Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/BFFFBCB69D6211EEBCB12858C4F9AE02.roa
File: BFFFBCB69D6211EEBCB12858C4F9AE02.roa (raw, json)
Hash identifier: YQFvfUJjqn5UuHHyLegb5Sj/iOxrEaHkElRJcalOxbw=
Subject key identifier: F3:88:C1:6D:A0:D8:9A:65:3F:02:86:90:6D:55:3A:1D:A4:FC:B5:93
Certificate issuer: /CN=A91A001E/serialNumber=8278F47DEC5B7ADC201897F99BCC6E2BFA88D015
Certificate serial: 3E3B
Authority key identifier: 82:78:F4:7D:EC:5B:7A:DC:20:18:97:F9:9B:CC:6E:2B:FA:88:D0:15
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/BFFFBCB69D6211EEBCB12858C4F9AE02.roa
Signing time: Mon 18 Dec 2023 05:03:15 +0000
ROA not before: Mon 18 Dec 2023 05:03:15 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 58367
IP address blocks: 2001:df7:5380::/48 maxlen: 48
2001:df7:5381::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 22 Feb 2024 03:38:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15931 (0x3e3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A001E/serialNumber=8278F47DEC5B7ADC201897F99BCC6E2BFA88D015
Validity
Not Before: Dec 18 05:03:15 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=657fd293-f934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:1d:7a:c2:d1:f6:28:b6:54:8c:21:af:71:e7:
f3:92:f3:fa:fb:b1:d1:36:d8:14:7e:be:44:c5:a7:
7a:8b:8f:3e:61:1e:6c:9e:46:00:43:8c:c4:bc:e1:
ac:df:34:12:4f:f3:e6:be:e9:bd:5d:86:ab:f7:db:
e7:d9:cb:48:a0:46:1f:06:1c:65:5c:b8:0d:7f:0b:
10:ed:18:67:54:a3:c0:52:d2:b9:9f:b1:8b:85:0f:
ad:1f:3b:bf:c0:23:d1:e0:72:9a:f6:9c:d4:0c:3e:
7b:7c:8e:66:55:b7:f3:23:55:b4:d2:2f:93:25:58:
0d:2a:67:bb:dc:dd:5b:ee:e1:87:e6:b5:91:a6:f7:
f5:18:37:90:d0:a9:2d:aa:3e:f5:d1:63:72:77:96:
be:e0:8e:36:81:da:36:f5:c2:f7:a0:f1:91:57:cc:
bf:ab:70:3c:17:dd:bf:3f:75:2e:61:3d:3a:5e:23:
53:74:5a:cf:5e:5d:58:81:31:5b:42:98:02:6e:4a:
a0:35:68:41:57:ab:f7:8f:be:f4:41:4f:06:f3:83:
e8:e8:02:1a:22:d2:3f:fb:66:24:1f:41:2f:8f:7d:
ca:96:60:4c:f6:7d:13:e4:8c:e2:7b:d4:36:96:88:
02:07:25:b4:bb:f9:53:81:32:2e:70:2f:0f:2a:cd:
84:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:88:C1:6D:A0:D8:9A:65:3F:02:86:90:6D:55:3A:1D:A4:FC:B5:93
X509v3 Authority Key Identifier:
keyid:82:78:F4:7D:EC:5B:7A:DC:20:18:97:F9:9B:CC:6E:2B:FA:88:D0:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/gnj0fexbetwgGJf5m8xuK_qI0BU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/BFFFBCB69D6211EEBCB12858C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df7:5380::/47
Signature Algorithm: sha256WithRSAEncryption
