Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/2B596C1EB6E711ECB2B1CF38C4F9AE02.roa
File: 2B596C1EB6E711ECB2B1CF38C4F9AE02.roa (raw, json)
Hash identifier: C0t67pnWPWwZ2OIWVuHyzaJULcAzujTK9KM5FFQfbfo=
Subject key identifier: 28:7F:4A:01:B2:6F:94:0D:C2:9E:8F:C0:CC:90:E3:87:75:3F:A7:F6
Certificate issuer: /CN=A91900BF/serialNumber=28EA1557B99E2B127551CD340C3AAF4C0A61006B
Certificate serial: 01E1
Authority key identifier: 28:EA:15:57:B9:9E:2B:12:75:51:CD:34:0C:3A:AF:4C:0A:61:00:6B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOoVV7meKxJ1Uc00DDqvTAphAGs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/2B596C1EB6E711ECB2B1CF38C4F9AE02.roa
Signing time: Fri 19 May 2023 05:44:30 +0000
ROA not before: Fri 19 May 2023 05:44:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 149768
IP address blocks: 103.186.6.0/23 maxlen: 24
2400:6be0::/32 maxlen: 36
Validation: Failed, certificate revoked on Tue 06 Jun 2023 17:44:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 481 (0x1e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91900BF/serialNumber=28EA1557B99E2B127551CD340C3AAF4C0A61006B
Validity
Not Before: May 19 05:44:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64670cbe-9bf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cd:96:54:0d:d4:33:45:c0:28:fa:15:44:17:
d3:69:c8:b4:7a:62:c9:2f:42:c9:d9:75:3e:e8:5c:
7f:08:c2:f8:fa:b7:3c:1b:f1:5a:84:55:a7:38:eb:
20:05:f0:f6:09:34:ce:c6:01:59:4e:8c:63:51:fb:
c4:8d:2a:48:fc:b4:0c:60:67:b6:d1:22:e6:73:10:
f5:51:17:d2:c5:fd:61:a8:80:7b:10:5b:a1:97:17:
9f:f7:0c:97:87:06:01:17:0f:7d:47:57:38:e9:fd:
17:35:82:01:3c:9e:a2:06:d2:f5:96:b4:a2:82:22:
d6:0f:7e:29:c4:d5:15:45:6d:dd:6a:10:f0:1a:55:
6c:76:c5:8f:12:a5:b9:ae:81:55:60:7b:09:b5:c1:
7f:48:e8:78:56:78:30:c9:0f:f5:d1:40:bb:27:81:
72:16:a3:89:68:59:25:86:f3:fa:99:4b:89:b1:9e:
a2:7c:dc:c5:7f:31:8b:ab:4d:f1:4a:ae:4c:c2:55:
5f:fb:7c:a4:21:0d:64:51:65:2d:ef:fa:fc:7d:55:
be:ea:1f:3b:1d:f7:17:eb:d4:28:1b:3d:49:1c:60:
5d:db:dd:fa:9c:1b:73:c4:c8:e7:50:9e:f6:ff:d4:
6f:db:8d:96:ef:a8:37:9c:4c:12:50:15:06:cf:48:
53:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:7F:4A:01:B2:6F:94:0D:C2:9E:8F:C0:CC:90:E3:87:75:3F:A7:F6
X509v3 Authority Key Identifier:
keyid:28:EA:15:57:B9:9E:2B:12:75:51:CD:34:0C:3A:AF:4C:0A:61:00:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/KOoVV7meKxJ1Uc00DDqvTAphAGs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOoVV7meKxJ1Uc00DDqvTAphAGs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91900BF/FEA1CD68B6E311ECBE59992DC4F9AE02/2B596C1EB6E711ECB2B1CF38C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.186.6.0/23
