Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A919DBBF/B595A6689BF711EDA1DC5E6FC4F9AE02/AD76D8CC1E6311EFB373412DC4F9AE02.roa
File: AD76D8CC1E6311EFB373412DC4F9AE02.roa (raw, json)
Hash identifier: IxVdimiW+IXLzNxsxl8j+w9viRFceYInLCsfGQUuZbI=
Subject key identifier: D0:8C:96:A0:01:40:A1:46:B5:A9:B7:00:8E:93:BB:6A:3F:28:9E:B2
Certificate issuer: /CN=A919DBBF/serialNumber=854C3C8DBFEEDAACBB3B2A424B58B259A14C9F0B
Certificate serial: 0105
Authority key identifier: 85:4C:3C:8D:BF:EE:DA:AC:BB:3B:2A:42:4B:58:B2:59:A1:4C:9F:0B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hUw8jb_u2qy7OypCS1iyWaFMnws.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A919DBBF/B595A6689BF711EDA1DC5E6FC4F9AE02/AD76D8CC1E6311EFB373412DC4F9AE02.roa
Signing time: Thu 30 May 2024 09:04:53 +0000
ROA not before: Thu 30 May 2024 09:04:53 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 150726
IP address blocks: 103.74.10.0/24 maxlen: 24
103.74.11.0/24 maxlen: 24
2001:df1:dd40::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 30 May 2024 09:12:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 261 (0x105)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A919DBBF/serialNumber=854C3C8DBFEEDAACBB3B2A424B58B259A14C9F0B
Validity
Not Before: May 30 09:04:53 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=66584135-9526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:1d:12:2c:3c:14:72:3e:e0:99:16:46:fc:c9:
d1:7b:70:f3:06:cf:27:7c:30:35:c7:52:58:11:e0:
66:65:7c:d8:07:e0:09:ef:10:6a:8d:5c:54:05:5c:
a1:ec:b9:58:b7:45:fe:aa:c3:00:90:17:6d:d2:a7:
b9:d3:ad:04:b8:8a:f4:28:d6:a4:4d:67:b8:9f:5b:
58:f7:2d:f9:38:3c:bd:48:e5:ed:58:ad:da:f9:6e:
b1:a0:8d:1d:7c:b5:0b:60:1b:ae:f4:f0:2f:3a:65:
82:31:1d:62:08:ab:1f:58:cd:e5:83:39:3f:d8:b4:
1e:2f:00:f9:4d:07:55:a6:0b:a1:db:47:87:28:4f:
2a:77:35:93:bc:a4:90:79:2c:2b:7d:f4:4e:74:b9:
10:68:fd:8a:19:2d:68:14:fb:c7:6d:dc:5a:c4:2d:
dc:d9:2f:f3:76:e0:45:b7:54:5a:ac:43:2b:8b:be:
ec:8b:30:3b:3f:40:f4:c7:6f:0a:8b:c9:14:67:a8:
43:20:72:e0:b1:0b:56:31:4f:3d:e3:8d:31:b7:aa:
32:2c:b1:a8:7d:00:55:b5:36:57:b7:3c:24:d0:20:
9d:e4:86:e3:1a:d3:76:dd:0c:da:40:d9:e1:63:17:
1e:9f:db:fe:17:c1:fe:c6:bb:68:14:d2:9a:72:54:
02:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:8C:96:A0:01:40:A1:46:B5:A9:B7:00:8E:93:BB:6A:3F:28:9E:B2
X509v3 Authority Key Identifier:
keyid:85:4C:3C:8D:BF:EE:DA:AC:BB:3B:2A:42:4B:58:B2:59:A1:4C:9F:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A919DBBF/B595A6689BF711EDA1DC5E6FC4F9AE02/hUw8jb_u2qy7OypCS1iyWaFMnws.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hUw8jb_u2qy7OypCS1iyWaFMnws.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DBBF/B595A6689BF711EDA1DC5E6FC4F9AE02/AD76D8CC1E6311EFB373412DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.74.10.0/23