39:14:05:62:f4:d6:cb:0d:79:f1:83:b3:21:b8:cc:8d:99:14:
2d:93:3a:4f:34:8e:ea:cd:3e:6a:3e:d0:1f:42:89:ab:41:1a:
5d:53:6a:aa:3b:f0:c1:95:1a:67:5a:3d:96:39:7e:d7:a8:cb:
71:05:31:f8:dd:95:13:d0:b4:8b:a1:4b:46:70:06:f7:9a:c6:
b8:c5:09:0c:c8:78:5a:ab:38:47:ea:a6:ee:26:22:52:d1:5e:
12:1c:ba:1a:e0:50:86:34:5f:a6:c8:84:8c:7a:25:63:51:e9:
dd:44:20:0e:2e:08:31:f9:7c:b5:36:dc:4b:09:88:6f:e0:62:
f1:3e:06:4e:75:c6:d0:3c:c0:e3:cc:64:f6:84:7c:38:ce:ee:
43:71:11:b2:2b:ae:a8:6f:0f:dc:70:e6:1e:f4:4a:05:73:2d:
72:b8:6f:13:a3:87:a3:1b:b2:a4:e1:a5:53:44:6f:1d:ef:15:
64:d8:d4:96:52:f4:17:15:13:92:a3:13:95:f9:b9:fc:e0:0b:
2b:ef:ff:8f:2f:37:33:d1:15:0b:5e:21:e0:e7:e8:9f:0c:7b:
97:18:c2:fd:ef:92:43:40:54:41:e8:c2:f5:b8:18:06:10:e6:
14:74:fe:88:52:a7:a2:96:52:41:91:58:8b:33:e6:60:9c:d2:
a2:f4:6c:db
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgICPjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTAwMUUxMTAvBgNVBAUTKDgyNzhGNDdERUM1QjdBREMyMDE4OTdGOTlCQ0M2RTJC
RkE4OEQwMTUwHhcNMjMxMjE4MDUwMzE1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTdmZDI5My1mOTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA2B16wtH2KLZUjCGvcefzkvP6+7HRNtgUfr5Exad6i48+YR5snkYAQ4zEvOGs
3zQST/Pmvum9XYar99vn2ctIoEYfBhxlXLgNfwsQ7RhnVKPAUtK5n7GLhQ+tHzu/
wCPR4HKa9pzUDD57fI5mVbfzI1W00i+TJVgNKme73N1b7uGH5rWRpvf1GDeQ0Kkt
qj710WNyd5a+4I42gdo29cL3oPGRV8y/q3A8F92/P3UuYT06XiNTdFrPXl1YgTFb
QpgCbkqgNWhBV6v3j770QU8G84Po6AIaItI/+2YkH0Evj33KlmBM9n0T5Izie9Q2
logCByW0u/lTgTIucC8PKs2EjwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPOIwW2g
2JplPwKGkG1VOh2k/LWTMB8GA1UdIwQYMBaAFIJ49H3sW3rcIBiX+ZvMbiv6iNAV
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDAxRS8zNUZBMEY1NjFE
NzgxMUUyOTM3NzFGQzQwOEIwMkNEMi9nbmowZmV4YmV0d2dHSmY1bTh4dUtfcUkw
QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2duajBmZXhiZXR3Z0dKZjVtOHh1S19xSTBCVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTAwMUUvMzVGQTBGNTYxRDc4MTFFMjkzNzcxRkM0MDhCMDJDRDIvQkZGRkJDQjY5
RDYyMTFFRUJDQjEyODU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwEgAQ33U4AwDQYJKoZIhvcNAQELBQADggEBADkUBWL01ssN
efGDsyG4zI2ZFC2TOk80jurNPmo+0B9CiatBGl1Taqo78MGVGmdaPZY5fteoy3EF
MfjdlRPQtIuhS0ZwBveaxrjFCQzIeFqrOEfqpu4mIlLRXhIcuhrgUIY0X6bIhIx6
JWNR6d1EIA4uCDH5fLU23EsJiG/gYvE+Bk51xtA8wOPMZPaEfDjO7kNxEbIrrqhv
D9xw5h70SgVzLXK4bxOjh6MbsqThpVNEbx3vFWTY1JZS9BcVE5KjE5X5ufzgCyvv
/48vNzPRFQteIeDn6J8Me5cYwv3vkkNAVEHowvW4GAYQ5hR0/ohSp6KWUkGRWIsz
5mCc0qL0bNs=
-----END CERTIFICATE-----
Generated at Thu Feb 22 04:17:27 2024 by rpki-client on console-fra.rpki-client.org