Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/B13F0930EC2111EE91A0B711C4F9AE02.roa
File: B13F0930EC2111EE91A0B711C4F9AE02.roa (raw, json)
Hash identifier: fqUgTEiDtnsiolCYUYSYzQCENpxPPSPckDgc0NlV6GY=
Subject key identifier: 70:2B:62:09:3C:CB:17:5F:C5:3A:F8:90:4D:E2:51:06:88:9E:E7:9C
Certificate issuer: /CN=A917E0BB/serialNumber=11AB37DC654150C493C8AFC7E86D669C20AE5386
Certificate serial: 06
Authority key identifier: 11:AB:37:DC:65:41:50:C4:93:C8:AF:C7:E8:6D:66:9C:20:AE:53:86
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Eas33GVBUMSTyK_H6G1mnCCuU4Y.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/B13F0930EC2111EE91A0B711C4F9AE02.roa
Signing time: Wed 27 Mar 2024 10:06:35 +0000
ROA not before: Wed 27 Mar 2024 10:06:35 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 152096
IP address blocks: 115.84.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 May 2024 08:08:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917E0BB/serialNumber=11AB37DC654150C493C8AFC7E86D669C20AE5386
Validity
Not Before: Mar 27 10:06:35 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=6603efaa-06e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f8:24:71:78:36:8d:87:69:9e:53:80:95:9b:
2e:47:f6:24:ab:46:c3:87:c4:95:f6:b6:f5:ad:c9:
b4:48:f8:81:88:94:47:a0:ac:f5:de:16:b2:21:49:
37:5e:01:3b:20:b0:a3:6e:ca:8d:98:a4:a1:3a:98:
60:93:e6:a6:6d:7d:cb:88:90:31:18:48:8d:b6:4e:
f5:e8:f2:8a:39:f6:19:e7:62:6d:30:35:9e:1e:2c:
73:ae:74:f5:4c:f6:fc:f6:00:1a:dc:84:c6:4a:17:
b0:e9:cd:3f:67:03:c0:3a:f3:23:16:5f:14:3b:9e:
c5:5a:e2:20:ae:07:84:86:c0:ed:c4:fe:16:81:a0:
77:90:ae:1e:b3:70:0c:13:11:ae:32:ba:da:ab:9d:
bf:71:b2:57:5e:c1:1e:96:ea:5c:41:83:3a:68:26:
e8:a6:45:1d:f6:a3:38:13:40:04:ed:26:7a:14:32:
6a:82:b6:44:3a:50:ee:3e:83:65:38:4d:f5:45:41:
24:23:17:6d:8d:c4:f3:cb:52:0d:e7:54:61:04:2f:
77:ee:a1:a4:87:f3:34:d6:95:b0:a5:f8:89:1d:bb:
ba:42:02:65:5b:1d:a1:cb:6e:c9:c8:b4:40:bc:d3:
d7:a4:6f:9c:b8:67:df:a2:6e:08:a7:92:5e:32:fa:
af:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:2B:62:09:3C:CB:17:5F:C5:3A:F8:90:4D:E2:51:06:88:9E:E7:9C
X509v3 Authority Key Identifier:
keyid:11:AB:37:DC:65:41:50:C4:93:C8:AF:C7:E8:6D:66:9C:20:AE:53:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/Eas33GVBUMSTyK_H6G1mnCCuU4Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Eas33GVBUMSTyK_H6G1mnCCuU4Y.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/B13F0930EC2111EE91A0B711C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.84.170.0/24
