Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/54676096514D11EEB54AA04CC4F9AE02.roa
File: 54676096514D11EEB54AA04CC4F9AE02.roa (raw, json)
Hash identifier: veIWIrZof1P/FfCAX2qnM/2CljYheqnIuJJ+0wBFJsg=
Subject key identifier: CC:D6:F1:87:D5:5F:05:3F:13:A6:26:FC:A7:A9:40:2F:C8:64:C6:08
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 88A5
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/54676096514D11EEB54AA04CC4F9AE02.roa
Signing time: Thu 30 May 2024 15:55:27 +0000
ROA not before: Thu 30 May 2024 15:55:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 132978
IP address blocks: 103.170.156.0/23 maxlen: 24
2001:df1:5b40::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 14 Jan 2025 06:59:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 34981 (0x88a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: May 30 15:55:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658a16f-a73e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5d:cd:2e:7c:28:ca:21:6d:ea:c4:86:74:0f:
50:09:cf:17:02:b0:a9:e0:99:f9:ef:56:15:e0:20:
43:63:89:6f:74:6f:9d:e2:bb:f1:4a:39:80:d9:46:
1f:45:fd:c5:1e:75:24:8f:57:cd:02:1e:06:2a:c0:
a6:b8:2d:07:5a:94:bc:41:ed:ab:59:37:46:19:28:
79:e9:32:3e:92:94:a3:24:77:ba:ad:1d:93:fc:22:
a8:a5:6e:df:ec:d1:0a:0d:46:96:0b:27:b9:64:34:
a5:40:cd:78:2d:96:06:81:79:b1:bf:8a:17:4a:5f:
ad:3c:ec:5f:44:c5:b4:20:ce:58:c4:d0:50:08:29:
a2:e9:ae:7d:94:18:cb:65:34:f3:21:c4:34:b0:f4:
09:f6:ea:d4:96:c7:57:7d:af:8a:8e:8b:e6:b2:0d:
a7:03:1f:49:e4:3c:11:a6:bb:73:48:29:ba:a7:37:
06:77:a2:a1:ff:3b:21:33:07:b3:eb:8c:2b:f2:6e:
d2:1e:65:52:ff:dd:49:a8:2f:8d:56:3b:96:e3:c4:
b3:1b:6e:71:ed:2a:78:c7:c9:90:6a:3d:68:f2:58:
a6:81:1d:01:14:db:9f:5e:03:54:43:e5:07:c4:5d:
f3:7a:23:07:eb:21:7b:bd:d4:26:07:41:99:8a:47:
59:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:D6:F1:87:D5:5F:05:3F:13:A6:26:FC:A7:A9:40:2F:C8:64:C6:08
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/54676096514D11EEB54AA04CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.170.156.0/23
IPv6:
2001:df1:5b40::/48
Signature Algorithm: sha256WithRSAEncryption
57:bc:f7:dd:0d:ac:7d:38:db:02:0b:0c:5d:aa:67:2b:4c:70:
d5:04:30:33:d9:df:86:e1:cc:ad:1d:d9:d3:0c:64:36:73:5d:
68:6d:8e:60:68:b5:57:9f:af:c0:61:0f:b2:99:13:cc:f3:d6:
fd:f8:d7:54:bc:83:02:94:20:49:a3:a2:c4:92:12:7d:d3:05:
d7:60:ae:9a:4e:91:15:ad:a2:5e:03:9a:43:cc:96:3f:ff:0f:
14:f8:ec:4d:64:15:c3:93:76:2a:2d:8c:0b:55:d8:d8:7a:8b:
c2:6f:99:83:88:03:1b:9c:a9:51:a7:c2:73:92:a8:08:26:63:
77:2b:74:79:f8:23:d9:b4:01:16:3a:9d:c4:1b:0a:9d:b1:a3:
91:a5:89:5a:1f:6e:31:fc:ec:56:29:99:a8:2f:d5:9b:ff:e0:
f6:a6:9a:8c:8a:c9:71:1d:1b:68:37:ab:ab:cd:bf:5a:98:a2:
e8:b5:1e:7a:6d:42:ce:6a:27:04:59:a6:77:25:1e:e7:36:d8:
be:6a:20:75:ec:4a:57:0a:8e:d3:84:63:7c:05:c9:f3:4e:e5:
9a:96:a7:9f:8e:30:8e:06:55:6e:c5:6b:5e:a3:b6:4a:03:ba:
50:d2:ce:e6:e3:b7:22:06:7b:09:35:8c:b8:e0:ec:d2:41:59:
dd:7d:0d:df
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIDAIilMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4
M0UzQUJDODIzMB4XDTI0MDUzMDE1NTUyN1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG
A1UEAxMNNjY1OGExNmYtYTczZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKpdzS58KMohberEhnQPUAnPFwKwqeCZ+e9WFeAgQ2OJb3RvneK78Uo5gNlG
H0X9xR51JI9XzQIeBirAprgtB1qUvEHtq1k3RhkoeekyPpKUoyR3uq0dk/wiqKVu
3+zRCg1GlgsnuWQ0pUDNeC2WBoF5sb+KF0pfrTzsX0TFtCDOWMTQUAgpoumufZQY
y2U08yHENLD0Cfbq1JbHV32vio6L5rINpwMfSeQ8Eaa7c0gpuqc3Bneiof87ITMH
s+uMK/Ju0h5lUv/dSagvjVY7luPEsxtuce0qeMfJkGo9aPJYpoEdARTbn14DVEPl
B8Rd83ojB+she73UJgdBmYpHWdUCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBTM1vGH
1V8FPxOmJvynqUAvyGTGCDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI
IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3
MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y
eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3
MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB
/wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu
aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF
BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU0Njc2MDk2
NTE0RDExRUVCNTRBQTA0Q0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6
Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/
BCEwHzAMBAIAATAGAwQBZ6qcMA8EAgACMAkDBwAgAQ3xW0AwDQYJKoZIhvcNAQEL
BQADggEBAFe8990NrH042wILDF2qZytMcNUEMDPZ34bhzK0d2dMMZDZzXWhtjmBo
tVefr8BhD7KZE8zz1v3411S8gwKUIEmjosSSEn3TBddgrppOkRWtol4DmkPMlj//
DxT47E1kFcOTdiotjAtV2Nh6i8JvmYOIAxucqVGnwnOSqAgmY3crdHn4I9m0ARY6
ncQbCp2xo5GliVofbjH87FYpmagv1Zv/4PammoyKyXEdG2g3q6vNv1qYoui1Hnpt
Qs5qJwRZpnclHuc22L5qIHXsSlcKjtOEY3wFyfNO5ZqWp5+OMI4GVW7Fa16jtkoD
ulDSzubjtyIGewk1jLjg7NJBWd19Dd8=
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:24:41 2025 by rpki-client