Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/BEEE22F0522911EFA69E5236C4F9AE02.roa
File: BEEE22F0522911EFA69E5236C4F9AE02.roa (raw, json)
Hash identifier: mbtBv0K4nOU1Nq3bJIVBXiQQdOt8D1KVc/HM/rQehP4=
Subject key identifier: CD:B0:13:2A:76:1F:C6:51:8C:F7:42:90:07:34:77:9C:AF:03:34:88
Certificate issuer: /CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E
Certificate serial: 066F
Authority key identifier: 83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/BEEE22F0522911EFA69E5236C4F9AE02.roa
Signing time: Sun 04 Aug 2024 06:21:12 +0000
ROA not before: Sun 04 Aug 2024 06:21:12 +0000
ROA not after: Wed 30 Oct 2024 00:00:00 +0000
asID: 142044
IP address blocks: 202.94.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 17 Aug 2024 10:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1647 (0x66f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E
Validity
Not Before: Aug 4 06:21:12 2024 GMT
Not After : Oct 30 00:00:00 2024 GMT
Subject: CN=66af1dd8-8b7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d4:5a:47:a5:13:26:56:6b:33:6b:47:5d:bb:
0d:27:f9:06:fe:86:24:e7:e4:63:23:1a:47:42:ca:
d2:11:33:10:12:56:63:de:8a:84:56:26:2f:ec:21:
37:46:8e:6d:e6:ea:5f:66:c3:03:1c:94:cc:63:f7:
41:9f:16:a6:a3:94:7a:3e:ed:49:76:9d:db:b8:42:
91:20:0c:a9:ec:97:35:7a:24:c9:50:89:a0:5d:02:
8b:88:66:8d:b3:06:94:9e:fd:b5:8d:6e:ff:f8:22:
25:03:1c:1a:2b:76:ed:b9:3c:99:2e:17:c8:29:9e:
36:43:12:18:c6:e4:08:be:5a:f4:8d:91:c6:b7:f6:
ad:64:65:1a:61:89:5a:84:2f:78:8d:da:bf:90:ff:
56:98:fd:cd:b6:37:4d:50:a6:9d:f7:00:91:67:c9:
6f:89:54:99:7f:cd:4f:be:af:13:f1:a6:c4:5a:b9:
e8:bf:56:f0:e1:2e:65:6d:0b:35:b2:f8:c2:fe:06:
ca:9b:37:e5:f6:2e:2d:35:b7:3d:73:ac:fd:17:9b:
71:11:77:a3:98:94:bd:8e:8a:81:32:14:27:5c:1a:
11:84:a5:9b:6a:9b:0d:12:13:92:74:1d:62:c7:91:
2f:6d:fb:61:d4:cd:9a:5c:17:3f:d9:57:56:ac:53:
38:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:B0:13:2A:76:1F:C6:51:8C:F7:42:90:07:34:77:9C:AF:03:34:88
X509v3 Authority Key Identifier:
keyid:83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/BEEE22F0522911EFA69E5236C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.94.165.0/24
Signature Algorithm: sha256WithRSAEncryption
11:2f:9e:8d:b2:49:70:1a:72:6b:f6:af:23:51:87:02:26:25:
21:aa:56:13:24:62:ce:7b:5f:e4:55:b7:fd:ce:9a:86:6d:11:
