Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/1901CC2A972211ED876D8452C4F9AE02.roa
File: 1901CC2A972211ED876D8452C4F9AE02.roa (raw, json)
Hash identifier: 2fRHJgELBj2YYgt6XUZRml63Ow1EjpBayGpQuFMlClk=
Subject key identifier: 1D:40:1F:7D:D2:51:DF:8C:9B:F2:28:E0:1B:FB:10:A0:B8:09:07:B4
Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF
Certificate serial: 346A
Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/1901CC2A972211ED876D8452C4F9AE02.roa
Signing time: Wed 31 Jul 2024 14:31:04 +0000
ROA not before: Wed 31 Jul 2024 14:31:04 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 45650
IP address blocks: 163.53.26.0/23 maxlen: 23
202.51.64.0/24 maxlen: 24
202.51.68.0/24 maxlen: 24
202.51.76.0/24 maxlen: 24
202.51.84.0/22 maxlen: 24
202.51.90.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 26 Sep 2024 06:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13418 (0x346a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF
Validity
Not Before: Jul 31 14:31:04 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66aa4aa8-b99c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:12:ed:14:f4:32:4f:35:13:0a:d5:77:c0:f7:
53:da:f7:99:55:a1:e5:c4:51:b6:2a:f6:43:ca:79:
a6:6a:74:80:23:99:fc:e7:45:a1:db:7a:a1:63:23:
3d:00:f5:b1:09:db:45:76:9b:b2:25:a7:c2:27:40:
12:78:e1:6b:ec:b3:20:a5:da:52:7e:d0:bf:a2:26:
84:7d:38:4c:2f:53:6e:fa:77:de:f4:e9:17:ec:c8:
4a:21:7f:32:a0:50:05:51:c3:7d:ca:f2:a9:ab:89:
83:0f:57:71:42:4a:30:8e:40:5e:dd:e3:d3:51:8f:
22:2d:a3:88:37:4a:85:75:c8:b3:05:3d:89:4a:92:
e0:0d:f2:ab:05:3a:ff:54:f0:69:53:e2:89:45:cd:
00:e8:52:52:83:95:94:5c:4c:20:25:18:17:09:9b:
d7:47:e5:08:a3:21:45:35:bb:a7:1d:3e:d7:50:f6:
b2:04:19:ba:7b:f1:1a:d9:4d:56:9b:a5:7d:fe:35:
9c:a8:dc:c2:ba:16:b8:9b:f8:6b:54:cd:ed:bc:1a:
ee:29:4c:c4:b7:b6:a6:51:bc:ed:39:27:f3:96:bc:
46:29:1c:8b:98:87:65:13:02:40:10:be:b0:f2:38:
72:b1:a6:99:e3:21:7d:5a:a4:a1:3a:f8:e4:b1:e4:
73:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:40:1F:7D:D2:51:DF:8C:9B:F2:28:E0:1B:FB:10:A0:B8:09:07:B4
X509v3 Authority Key Identifier:
keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/1901CC2A972211ED876D8452C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.53.26.0/23
202.51.64.0/24
202.51.68.0/24
202.51.76.0/24
202.51.84.0/22
202.51.90.0/23
Signature Algorithm: sha256WithRSAEncryption
19:bc:72:23:e2:b5:3b:af:b2:c2:3f:de:a0:ba:a8:1c:92:34:
57:6d:2d:1b:cd:35:c8:a3:af:dd:98:8e:63:8f:be:d3:27:76:
87:11:cf:43:1e:89:b7:b9:35:83:1b:6c:e9:6d:45:6f:32:1d:
b0:61:12:dd:63:14:c3:03:a2:a2:11:f0:2f:ba:7a:c4:70:f3:
8a:ef:ac:b3:96:64:79:7b:93:eb:99:20:86:34:bb:c2:a6:7e:
54:1b:21:4e:04:cb:44:81:86:51:a5:89:0d:72:32:75:62:db:
79:6b:83:4d:20:e4:71:29:ac:87:27:f7:c3:10:2e:de:24:49:
33:c1:f8:95:a3:8c:97:de:d4:af:72:46:ef:df:aa:13:21:95:
fd:e6:e8:63:26:ba:58:0f:49:b9:05:4f:05:be:74:2e:0b:7c:
01:37:29:a2:73:a5:b3:6a:a4:94:ce:2d:62:48:ef:1c:d9:76:
ca:8d:9b:f5:42:78:e0:ae:aa:c0:a7:55:74:7e:bc:6e:88:1b:
bc:60:80:70:a2:92:d2:e2:17:18:ac:5a:de:f2:31:e8:ec:ff:
1c:9b:21:c7:93:b4:17:da:b8:f0:03:cd:ab:3a:25:1c:e1:ae:
c9:9c:87:04:9e:ac:02:cc:e2:85:ea:c9:f9:18:bb:01:4b:9c:
47:55:a3:ec
-----BEGIN CERTIFICATE-----
MIIFjzCCBHegAwIBAgICNGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG
MkYxN0YzRkYwHhcNMjQwNzMxMTQzMTA0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmFhNGFhOC1iOTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAvBLtFPQyTzUTCtV3wPdT2veZVaHlxFG2KvZDynmmanSAI5n850Wh23qhYyM9
APWxCdtFdpuyJafCJ0ASeOFr7LMgpdpSftC/oiaEfThML1Nu+nfe9OkX7MhKIX8y
oFAFUcN9yvKpq4mDD1dxQkowjkBe3ePTUY8iLaOIN0qFdcizBT2JSpLgDfKrBTr/
VPBpU+KJRc0A6FJSg5WUXEwgJRgXCZvXR+UIoyFFNbunHT7XUPayBBm6e/Ea2U1W
m6V9/jWcqNzCuha4m/hrVM3tvBruKUzEt7amUbztOSfzlrxGKRyLmIdlEwJAEL6w
8jhysaaZ4yF9WqShOvjkseRzqwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFB1AH33S
Ud+Mm/Io4Bv7EKC4CQe0MB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE
ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4
XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEY1NTAvOEI5QkQyMDIxRDg1MTFFMkI0MTIzMERDMDhCMDJDRDIvMTkwMUNDMkE5
NzIyMTFFRDg3NkQ4NDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E
LjAsMCoEAgABMCQDBAGjNRoDBADKM0ADBADKM0QDBADKM0wDBALKM1QDBAHKM1ow
DQYJKoZIhvcNAQELBQADggEBABm8ciPitTuvssI/3qC6qBySNFdtLRvNNcijr92Y
jmOPvtMndocRz0Meibe5NYMbbOltRW8yHbBhEt1jFMMDoqIR8C+6esRw84rvrLOW
ZHl7k+uZIIY0u8KmflQbIU4Ey0SBhlGliQ1yMnVi23lrg00g5HEprIcn98MQLt4k
STPB+JWjjJfe1K9yRu/fqhMhlf3m6GMmulgPSbkFTwW+dC4LfAE3KaJzpbNqpJTO
LWJI7xzZdsqNm/VCeOCuqsCnVXR+vG6IG7xggHCiktLiFxisWt7yMejs/xybIceT
tBfauPADzas6JRzhrsmchwSerALM4oXqyfkYuwFLnEdVo+w=
-----END CERTIFICATE-----
Generated at Thu Sep 26 07:34:19 2024 by rpki-client on console-fra.rpki-client.org