Signature Algorithm: sha256WithRSAEncryption
76:26:de:46:8b:08:4f:e4:db:8a:40:c5:7d:76:38:e5:f8:88:
44:ef:b9:b4:c9:66:23:b3:9d:1b:31:2f:49:a8:21:d7:b1:f8:
87:99:06:0d:02:f4:44:0d:f7:16:8f:c4:ce:fa:d9:cf:e3:ae:
4a:54:a6:85:e5:ea:f1:46:b0:eb:29:0a:cb:9b:fd:36:18:40:
20:70:eb:7c:ea:dd:ad:05:b7:2c:4e:4e:6d:89:a8:ee:48:5f:
fd:88:1a:9c:52:2f:bc:53:bd:e3:59:07:3a:c8:1e:90:e2:64:
fd:62:ff:3d:24:19:f4:9b:1a:cb:13:22:e5:97:3e:88:25:fd:
30:41:04:cb:2d:d1:06:6c:af:f4:4a:88:f8:18:a8:78:1b:13:
fb:fc:b0:74:19:49:d2:ae:1c:16:01:b2:eb:04:4b:0d:79:51:
7a:62:48:9f:9b:7a:cb:a9:2f:37:e8:bd:7d:c1:15:fa:7c:3c:
7f:63:a8:f6:1a:55:16:11:89:ed:c5:47:f0:ab:91:44:65:11:
44:29:bf:a3:0a:d5:f7:1c:ae:94:54:94:ca:5e:fc:30:98:8a:
bc:52:a6:7b:3f:c4:cf:14:59:b2:9c:49:78:c9:81:99:23:97:
b2:9a:02:80:fd:6a:73:01:5d:ee:7c:7a:8d:ec:a8:0c:23:3c:
2b:7b:6d:37
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3
RTBCQjExMC8GA1UEBRMoMTFBQjM3REM2NTQxNTBDNDkzQzhBRkM3RTg2RDY2OUMy
MEFFNTM4NjAeFw0yNDAzMjcxMDA2MzVaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV
BAMTDTY2MDNlZmFhLTA2ZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCy+CRxeDaNh2meU4CVmy5H9iSrRsOHxJX2tvWtybRI+IGIlEegrPXeFrIhSTde
ATsgsKNuyo2YpKE6mGCT5qZtfcuIkDEYSI22TvXo8oo59hnnYm0wNZ4eLHOudPVM
9vz2ABrchMZKF7DpzT9nA8A68yMWXxQ7nsVa4iCuB4SGwO3E/haBoHeQrh6zcAwT
Ea4yutqrnb9xsldewR6W6lxBgzpoJuimRR32ozgTQATtJnoUMmqCtkQ6UO4+g2U4
TfVFQSQjF22NxPPLUg3nVGEEL3fuoaSH8zTWlbCl+Ikdu7pCAmVbHaHLbsnItEC8
09ekb5y4Z9+ibginkl4y+q8nAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUcCtiCTzL
F1/FOviQTeJRBoie55wwHwYDVR0jBBgwFoAUEas33GVBUMSTyK/H6G1mnCCuU4Yw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMEJCLzY4NDMxRkEyRThF
NjExRUU5Q0FCRTA2QUM0RjlBRTAyL0VhczMzR1ZCVU1TVHlLX0g2RzFtbkNDdVU0
WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvRWFzMzNHVkJVTVNUeUtfSDZHMW1uQ0N1VTRZLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3
RTBCQi82ODQzMUZBMkU4RTYxMUVFOUNBQkUwNkFDNEY5QUUwMi9CMTNGMDkzMEVD
MjExMUVFOTFBMEI3MTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAHNUqjANBgkqhkiG9w0BAQsFAAOCAQEAdibeRosIT+TbikDF
fXY45fiIRO+5tMlmI7OdGzEvSagh17H4h5kGDQL0RA33Fo/EzvrZz+OuSlSmheXq
8Uaw6ykKy5v9NhhAIHDrfOrdrQW3LE5ObYmo7khf/YganFIvvFO941kHOsgekOJk
/WL/PSQZ9JsayxMi5Zc+iCX9MEEEyy3RBmyv9EqI+BioeBsT+/ywdBlJ0q4cFgGy
6wRLDXlRemJIn5t6y6kvN+i9fcEV+nw8f2Oo9hpVFhGJ7cVH8KuRRGURRCm/owrV
9xyulFSUyl78MJiKvFKmez/EzxRZspxJeMmBmSOXspoCgP1qcwFd7nx6jeyoDCM8
K3ttNw==
-----END CERTIFICATE-----
Generated at Mon May 13 11:12:31 2024 by rpki-client on console-ams.rpki-client.org