dd:74:27:76:c4:30:c0:65:c3:2d:0a:a0:e7:8d:8f:5d:b6:91:
4b:f0:9b:ae:88:bc:51:ca:85:11:82:39:b0:f8:5b:b5:76:0c:
af:8d:f6:88:5b:db:39:8f:e3:3e:6f:73:b4:fd:db:76:04:37:
93:42:9d:2b:ff:7f:ba:8a:2e:4d:5f:a9:a8:e4:fe:73:54:38:
6e:0a:37:87:62:1b:0d:8c:4a:66:14:f6:03:dc:10:10:dc:26:
ef:5b:4f:d9:02:a3:89:7f:38:57:a4:e6:26:0f:4a:ac:de:c8:
b8:7c:9b:0b:a8:b9:e4:3d:0b:e8:ac:45:93:6e:fc:32:e2:97:
a7:91:0b:9f:a6:ed:91:1a:aa:e3:c1:d7:b6:7d:e5:c1:fc:1f:
c4:cb:c7:f9:12:19:39:b9:24:93:7c:1a:e5:ea:bb:f1:3d:8e:
b5:f0:9d:9b:ee:72:5f:63:19:bf:c4:3c:ee:ed:04:0c:c0:8e:
2a:c1:4b:6d:37:6b:9c:56:79:d4:6c:2f:ae:5a:b9:2d:4e:78:
96:52:37:e5:dd:14:5d:2a:f7:93:5f:b2:02:2e:b2:63:a9:7d:
87:49:d4:62
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NzU2QjcxMTAvBgNVBAUTKDgzRDk2RjFERUE3MkE5OUQyMzRCNDQ1NkQ2RjY2NzVE
QzdFNjA2MUUwHhcNMjQwODA0MDYyMTEyWhcNMjQxMDMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmFmMWRkOC04YjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA49RaR6UTJlZrM2tHXbsNJ/kG/oYk5+RjIxpHQsrSETMQElZj3oqEViYv7CE3
Ro5t5upfZsMDHJTMY/dBnxamo5R6Pu1Jdp3buEKRIAyp7Jc1eiTJUImgXQKLiGaN
swaUnv21jW7/+CIlAxwaK3btuTyZLhfIKZ42QxIYxuQIvlr0jZHGt/atZGUaYYla
hC94jdq/kP9WmP3NtjdNUKad9wCRZ8lviVSZf81Pvq8T8abEWrnov1bw4S5lbQs1
svjC/gbKmzfl9i4tNbc9c6z9F5txEXejmJS9joqBMhQnXBoRhKWbapsNEhOSdB1i
x5Evbfth1M2aXBc/2VdWrFM4awIDAQABo4IClTCCApEwHQYDVR0OBBYEFM2wEyp2
H8ZRjPdCkAc0d5yvAzSIMB8GA1UdIwQYMBaAFIPZbx3qcqmdI0tEVtb2Z13H5gYe
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTZCNy85NUVGN0RCQTk2
N0QxMUVCQURENTBEMkNDNEY5QUUwMi9nOWx2SGVweXFaMGpTMFJXMXZablhjZm1C
aDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2c5bHZIZXB5cVowalMwUlcxdlpuWGNmbUJoNC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NzU2QjcvOTVFRjdEQkE5NjdEMTFFQkFERDUwRDJDQzRGOUFFMDIvQkVFRTIyRjA1
MjI5MTFFRkE2OUU1MjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADKXqUwDQYJKoZIhvcNAQELBQADggEBABEvno2ySXAacmv2
ryNRhwImJSGqVhMkYs57X+RVt/3OmoZtEd10J3bEMMBlwy0KoOeNj122kUvwm66I
vFHKhRGCObD4W7V2DK+N9ohb2zmP4z5vc7T923YEN5NCnSv/f7qKLk1fqajk/nNU
OG4KN4diGw2MSmYU9gPcEBDcJu9bT9kCo4l/OFek5iYPSqzeyLh8mwuoueQ9C+is
RZNu/DLil6eRC5+m7ZEaquPB17Z95cH8H8TLx/kSGTm5JJN8GuXqu/E9jrXwnZvu
cl9jGb/EPO7tBAzAjirBS203a5xWedRsL65auS1OeJZSN+XdFF0q95NfsgIusmOp
fYdJ1GI=
-----END CERTIFICATE-----
Generated at Sat Aug 17 15:32:58 2024 by rpki-client on console-ams.rpki-client.org