IPv6:
2400:6be0::/32
Signature Algorithm: sha256WithRSAEncryption
00:aa:a3:b4:c2:e7:48:54:65:7a:9b:b2:f2:ba:21:47:46:67:
e7:7a:c8:53:8d:63:60:12:3b:76:ae:2b:f3:d0:0e:09:a3:74:
c0:a4:fd:84:72:17:0c:45:fd:87:9c:03:f7:e7:45:a4:d5:90:
71:2c:0f:fe:e4:43:86:52:2c:58:44:40:d6:9d:74:d1:cd:a9:
2f:e1:c5:0e:68:4d:e9:b9:d9:ce:d0:ba:d9:58:dc:11:8f:fe:
cc:af:f7:d0:0e:a9:9b:0f:18:78:d0:a6:5f:cf:3e:5b:71:d7:
ad:00:a0:a4:ba:c3:1b:9c:99:f3:ad:50:fc:62:cb:5e:bf:46:
d5:29:36:4f:fb:7f:df:3d:9d:53:9c:5f:0c:47:67:96:d3:b4:
bb:20:6d:18:41:8d:c2:82:02:76:09:87:8c:2e:51:a5:0d:e0:
b1:8b:16:45:99:be:18:a8:f7:04:ab:ce:be:ea:99:32:d6:63:
9e:94:cc:82:be:41:eb:91:70:d1:cd:26:fa:aa:bb:b8:af:ff:
ac:7d:27:2c:97:0e:df:ba:c4:a6:ac:f9:06:69:fe:46:67:8d:
ee:24:8d:ff:21:bd:a3:6e:59:1b:ef:96:2f:5f:91:7a:01:ea:
e9:7e:a5:3f:a5:f6:6c:dd:29:8b:26:1a:5c:c1:8c:b4:20:85:
d6:56:9a:6b
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OTAwQkYxMTAvBgNVBAUTKDI4RUExNTU3Qjk5RTJCMTI3NTUxQ0QzNDBDM0FBRjRD
MEE2MTAwNkIwHhcNMjMwNTE5MDU0NDMwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDY3MGNiZS05YmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAo82WVA3UM0XAKPoVRBfTaci0emLJL0LJ2XU+6Fx/CML4+rc8G/FahFWnOOsg
BfD2CTTOxgFZToxjUfvEjSpI/LQMYGe20SLmcxD1URfSxf1hqIB7EFuhlxef9wyX
hwYBFw99R1c46f0XNYIBPJ6iBtL1lrSigiLWD34pxNUVRW3dahDwGlVsdsWPEqW5
roFVYHsJtcF/SOh4VngwyQ/10UC7J4FyFqOJaFklhvP6mUuJsZ6ifNzFfzGLq03x
Sq5MwlVf+3ykIQ1kUWUt7/r8fVW+6h87HfcX69QoGz1JHGBd2936nBtzxMjnUJ72
/9Rv242W76g3nEwSUBUGz0hTRwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCh/SgGy
b5QNwp6PwMyQ44d1P6f2MB8GA1UdIwQYMBaAFCjqFVe5nisSdVHNNAw6r0wKYQBr
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDBCRi9GRUExQ0Q2OEI2
RTMxMUVDQkU1OTk5MkRDNEY5QUUwMi9LT29WVjdtZUt4SjFVYzAwRERxdlRBcGhB
R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0tPb1ZWN21lS3hKMVVjMDBERHF2VEFwaEFHcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OTAwQkYvRkVBMUNENjhCNkUzMTFFQ0JFNTk5OTJEQzRGOUFFMDIvMkI1OTZDMUVC
NkU3MTFFQ0IyQjFDRjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E
HzAdMAwEAgABMAYDBAFnugYwDQQCAAIwBwMFACQAa+AwDQYJKoZIhvcNAQELBQAD
ggEBAACqo7TC50hUZXqbsvK6IUdGZ+d6yFONY2ASO3auK/PQDgmjdMCk/YRyFwxF
/YecA/fnRaTVkHEsD/7kQ4ZSLFhEQNaddNHNqS/hxQ5oTem52c7QutlY3BGP/syv
99AOqZsPGHjQpl/PPltx160AoKS6wxucmfOtUPxiy16/RtUpNk/7f989nVOcXwxH
Z5bTtLsgbRhBjcKCAnYJh4wuUaUN4LGLFkWZvhio9wSrzr7qmTLWY56UzIK+QeuR
cNHNJvqqu7iv/6x9JyyXDt+6xKas+QZp/kZnje4kjf8hvaNuWRvvli9fkXoB6ul+
pT+l9mzdKYsmGlzBjLQghdZWmms=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:33 2024 by rpki-client on console-fra.rpki-client.org