IPv6:
2001:df1:dd40::/48
Signature Algorithm: sha256WithRSAEncryption
1d:dd:d0:7e:a6:7b:d1:72:93:56:e3:43:fb:fb:e6:f0:f9:b6:
ef:92:89:0e:0e:8b:42:4e:f2:dd:af:6f:d0:17:c7:aa:80:c8:
15:2f:e7:e6:eb:36:22:ea:b0:c5:0b:cf:0c:7d:f6:11:ea:f2:
06:6e:70:39:51:b0:a8:ff:85:2e:f6:f0:55:68:67:ce:d9:0f:
c4:f4:e2:dc:ee:97:b2:ed:00:38:88:1b:44:a7:8b:d5:20:33:
33:cc:30:12:c5:93:85:1b:72:65:07:e6:23:c7:23:18:b1:7d:
64:85:3b:c3:6c:36:7d:da:8c:f6:d6:61:95:df:31:63:ee:0c:
02:78:5a:99:c7:bc:16:99:fa:40:f3:3b:77:fa:ed:2d:86:b1:
56:7c:77:38:3e:5d:9e:f5:57:2a:a7:1f:9d:a9:73:ae:07:f8:
3e:70:35:d3:d7:b1:eb:0e:4d:f4:13:1c:3a:0a:63:d2:93:2b:
8a:4a:fb:fa:45:3f:7d:99:cd:c7:99:5f:3f:9a:a7:a3:3a:68:
c3:e8:10:27:d3:22:d4:0a:d7:f2:b3:0e:0d:a1:79:55:2c:95:
cc:61:b7:92:65:96:8b:e0:d9:c1:f3:df:33:74:e3:11:9f:f5:
73:36:bd:52:54:f3:86:5e:e0:a4:2d:da:d2:a8:7f:b4:47:b0:
08:c2:f6:df
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OURCQkYxMTAvBgNVBAUTKDg1NEMzQzhEQkZFRURBQUNCQjNCMkE0MjRCNThCMjU5
QTE0QzlGMEIwHhcNMjQwNTMwMDkwNDUzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjU4NDEzNS05NTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA6h0SLDwUcj7gmRZG/MnRe3DzBs8nfDA1x1JYEeBmZXzYB+AJ7xBqjVxUBVyh
7LlYt0X+qsMAkBdt0qe5060EuIr0KNakTWe4n1tY9y35ODy9SOXtWK3a+W6xoI0d
fLULYBuu9PAvOmWCMR1iCKsfWM3lgzk/2LQeLwD5TQdVpguh20eHKE8qdzWTvKSQ
eSwrffROdLkQaP2KGS1oFPvHbdxaxC3c2S/zduBFt1RarEMri77sizA7P0D0x28K
i8kUZ6hDIHLgsQtWMU89440xt6oyLLGofQBVtTZXtzwk0CCd5IbjGtN23QzaQNnh
Yxcen9v+F8H+xrtoFNKaclQCFQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNCMlqAB
QKFGtam3AI6Tu2o/KJ6yMB8GA1UdIwQYMBaAFIVMPI2/7tqsuzsqQktYslmhTJ8L
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REJCRi9CNTk1QTY2ODlC
RjcxMUVEQTFEQzVFNkZDNEY5QUUwMi9oVXc4amJfdTJxeTdPeXBDUzFpeVdhRk1u
d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2hVdzhqYl91MnF5N095cENTMWl5V2FGTW53cy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OURCQkYvQjU5NUE2Njg5QkY3MTFFREExREM1RTZGQzRGOUFFMDIvQUQ3NkQ4Q0Mx
RTYzMTFFRkIzNzM0MTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBAFnSgowDwQCAAIwCQMHACABDfHdQDANBgkqhkiG9w0BAQsF
AAOCAQEAHd3QfqZ70XKTVuND+/vm8Pm275KJDg6LQk7y3a9v0BfHqoDIFS/n5us2
IuqwxQvPDH32EeryBm5wOVGwqP+FLvbwVWhnztkPxPTi3O6Xsu0AOIgbRKeL1SAz
M8wwEsWThRtyZQfmI8cjGLF9ZIU7w2w2fdqM9tZhld8xY+4MAnhamce8Fpn6QPM7
d/rtLYaxVnx3OD5dnvVXKqcfnalzrgf4PnA109ex6w5N9BMcOgpj0pMrikr7+kU/
fZnNx5lfP5qnozpow+gQJ9Mi1ArX8rMODaF5VSyVzGG3kmWWi+DZwfPfM3TjEZ/1
cza9UlTzhl7gpC3a0qh/tEewCML23w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:35 2024 by rpki-client on console-fra.rpki-client.org