Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/F15373EC1C3411EFAF8F6A5BC4F9AE02.roa
File: F15373EC1C3411EFAF8F6A5BC4F9AE02.roa (raw, json)
Hash identifier: w5mMaPe4LV7jU6dSF0QDuuNlyThF/c0zqhwSAnjqFZE=
Subject key identifier: D1:D3:7B:EA:FA:49:1C:3B:58:63:90:A1:9E:C6:F2:A5:FA:5B:DF:ED
Certificate issuer: /CN=A91A822F/serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10
Certificate serial: 19
Authority key identifier: D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/F15373EC1C3411EFAF8F6A5BC4F9AE02.roa
Signing time: Mon 27 May 2024 14:25:18 +0000
ROA not before: Mon 27 May 2024 14:25:18 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 103.6.160.0/24 maxlen: 24
103.6.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 May 2024 09:07:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25 (0x19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A822F/serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10
Validity
Not Before: May 27 14:25:18 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=665497ce-3027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:37:2d:ad:62:f4:a7:da:74:97:0b:40:fd:93:
ae:a8:46:c1:f9:95:98:1c:fd:11:04:35:d5:7a:75:
d9:92:e3:97:59:d9:21:0b:5f:41:65:04:59:69:5a:
c4:17:9b:13:a3:8a:5c:03:94:0c:68:d9:a9:5f:9d:
63:39:87:0d:69:d9:f9:ba:07:fb:a9:ce:5f:46:01:
ad:08:d7:17:17:8a:f7:42:bc:80:c9:0a:92:75:e3:
d8:df:71:63:ea:5a:20:ea:59:f6:da:a8:1e:26:4f:
42:44:e8:f0:74:48:a7:dc:8e:32:92:38:3b:81:88:
aa:0a:ff:f7:1e:6c:47:7c:43:16:47:08:f8:b8:ef:
b0:dc:a6:66:65:a7:87:9e:12:b9:71:bd:fc:6c:a5:
47:e7:8c:4b:38:f8:db:88:0e:45:2a:33:6c:c6:16:
76:bd:9c:90:7c:59:0f:5e:8a:18:2a:aa:8d:49:92:
79:e4:cc:d6:f4:8f:02:b3:ef:4d:93:d6:5e:2c:06:
88:47:bd:67:dd:ce:d9:fc:57:78:e0:68:09:cf:13:
32:34:0d:65:dc:d4:60:49:ae:ab:d5:ae:96:89:de:
c5:87:ec:d5:b7:a9:4c:55:b8:87:03:d2:4d:e4:f5:
70:ce:58:9f:3d:7d:2d:cc:0c:87:f2:7e:97:67:2a:
29:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D3:7B:EA:FA:49:1C:3B:58:63:90:A1:9E:C6:F2:A5:FA:5B:DF:ED
X509v3 Authority Key Identifier:
keyid:D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/F15373EC1C3411EFAF8F6A5BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.6.160.0/23
Signature Algorithm: sha256WithRSAEncryption
22:dd:70:0a:3e:5f:cf:6d:08:d7:f1:e0:6f:fd:85:fb:9c:79:
37:3b:1d:24:99:23:2e:d4:1a:72:8f:ce:5e:e7:5b:59:ee:48:
15:76:79:4a:8a:a9:a2:29:d2:33:93:d5:69:f5:dd:bc:87:e3:
ee:71:c8:71:d5:e5:55:e3:b5:44:10:8f:04:52:9d:be:cf:85:
80:bb:69:f7:be:10:64:a8:9b:a2:64:41:86:88:52:89:e7:ba:
45:9c:58:ce:47:56:16:d9:5f:19:83:53:c5:25:67:ba:95:ed:
17:1a:67:ab:99:99:70:d6:b3:05:95:39:2d:ca:59:ec:46:6a:
fc:49:cc:1d:ce:e2:68:43:df:16:0d:df:e3:e4:c8:de:69:e5:
ef:2d:c0:7a:34:36:e0:40:71:bf:a8:b6:65:17:21:8d:d1:f7:
fd:a3:10:89:e4:2e:0f:5d:12:56:a8:45:39:75:ea:49:a5:10:
1a:0f:24:68:a8:af:db:f6:c3:bf:ab:76:9d:53:31:fb:5c:6a:
f7:43:54:f2:50:2e:e1:4c:a6:62:e8:f8:6a:79:bb:ab:c4:7d:
16:5b:68:ab:e9:2c:4a:a6:de:dc:6c:9c:80:92:78:e9:6d:7d:
66:fd:fd:8c:d2:40:49:cb:37:b9:f9:d6:9b:2c:69:6f:e0:04:
0b:ac:3c:bb
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB
ODIyRjExMC8GA1UEBRMoRDk4NzJDMTkzRTE4REMxNTFGRTNFRjlFMjlBRkU4MzEy
MUIyNEQxMDAeFw0yNDA1MjcxNDI1MThaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV
BAMTDTY2NTQ5N2NlLTMwMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC/Ny2tYvSn2nSXC0D9k66oRsH5lZgc/REENdV6ddmS45dZ2SELX0FlBFlpWsQX
mxOjilwDlAxo2alfnWM5hw1p2fm6B/upzl9GAa0I1xcXivdCvIDJCpJ149jfcWPq
WiDqWfbaqB4mT0JE6PB0SKfcjjKSODuBiKoK//cebEd8QxZHCPi477DcpmZlp4ee
ErlxvfxspUfnjEs4+NuIDkUqM2zGFna9nJB8WQ9eihgqqo1JknnkzNb0jwKz702T
1l4sBohHvWfdztn8V3jgaAnPEzI0DWXc1GBJrqvVrpaJ3sWH7NW3qUxVuIcD0k3k
9XDOWJ89fS3MDIfyfpdnKim1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0dN76vpJ
HDtYY5Chnsbypfpb3+0wHwYDVR0jBBgwFoAU2YcsGT4Y3BUf4++eKa/oMSGyTRAw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4MjJGLzU4NDJEMzA0RjdG
MDExRUU5OEM4QzkyQkM0RjlBRTAyLzJZY3NHVDRZM0JVZjQtLWVLYV9vTVNHeVRS
QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvMlljc0dUNFkzQlVmNC0tZUthX29NU0d5VFJBLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
ODIyRi81ODQyRDMwNEY3RjAxMUVFOThDOEM5MkJDNEY5QUUwMi9GMTUzNzNFQzFD
MzQxMUVGQUY4RjZBNUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAWcGoDANBgkqhkiG9w0BAQsFAAOCAQEAIt1wCj5fz20I1/Hg
b/2F+5x5NzsdJJkjLtQaco/OXudbWe5IFXZ5SoqpoinSM5PVafXdvIfj7nHIcdXl
VeO1RBCPBFKdvs+FgLtp974QZKibomRBhohSiee6RZxYzkdWFtlfGYNTxSVnupXt
Fxpnq5mZcNazBZU5LcpZ7EZq/EnMHc7iaEPfFg3f4+TI3mnl7y3AejQ24EBxv6i2
ZRchjdH3/aMQieQuD10SVqhFOXXqSaUQGg8kaKiv2/bDv6t2nVMx+1xq90NU8lAu
4UymYuj4anm7q8R9Fltoq+ksSqbe3GycgJJ46W19Zv39jNJAScs3ufnWmyxpb+AE
C6w8uw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:54 2024 by rpki-client on console-ams.rpki-client.org