Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918C287/C963CF266CB711EEA88AC06CC4F9AE02/90C8DB00FBB611EE81DF8C7CC4F9AE02.roa
File: 90C8DB00FBB611EE81DF8C7CC4F9AE02.roa (raw, json)
Hash identifier: VLZbps3+lzQD3qb75+OEWl0FLyocvT/0+cGNTQMd8kM=
Subject key identifier: 67:16:22:CF:AB:C3:59:C3:76:73:54:D4:FD:8F:98:70:C2:1C:2A:6B
Certificate issuer: /CN=A918C287/serialNumber=355AC83FAA75D7DA7AC861DB2007F62600BA4292
Certificate serial: 7E
Authority key identifier: 35:5A:C8:3F:AA:75:D7:DA:7A:C8:61:DB:20:07:F6:26:00:BA:42:92
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NVrIP6p119p6yGHbIAf2JgC6QpI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918C287/C963CF266CB711EEA88AC06CC4F9AE02/90C8DB00FBB611EE81DF8C7CC4F9AE02.roa
Signing time: Tue 16 Apr 2024 06:00:03 +0000
ROA not before: Tue 16 Apr 2024 06:00:03 +0000
ROA not after: Sat 01 May 2038 00:00:00 +0000
asID: 45163
IP address blocks: 203.176.189.0/25 maxlen: 25
Validation: Failed, certificate revoked on Fri 19 Apr 2024 01:14:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126 (0x7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918C287/serialNumber=355AC83FAA75D7DA7AC861DB2007F62600BA4292
Validity
Not Before: Apr 16 06:00:03 2024 GMT
Not After : May 1 00:00:00 2038 GMT
Subject: CN=661e13e2-9c5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:68:58:fc:cc:f1:30:2f:b4:04:b8:4f:3e:28:
d5:87:fb:85:c3:59:11:df:dd:68:45:4e:fb:1f:25:
5e:e6:91:90:2c:3f:d4:f4:6f:be:68:57:f7:aa:20:
e5:1a:fd:f9:8d:59:11:12:c3:b2:f1:d5:ee:71:ad:
a5:b8:a9:ff:60:06:23:b8:46:30:6e:c6:7f:67:cd:
73:9f:9a:f8:46:b1:d9:e7:b9:79:e9:75:b9:db:29:
5b:f4:f3:b4:07:85:84:ff:ac:63:57:2b:a3:44:91:
ef:c7:e5:62:2c:fd:e6:26:f2:a6:d7:96:3f:d7:d6:
6e:11:e9:7c:ec:93:80:ea:c8:68:52:f8:9f:c9:71:
ba:37:65:88:f0:c6:72:76:db:75:8d:e3:69:fc:a6:
94:6c:a8:c4:15:2a:bd:c3:5b:44:4d:89:d0:50:85:
b8:75:5f:ba:64:ad:d8:43:c6:24:35:b5:f7:06:bc:
7d:e3:bc:3d:ab:42:8a:7b:46:f8:fd:06:99:9e:25:
b1:19:63:d9:5a:57:18:de:40:3a:6f:7b:72:da:df:
bf:2e:0f:8e:e7:8b:b9:4e:08:55:16:39:85:d4:c4:
d2:7d:9f:41:1c:ad:7c:c6:89:52:cf:06:05:0c:6f:
3c:98:02:44:5c:d1:70:a5:7f:65:50:ee:5b:1f:f2:
91:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:16:22:CF:AB:C3:59:C3:76:73:54:D4:FD:8F:98:70:C2:1C:2A:6B
X509v3 Authority Key Identifier:
keyid:35:5A:C8:3F:AA:75:D7:DA:7A:C8:61:DB:20:07:F6:26:00:BA:42:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918C287/C963CF266CB711EEA88AC06CC4F9AE02/NVrIP6p119p6yGHbIAf2JgC6QpI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NVrIP6p119p6yGHbIAf2JgC6QpI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C287/C963CF266CB711EEA88AC06CC4F9AE02/90C8DB00FBB611EE81DF8C7CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.176.189.0/25
