Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9164F45/336119C442F611EEA2524D63C4F9AE02/4261B090431511EEA5401D3EC4F9AE02.roa
File: 4261B090431511EEA5401D3EC4F9AE02.roa (raw, json)
Hash identifier: +6Qqi8dNXTBFL+xw9tA99+fpEFsIBas47MwwC3C5U74=
Subject key identifier: 09:78:56:0B:98:1B:6F:C6:28:3A:54:99:2A:E1:C8:14:FA:CC:C9:F2
Certificate issuer: /CN=A9164F45/serialNumber=24320EAFF9A820B8EDA59E03E40555C5F34FEFCC
Certificate serial: 0E
Authority key identifier: 24:32:0E:AF:F9:A8:20:B8:ED:A5:9E:03:E4:05:55:C5:F3:4F:EF:CC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JDIOr_moILjtpZ4D5AVVxfNP78w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9164F45/336119C442F611EEA2524D63C4F9AE02/4261B090431511EEA5401D3EC4F9AE02.roa
Signing time: Fri 25 Aug 2023 07:01:49 +0000
ROA not before: Fri 25 Aug 2023 07:01:49 +0000
ROA not after: Tue 31 Oct 2023 00:00:00 +0000
asID: 10118
IP address blocks: 203.145.72.0/21 maxlen: 24
203.145.80.0/21 maxlen: 24
203.145.88.0/21 maxlen: 24
2407:3100::/32 maxlen: 32
2407:3100::/36 maxlen: 36
2407:3100:1000::/36 maxlen: 36
2407:3100:2000::/36 maxlen: 36
2407:3100:3000::/36 maxlen: 36
2407:3100:4000::/36 maxlen: 36
2407:3100:5000::/36 maxlen: 36
2407:3100:6000::/36 maxlen: 36
2407:3100:7000::/36 maxlen: 36
2407:3100:8000::/36 maxlen: 36
2407:3100:8113::/48 maxlen: 48
2407:3100:9000::/36 maxlen: 36
2407:3100:a000::/36 maxlen: 36
2407:3100:b000::/36 maxlen: 36
2407:3100:c000::/36 maxlen: 36
2407:3100:d000::/36 maxlen: 36
2407:3100:e000::/36 maxlen: 36
2407:3100:f000::/36 maxlen: 36
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14 (0xe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9164F45/serialNumber=24320EAFF9A820B8EDA59E03E40555C5F34FEFCC
Validity
Not Before: Aug 25 07:01:49 2023 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=64e851dc-9586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:12:84:69:c4:64:b4:76:0f:e4:c0:9f:61:4f:
64:3a:0f:33:fc:30:ed:22:66:a5:58:7c:4c:4c:12:
9f:e4:c6:ae:35:31:1d:23:53:28:7a:78:17:9b:07:
12:7e:cb:96:bf:00:61:4a:be:a8:57:a5:55:a2:c4:
0b:37:e3:47:d0:62:6d:c4:df:d0:3c:9a:81:2f:85:
f4:c5:48:d3:4c:cb:6c:1a:08:b0:9e:db:11:ad:b1:
ba:ce:8f:d9:3b:7d:0e:72:ed:82:b8:d9:e2:18:18:
8a:e2:5f:7e:ee:33:83:d2:4e:dc:22:40:0c:68:ff:
ee:75:63:d9:1c:76:11:d5:e3:62:b4:e0:f8:f7:fc:
2a:ef:a1:fc:62:af:74:6a:3d:6f:e0:67:45:f9:d7:
d4:b5:ed:cd:d2:83:93:32:50:ea:8e:46:bb:a7:65:
4c:7f:5a:03:d6:f3:6e:7f:f5:9d:c9:a3:81:58:4b:
20:0a:e3:a5:0d:b1:b5:fe:98:30:28:17:8c:bb:1a:
6b:94:e0:48:e7:de:b4:0e:66:45:ae:f2:22:0a:9a:
0b:b6:1b:2f:d7:9d:ad:79:e1:70:a8:27:a1:11:17:
30:dc:6b:67:fb:a3:34:f5:b0:6d:a5:fa:50:e0:c0:
72:26:32:01:cc:86:90:c9:e4:90:1d:f8:14:d6:dd:
d8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:78:56:0B:98:1B:6F:C6:28:3A:54:99:2A:E1:C8:14:FA:CC:C9:F2
X509v3 Authority Key Identifier:
