Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/0A8790AE602911EF84AD3928C4F9AE02.roa
File: 0A8790AE602911EF84AD3928C4F9AE02.roa (raw, json)
Hash identifier: i30fXIxFOQV11lEQFBvFH+UynHzjbUjHGief6JvTtuY=
Subject key identifier: F1:F7:A3:62:3A:1B:6D:A7:1E:2A:69:01:1B:B3:3B:19:32:A7:52:AB
Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79
Certificate serial: 079B
Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/0A8790AE602911EF84AD3928C4F9AE02.roa
Signing time: Wed 04 Sep 2024 21:49:36 +0000
ROA not before: Wed 04 Sep 2024 21:49:36 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 38880
IP address blocks: 203.56.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Sep 2024 05:06:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1947 (0x79b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79
Validity
Not Before: Sep 4 21:49:36 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=66d8d5ef-eafb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9a:f4:c8:e6:bf:c9:6f:2a:06:90:cf:fc:29:
11:95:e0:71:f2:a3:ae:8b:43:b9:32:c3:60:15:8c:
41:ce:d8:cf:be:0b:40:a9:ee:ff:4b:59:a6:16:df:
23:2b:03:e3:2d:81:98:8e:b0:1f:05:8c:1d:6a:4e:
31:b7:d6:c9:cd:27:99:f1:b8:f4:36:57:6c:e7:e3:
1e:7f:f1:76:43:57:17:30:92:67:71:ad:38:a8:72:
5e:18:f0:30:89:24:47:d7:8f:f1:e1:3c:e8:4f:61:
29:22:d7:84:e3:e9:7d:09:ae:74:fc:99:12:ff:b1:
c3:14:32:1e:e1:72:a3:40:64:23:36:24:24:2d:71:
58:16:32:96:2d:ce:6e:77:1c:ea:df:57:66:ad:c0:
e8:8d:68:56:2a:b2:9b:01:e7:bf:c7:ca:92:b6:c9:
b0:bf:69:81:ad:a0:3c:a8:82:18:42:6d:1d:c9:79:
34:61:8c:0c:b2:e6:ea:a4:3f:87:f1:ed:45:8d:9d:
8b:19:aa:92:44:36:8f:fb:24:94:a6:20:24:b6:91:
62:f1:95:1a:72:5e:68:68:21:dc:c6:35:73:c6:5f:
4b:eb:5c:24:e9:b8:04:64:df:13:53:48:52:02:4f:
23:68:33:09:69:a2:21:90:ca:1e:33:b3:e2:3b:7b:
f5:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F7:A3:62:3A:1B:6D:A7:1E:2A:69:01:1B:B3:3B:19:32:A7:52:AB
X509v3 Authority Key Identifier:
keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/0A8790AE602911EF84AD3928C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.56.35.0/24
Signature Algorithm: sha256WithRSAEncryption
48:df:75:1b:83:00:25:98:74:23:cd:e5:92:9e:8e:29:e4:b1:
e9:43:d6:07:25:f9:db:ff:f8:aa:9a:0f:82:f3:aa:b9:9d:8e:
5a:20:59:3f:be:8b:f8:bc:f1:fd:14:db:f0:0c:1d:3c:8a:4b:
4f:69:b5:9d:6e:83:cf:2e:4d:e4:9d:4e:f2:c3:d0:28:8f:e8:
e2:e4:a4:10:ca:6b:6f:f5:62:59:c2:66:64:52:03:be:b9:fd:
97:98:a8:aa:05:dc:85:38:28:23:30:3e:12:63:fe:7b:1d:f2:
2e:92:fb:74:b8:9b:57:ea:b6:8b:6e:dd:f1:f7:c0:7a:96:25:
94:64:09:c5:cd:0b:47:36:93:d4:23:5b:15:85:ab:e3:24:11:
77:4b:8d:a8:c6:b3:b9:55:ee:3c:e7:27:6d:94:c6:2f:c9:e7:
e1:2c:15:8a:2d:93:e6:68:47:3a:c9:b1:40:ce:69:0b:da:89:
60:af:03:79:51:7d:56:0f:4b:c4:4c:86:d8:6e:f5:88:53:28:
eb:01:43:a5:de:f3:8b:23:30:34:16:f1:71:af:12:57:68:0a:
0b:82:20:25:d6:af:11:2e:14:0c:f4:21:b3:25:58:68:22:50:
3e:d9:b8:e8:36:2f:01:94:e6:9f:6b:a0:8e:e8:fb:fa:4a:57:
5b:bd:f1:28
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICB5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG
N0NEREZFNzkwHhcNMjQwOTA0MjE0OTM2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmQ4ZDVlZi1lYWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0Zr0yOa/yW8qBpDP/CkRleBx8qOui0O5MsNgFYxBztjPvgtAqe7/S1mmFt8j
KwPjLYGYjrAfBYwdak4xt9bJzSeZ8bj0Nlds5+Mef/F2Q1cXMJJnca04qHJeGPAw
iSRH14/x4TzoT2EpIteE4+l9Ca50/JkS/7HDFDIe4XKjQGQjNiQkLXFYFjKWLc5u
dxzq31dmrcDojWhWKrKbAee/x8qStsmwv2mBraA8qIIYQm0dyXk0YYwMsubqpD+H
8e1FjZ2LGaqSRDaP+ySUpiAktpFi8ZUacl5oaCHcxjVzxl9L61wk6bgEZN8TU0hS
Ak8jaDMJaaIhkMoeM7PiO3v1/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPH3o2I6
G22nHippARuzOxkyp1KrMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD
NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf
bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
N0M5MzMvRkQ5NTIxQjJEQzU3MTFFQTgzRThFQzY3QzRGOUFFMDIvMEE4NzkwQUU2
MDI5MTFFRjg0QUQzOTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADLOCMwDQYJKoZIhvcNAQELBQADggEBAEjfdRuDACWYdCPN
5ZKejinkselD1gcl+dv/+KqaD4LzqrmdjlogWT++i/i88f0U2/AMHTyKS09ptZ1u
g88uTeSdTvLD0CiP6OLkpBDKa2/1YlnCZmRSA765/ZeYqKoF3IU4KCMwPhJj/nsd
8i6S+3S4m1fqtotu3fH3wHqWJZRkCcXNC0c2k9QjWxWFq+MkEXdLjajGs7lV7jzn
J22Uxi/J5+EsFYotk+ZoRzrJsUDOaQvaiWCvA3lRfVYPS8RMhthu9YhTKOsBQ6Xe
84sjMDQW8XGvEldoCguCICXWrxEuFAz0IbMlWGgiUD7ZuOg2LwGU5p9roI7o+/pK
V1u98Sg=
-----END CERTIFICATE-----
Generated at Sun Apr 13 05:47:35 2025 by rpki-client