:08:69:ed:0f:04:b1:75:
66:e2:b5:85:37:0f:29:36:a7:8b:59:2e:0e:62:84:
91:7f:cc:ab:94:f0:37:44:3e:c1:93:05:cb:f1:04:
6e:e4:17:0a:6f:77:84:c4:9f:0c:6e:d0:9d:1c:09:
e1:db:70:66:9a:ae:d5:72:5f:7a:25:4f:09:39:fb:
e4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:20:37:FC:B3:14:8A:48:51:CC:AF:5B:78:95:E7:2B:EB:37:8B:25
X509v3 Authority Key Identifier:
keyid:C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/4B22EFDAF6EF11EEA680295EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
155.60.128.0/24
155.60.137.0/24
Signature Algorithm: sha256WithRSAEncryption
02:10:73:2b:23:26:fa:17:04:5a:f1:4a:d9:48:27:90:10:82:
9c:15:e9:7d:eb:21:7c:83:e2:4a:05:a0:68:50:9f:32:59:49:
6e:8e:d0:54:a5:4d:68:3b:8e:a2:f9:b0:87:3d:63:db:30:04:
27:94:a8:ee:e4:62:10:8e:63:31:a5:7a:82:b0:f5:ec:d9:18:
9c:56:7b:c6:49:91:65:e1:c6:62:3f:6f:23:fc:5a:8c:63:8b:
e4:b0:38:bc:09:72:2d:87:85:5f:ad:c9:9a:2c:45:47:41:83:
34:9e:69:f2:49:c5:3c:6b:7b:ef:8c:8e:93:8e:cd:30:dc:c9:
51:68:95:68:c7:61:3f:2c:a8:ff:96:f3:3f:5c:ad:1f:ea:b2:
3d:c1:53:7c:41:49:47:59:6b:9e:a9:e5:ec:6f:8d:0f:21:5d:
8f:ec:1f:bd:15:98:4b:92:61:1b:f3:2e:72:90:1f:cb:86:ed:
8a:a1:0a:bb:33:95:f9:3c:a2:7c:db:87:73:00:8d:18:de:ee:
05:85:76:cd:2d:c2:91:dc:22:ad:87:9d:79:38:76:a0:b5:44:
9b:b7:96:ee:94:8e:7f:7e:61:14:b3:e2:96:dc:ad:48:f9:f6:
b0:6f:0f:63:22:b1:e8:37:bb:2d:1c:bd:69:9e:ca:5c:53:f2:
63:3f:c2:e0
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NUVCQzgxMTAvBgNVBAUTKEM2MjE4NDgxNTFGNzk3QkY3MjMxMDdGMTRENjJDNjdB
MjEzQTUzRTMwHhcNMjQwNDEwMDQwMzMxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjE2MGY5My1iZTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAytM55FRk6DA/ciPFmGGHRyEJjx37XUPG1ytdd85++sUFqrXeuL8NZW4WFSIj
GPH6XqZvftAUXJFPFytc4A0MDs/WVLL3VX9CL37IiRZMye4EG8BUqe4ouhAdUKsa
RPWUdXkuV0qnNYSLNf2Ol9G4JGsGB8f49EGd46brJIihXshuBokF19qj+HTyxZop
xInyltySKVkzHroAwyjmXojQICu5fDUB0jrnkP8LYu1upYmh5Co+3cIIiKaj/Ahp
7Q8EsXVm4rWFNw8pNqeLWS4OYoSRf8yrlPA3RD7BkwXL8QRu5BcKb3eExJ8MbtCd
HAnh23Bmmq7Vcl96JU8JOfvkoQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGUgN/yz
FIpIUcyvW3iV5yvrN4slMB8GA1UdIwQYMBaAFMYhhIFR95e/cjEH8U1ixnohOlPj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUJDOC81ODk4MjBDMkVG
MDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3OXlNUWZ4VFdMR2VpRTZV
LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL3hpR0VnVkgzbDc5eU1RZnhUV0xHZWlFNlUtTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NUVCQzgvNTg5ODIwQzJFRjAyMTFFRDhDMkREOTFGQzRGOUFFMDIvNEIyMkVGREFG
NkVGMTFFRUE2ODAyOTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E
FjAUMBIEAgABMAwDBACbPIADBACbPIkwDQYJKoZIhvcNAQELBQADggEBAAIQcysj
JvoXBFrxStlIJ5AQgpwV6X3rIXyD4koFoGhQnzJZSW6O0FSlTWg7jqL5sIc9Y9sw
BCeUqO7kYhCOYzGleoKw9ezZGJxWe8ZJkWXhxmI/byP8Woxji+SwOLwJci2HhV+t
yZosRUdBgzSeafJJxTxre++MjpOOzTDcyVFolWjHYT8sqP+W8z9crR/qsj3BU3xB
SUdZa56p5exvjQ8hXY/sH70VmEuSYRvzLnKQH8uG7YqhCrszlfk8onzbh3MAjRje
7gWFds0twpHcIq2HnXk4dqC1RJu3lu6Ujn9+YRSz4pbcrUj59rBvD2Miseg3uy0c
vWmeylxT8mM/wuA=
-----END CERTIFICATE-----
Generated at Thu Apr 11 11:10:55 2024 by rpki-client on console-fra.rpki-client.org