Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/62B36DE4FE9111ECAFD9BB1FC4F9AE02.roa
File: 62B36DE4FE9111ECAFD9BB1FC4F9AE02.roa (raw, json)
Hash identifier: 7p3KXHvxeE6VWSvu51CmyvzhukisS/Qal1DpUPgCx4Q=
Subject key identifier: 62:D6:C6:7E:33:6E:F7:7A:01:24:CC:15:7A:B7:E5:97:65:CD:01:D4
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 90F1
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/62B36DE4FE9111ECAFD9BB1FC4F9AE02.roa
Signing time: Thu 30 May 2024 16:30:06 +0000
ROA not before: Thu 30 May 2024 16:30:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 45851
IP address blocks: 202.62.246.0/24 maxlen: 24
2001:df0:2c9::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 20 Feb 2025 07:13:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37105 (0x90f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: May 30 16:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658a98e-abef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:75:7d:ca:be:3f:24:28:a1:ec:75:39:67:7e:
12:9b:48:f3:39:45:d9:14:68:c3:47:de:82:92:17:
88:d9:f4:58:90:c6:b3:50:b5:10:45:59:40:7a:37:
d1:9b:bc:fe:a1:89:86:71:96:2f:8f:73:fb:c3:d6:
29:82:9d:5b:1b:e7:58:30:50:57:fe:56:52:c1:fc:
b4:33:b7:ea:1a:6e:83:6e:87:93:09:78:80:0a:bd:
c6:6e:bd:4b:29:c9:d7:9d:7d:eb:87:d1:c3:a8:87:
68:fe:0a:2a:12:7d:ad:01:62:c1:5a:87:01:5a:56:
a0:25:e3:9d:6f:5a:f5:e0:d4:b8:40:8c:eb:27:57:
29:f9:f2:39:68:22:af:b1:70:16:eb:8d:58:e4:75:
62:48:b7:6d:73:fd:6d:4f:d1:4e:1a:35:0f:0a:6b:
36:72:ec:01:35:cf:22:ad:c5:fc:09:df:07:d5:1d:
9f:a7:58:41:4d:2d:68:83:01:11:80:07:00:ce:0d:
03:80:dc:39:d2:47:51:4b:61:27:3c:3e:ec:d2:70:
de:98:29:26:6a:bc:a5:70:48:11:2e:c5:05:74:93:
64:b8:98:6c:db:d0:b9:c2:1a:02:66:16:e5:4e:a0:
01:2e:f0:78:31:cd:09:40:9f:b6:5e:c0:81:7d:c4:
d3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D6:C6:7E:33:6E:F7:7A:01:24:CC:15:7A:B7:E5:97:65:CD:01:D4
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/62B36DE4FE9111ECAFD9BB1FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.62.246.0/24
IPv6:
2001:df0:2c9::/48
Signature Algorithm: sha256WithRSAEncryption
52:68:4a:a9:8e:1d:8b:7c:6b:0c:94:42:ff:d4:b9:d1:21:da:
84:cb:d4:25:15:e9:17:b8:f9:85:97:69:66:21:fe:36:2d:79:
cf:27:d7:9a:9c:63:25:67:9d:b3:8c:15:f3:f1:20:63:df:4a:
0f:cc:3c:54:09:0e:19:60:ac:72:f2:d2:2c:53:12:a3:93:2b:
2c:04:62:74:e6:65:9d:84:2f:fc:c5:ec:63:f5:cf:b6:4f:ae:
61:7c:6a:c2:ba:b3:00:b1:6c:77:7c:d0:a8:d3:e4:ce:d6:14:
2d:f9:5d:5a:49:d3:6f:79:31:f7:da:ef:89:12:31:d5:a4:70:
28:5f:35:88:eb:e5:e9:3e:ea:53:70:50:a8:71:e0:9a:5b:2f:
87:00:fc:78:72:6d:55:ee:ad:59:8f:b3:29:e8:93:33:0f:12:
66:72:86:0b:3c:e9:e7:52:0c:2b:c4:be:7b:fb:38:bf:76:ff:
31:f1:17:d7:b8:1a:2d:dc:22:32:fd:2e:dc:0a:8a:8f:3c:47:
a1:a4:38:8e:5a:89:85:33:1b:00:2c:f1:bf:ef:7d:df:b0:90:
e1:74:f8:19:1b:f9:de:ea:c5:f8:4b:1d:ad:11:c5:9c:b0:74:
28:c4:40:e0:09:2b:61:8a:74:91:26:bd:70:88:63:f6:14:0a:
75:00:c8:2e
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgIDAJDxMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4
M0UzQUJDODIzMB4XDTI0MDUzMDE2MzAwNloXDTI1MDcwMTAwMDAwMFowGDEWMBQG
A1UEAxMNNjY1OGE5OGUtYWJlZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMZ1fcq+PyQooex1OWd+EptI8zlF2RRow0fegpIXiNn0WJDGs1C1EEVZQHo3
0Zu8/qGJhnGWL49z+8PWKYKdWxvnWDBQV/5WUsH8tDO36hpug26Hkwl4gAq9xm69
SynJ151964fRw6iHaP4KKhJ9rQFiwVqHAVpWoCXjnW9a9eDUuECM6ydXKfnyOWgi
r7FwFuuNWOR1Yki3bXP9bU/RTho1DwprNnLsATXPIq3F/AnfB9Udn6dYQU0taIMB
EYAHAM4NA4DcOdJHUUthJzw+7NJw3pgpJmq8pXBIES7FBXSTZLiYbNvQucIaAmYW
5U6gAS7weDHNCUCftl7AgX3E0xsCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBRi1sZ+
M273egEkzBV6t+WXZc0B1DAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI
IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3
MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y
eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3
MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB
/wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu
aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF
BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzYyQjM2REU0
RkU5MTExRUNBRkQ5QkIxRkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6
Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/
BCEwHzAMBAIAATAGAwQAyj72MA8EAgACMAkDBwAgAQ3wAskwDQYJKoZIhvcNAQEL
BQADggEBAFJoSqmOHYt8awyUQv/UudEh2oTL1CUV6Re4+YWXaWYh/jYtec8n15qc
YyVnnbOMFfPxIGPfSg/MPFQJDhlgrHLy0ixTEqOTKywEYnTmZZ2EL/zF7GP1z7ZP
rmF8asK6swCxbHd80KjT5M7WFC35XVpJ0295Mffa74kSMdWkcChfNYjr5ek+6lNw
UKhx4JpbL4cA/HhybVXurVmPsynokzMPEmZyhgs86edSDCvEvnv7OL92/zHxF9e4
Gi3cIjL9LtwKio88R6GkOI5aiYUzGwAs8b/vfd+wkOF0+Bkb+d7qxfhLHa0RxZyw
dCjEQOAJK2GKdJEmvXCIY/YUCnUAyC4=
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:01:48 2025 by rpki-client