keyid:24:32:0E:AF:F9:A8:20:B8:ED:A5:9E:03:E4:05:55:C5:F3:4F:EF:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9164F45/336119C442F611EEA2524D63C4F9AE02/JDIOr_moILjtpZ4D5AVVxfNP78w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JDIOr_moILjtpZ4D5AVVxfNP78w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164F45/336119C442F611EEA2524D63C4F9AE02/4261B090431511EEA5401D3EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.145.72.0-203.145.95.255
IPv6:
2407:3100::/32
Signature Algorithm: sha256WithRSAEncryption
c7:2a:4f:bb:01:12:df:45:d6:0f:1e:31:e8:a6:33:76:13:9f:
e5:cd:79:e6:75:08:c5:6b:d1:e6:b9:e6:ba:e7:f6:48:08:ab:
24:3a:63:de:85:dd:da:fd:49:4e:e9:1b:fc:c5:a9:fd:06:92:
9e:c5:08:dc:6f:18:07:a5:f3:9c:2d:10:18:0e:34:00:51:ef:
3f:49:d7:24:28:11:10:ce:cb:ad:a2:c8:ca:2c:4d:f9:62:56:
6d:1b:00:13:1a:fd:67:ae:4e:3f:f8:f4:e3:5a:20:ab:c3:65:
6e:d8:44:a7:43:b9:e1:7a:cb:e7:29:ad:2a:72:3c:04:5a:93:
79:82:b7:75:e1:30:9d:9e:01:1f:28:c7:98:16:a3:2b:0f:10:
9f:68:b9:fc:a7:ad:41:73:ca:4e:f8:b4:de:a8:7c:ea:55:83:
42:5e:5b:19:40:b0:af:bd:d1:58:02:d7:de:82:b7:8b:d4:46:
29:8a:46:0c:db:fb:8c:c4:5b:16:cb:ff:84:d2:b8:30:a7:d6:
65:a0:df:9a:3e:24:26:c8:57:a6:06:2e:17:6b:93:5e:34:2f:
24:05:f7:f3:e6:be:d4:54:01:3c:56:da:20:23:bc:14:06:d2:
a1:3c:47:14:70:e8:ad:99:c9:93:c3:cb:8d:68:19:d2:39:24:
ad:bb:98:c7
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2
NEY0NTExMC8GA1UEBRMoMjQzMjBFQUZGOUE4MjBCOEVEQTU5RTAzRTQwNTU1QzVG
MzRGRUZDQzAeFw0yMzA4MjUwNzAxNDlaFw0yMzEwMzEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY0ZTg1MWRjLTk1ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDXEoRpxGS0dg/kwJ9hT2Q6DzP8MO0iZqVYfExMEp/kxq41MR0jUyh6eBebBxJ+
y5a/AGFKvqhXpVWixAs340fQYm3E39A8moEvhfTFSNNMy2waCLCe2xGtsbrOj9k7
fQ5y7YK42eIYGIriX37uM4PSTtwiQAxo/+51Y9kcdhHV42K04Pj3/Crvofxir3Rq
PW/gZ0X519S17c3Sg5MyUOqORrunZUx/WgPW825/9Z3Jo4FYSyAK46UNsbX+mDAo
F4y7GmuU4Ejn3rQOZkWu8iIKmgu2Gy/Xna154XCoJ6ERFzDca2f7ozT1sG2l+lDg
wHImMgHMhpDJ5JAd+BTW3diNAgMBAAGjggKsMIICqDAdBgNVHQ4EFgQUCXhWC5gb
b8YoOlSZKuHIFPrMyfIwHwYDVR0jBBgwFoAUJDIOr/moILjtpZ4D5AVVxfNP78ww
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0RjQ1LzMzNjExOUM0NDJG
NjExRUVBMjUyNEQ2M0M0RjlBRTAyL0pESU9yX21vSUxqdHBaNEQ1QVZWeGZOUDc4
dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvSkRJT3JfbW9JTGp0cFo0RDVBVlZ4Zk5QNzh3LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
NEY0NS8zMzYxMTlDNDQyRjYxMUVFQTI1MjRENjNDNEY5QUUwMi80MjYxQjA5MDQz
MTUxMUVFQTU0MDFEM0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA2BggrBgEFBQcBBwEB/wQn
MCUwFAQCAAEwDjAMAwQDy5FIAwQFy5FAMA0EAgACMAcDBQAkBzEAMA0GCSqGSIb3
DQEBCwUAA4IBAQDHKk+7ARLfRdYPHjHopjN2E5/lzXnmdQjFa9Hmuea65/ZICKsk
OmPehd3a/UlO6Rv8xan9BpKexQjcbxgHpfOcLRAYDjQAUe8/SdckKBEQzsutosjK
LE35YlZtGwATGv1nrk4/+PTjWiCrw2Vu2ESnQ7nhesvnKa0qcjwEWpN5grd14TCd
ngEfKMeYFqMrDxCfaLn8p61Bc8pO+LTeqHzqVYNCXlsZQLCvvdFYAtfegreL1EYp
ikYM2/uMxFsWy/+E0rgwp9ZloN+aPiQmyFemBi4Xa5NeNC8kBffz5r7UVAE8Vtog
I7wUBtKhPEcUcOitmcmTw8uNaBnSOSStu5jH
-----END CERTIFICATE-----
Generated at Fri Aug 25 09:05:14 2023 by rpki-client on console-ams.rpki-client.org