Signature Algorithm: sha256WithRSAEncryption
0d:1b:db:66:f8:be:83:7b:c6:41:7b:6b:ad:0b:3e:e3:59:08:
cb:09:a0:fe:47:4c:ea:0e:59:a1:9a:36:de:f2:c8:c6:66:f3:
c9:a8:7c:36:45:19:16:9e:42:79:5e:e4:41:d5:d0:09:79:fb:
aa:3f:6d:5f:67:2c:8b:ad:c3:6a:1b:ae:a1:6e:fc:c7:97:73:
88:1f:dc:df:3c:ab:60:e6:2d:dc:22:4d:03:4b:52:a3:ca:33:
d7:c0:aa:1f:f1:82:ee:c4:e2:96:10:da:4b:93:8f:69:32:d7:
af:3f:28:f8:f2:4a:e8:4c:4d:05:26:da:89:95:53:1a:18:60:
40:7d:95:be:29:5d:05:50:fc:a2:dc:56:06:c5:18:dc:a3:83:
e2:7f:3e:e9:9f:4d:eb:27:b5:a2:59:0a:62:6e:cb:50:39:d4:
35:81:a2:4e:27:e8:3a:e5:10:4d:fb:a8:12:7b:7b:65:2e:f2:
46:6a:dd:de:f8:6b:31:98:b7:99:86:42:c5:ed:2b:78:b7:8a:
cc:0c:cd:53:0b:40:12:b5:04:c7:e3:91:1a:24:cc:b7:cf:73:
d0:45:00:e1:ff:a0:d6:54:6d:07:c0:a7:a1:d9:04:15:7d:2e:
51:cb:fa:a1:f8:f9:25:d8:36:da:c5:75:a5:4b:de:e5:81:94:
f2:77:eb:49
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4
QzI4NzExMC8GA1UEBRMoMzU1QUM4M0ZBQTc1RDdEQTdBQzg2MURCMjAwN0Y2MjYw
MEJBNDI5MjAeFw0yNDA0MTYwNjAwMDNaFw0zODA1MDEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY2MWUxM2UyLTljNWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC3aFj8zPEwL7QEuE8+KNWH+4XDWRHf3WhFTvsfJV7mkZAsP9T0b75oV/eqIOUa
/fmNWRESw7Lx1e5xraW4qf9gBiO4RjBuxn9nzXOfmvhGsdnnuXnpdbnbKVv087QH
hYT/rGNXK6NEke/H5WIs/eYm8qbXlj/X1m4R6Xzsk4DqyGhS+J/Jcbo3ZYjwxnJ2
23WN42n8ppRsqMQVKr3DW0RNidBQhbh1X7pkrdhDxiQ1tfcGvH3jvD2rQop7Rvj9
BpmeJbEZY9laVxjeQDpve3La378uD47ni7lOCFUWOYXUxNJ9n0EcrXzGiVLPBgUM
bzyYAkRc0XClf2VQ7lsf8pEdAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUZxYiz6vD
WcN2c1TU/Y+YcMIcKmswHwYDVR0jBBgwFoAUNVrIP6p119p6yGHbIAf2JgC6QpIw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDMjg3L0M5NjNDRjI2NkNC
NzExRUVBODhBQzA2Q0M0RjlBRTAyL05WcklQNnAxMTlwNnlHSGJJQWYySmdDNlFw
SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvTlZySVA2cDExOXA2eUdIYklBZjJKZ0M2UXBJLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4
QzI4Ny9DOTYzQ0YyNjZDQjcxMUVFQTg4QUMwNkNDNEY5QUUwMi85MEM4REIwMEZC
QjYxMUVFODFERjhDN0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR
MA8wDQQCAAEwBwMFB8uwvQAwDQYJKoZIhvcNAQELBQADggEBAA0b22b4voN7xkF7
a60LPuNZCMsJoP5HTOoOWaGaNt7yyMZm88mofDZFGRaeQnle5EHV0Al5+6o/bV9n
LIutw2obrqFu/MeXc4gf3N88q2DmLdwiTQNLUqPKM9fAqh/xgu7E4pYQ2kuTj2ky
168/KPjySuhMTQUm2omVUxoYYEB9lb4pXQVQ/KLcVgbFGNyjg+J/PumfTesntaJZ
CmJuy1A51DWBok4n6DrlEE37qBJ7e2Uu8kZq3d74azGYt5mGQsXtK3i3iswMzVML
QBK1BMfjkRokzLfPc9BFAOH/oNZUbQfAp6HZBBV9LlHL+qH4+SXYNtrFdaVL3uWB
lPJ360k=
-----END CERTIFICATE-----
Generated at Fri Apr 19 02:09:00 2024 by rpki-client on console-fra.rpki-client.org