Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/32D8CF6E31D211EDB104E019C4F9AE02.roa
File: 32D8CF6E31D211EDB104E019C4F9AE02.roa (raw, json)
Hash identifier: k9GlE/dz3JWcB85X6E/JXp6YHW0YsZZheOCzkLneeQ4=
Subject key identifier: 05:26:01:26:F4:27:F8:97:2F:DC:9C:A8:BB:01:5E:3B:4F:30:7A:66
Certificate issuer: /CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D
Certificate serial: 0169
Authority key identifier: 1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/32D8CF6E31D211EDB104E019C4F9AE02.roa
Signing time: Sun 11 Sep 2022 13:03:59 +0000
ROA not before: Sun 11 Sep 2022 13:03:59 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 139042
IP address blocks: 2407:3b40::/32 maxlen: 32
2407:3b40:3::/48 maxlen: 48
2407:3b40:4::/48 maxlen: 48
2407:3b40:5::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 361 (0x169)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D
Validity
Not Before: Sep 11 13:03:59 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=631ddcbe-9e40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:27:06:d6:f6:ef:f4:92:de:97:70:a7:39:35:
67:3c:13:7f:14:8f:2a:b7:20:ca:71:fb:b6:51:de:
ad:32:31:e7:d6:59:6a:d4:c7:08:27:27:27:1f:d6:
3a:8c:34:de:58:75:f1:c6:4e:29:47:b0:5e:9e:bb:
60:d9:62:d1:2c:bd:2b:c6:b0:22:1b:3a:56:38:26:
09:a1:72:26:0c:72:69:ae:23:e9:f0:29:6c:9b:b3:
9f:5d:7b:f0:82:5d:2a:f8:53:99:6e:8e:18:a5:de:
c8:5f:24:ba:a3:b4:96:fc:39:c6:9b:01:39:8e:95:
63:c0:11:a4:0b:ff:05:27:64:92:40:66:ac:c2:78:
53:13:e4:7e:74:23:3f:87:3e:e2:59:d4:2f:de:f8:
a7:c0:a3:9d:1a:8d:38:c3:91:ab:74:6f:70:c2:ff:
16:c5:af:cd:08:9e:5f:88:2e:9c:6c:e9:72:09:9e:
20:5c:ba:79:8f:5c:8a:e7:d6:e7:48:7c:f4:0b:97:
96:4f:b5:ee:10:45:2b:e6:fb:f0:61:5c:ba:a2:5e:
e6:2d:35:2a:76:54:6f:69:1d:5b:01:dc:5b:36:c3:
39:5e:9b:06:38:cb:0e:00:3b:08:15:b6:39:86:06:
91:9d:c8:99:6f:d6:74:60:a7:8a:ab:7c:20:0c:db:
23:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:26:01:26:F4:27:F8:97:2F:DC:9C:A8:BB:01:5E:3B:4F:30:7A:66
X509v3 Authority Key Identifier:
keyid:1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/32D8CF6E31D211EDB104E019C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:3b40::/32
Signature Algorithm: sha256WithRSAEncryption
96:d8:00:a3:93:06:83:b8:28:8d:95:27:76:0f:48:d3:43:dd:
d7:07:52:91:f1:0c:14:3b:51:db:86:fb:58:a2:3d:8d:ad:10:
c6:fa:44:48:e6:f2:4f:a5:d4:5d:ca:68:09:3a:68:fd:b4:ab:
6d:a6:ec:37:8b:e9:64:29:3a:0e:cb:8e:6a:aa:ef:a4:53:62:
e3:da:eb:fb:7c:3c:43:84:5f:4b:ee:f4:65:5a:3a:2c:dd:15:
5d:10:48:06:e9:23:1d:dd:94:2d:1a:d3:53:1e:68:2e:ee:76:
3f:3e:d1:42:b3:9f:50:22:b4:bf:67:65:24:8b:24:e0:45:83:
5b:c8:82:cc:4e:8e:19:e0:46:d6:1e:1e:b4:c3:12:6a:3c:51:
6b:d7:1e:2a:9c:73:2d:5d:af:15:c4:ec:f6:3b:a4:9b:e8:d0:
85:3a:75:fe:8e:a8:0d:43:db:da:8b:30:aa:6d:0f:7c:61:72:
50:aa:0e:c4:0f:3d:c9:66:ab:24:11:fb:34:8b:8b:4c:33:33:
30:aa:41:b4:b2:2e:d9:67:a9:a9:8b:53:b8:4f:2b:70:ba:e8:
e6:1e:15:9c:84:73:5d:6a:85:cf:fb:34:87:ad:13:0c:b2:d4:
fc:fe:0a:66:49:f1:9e:8d:f3:59:47:8f:bc:b5:56:f2:de:c8:
c6:86:9f:ca
-----BEGIN CERTIFICATE-----
MIIFcjCCBFqgAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QjA3MjAxMTAvBgNVBAUTKDFCMDM2QkZGODc4MDdDQkZDNkU5MTIzNkNCMDg2RDRG
RTJCMDk5M0QwHhcNMjIwOTExMTMwMzU5WhcNMjMwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzFkZGNiZS05ZTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtScG1vbv9JLel3CnOTVnPBN/FI8qtyDKcfu2Ud6tMjHn1llq1McIJycnH9Y6
jDTeWHXxxk4pR7Benrtg2WLRLL0rxrAiGzpWOCYJoXImDHJpriPp8Clsm7OfXXvw
gl0q+FOZbo4Ypd7IXyS6o7SW/DnGmwE5jpVjwBGkC/8FJ2SSQGaswnhTE+R+dCM/
hz7iWdQv3vinwKOdGo04w5GrdG9wwv8Wxa/NCJ5fiC6cbOlyCZ4gXLp5j1yK59bn
SHz0C5eWT7XuEEUr5vvwYVy6ol7mLTUqdlRvaR1bAdxbNsM5XpsGOMsOADsIFbY5
hgaRnciZb9Z0YKeKq3wgDNsjNwIDAQABo4ICljCCApIwHQYDVR0OBBYEFAUmASb0
J/iXL9ycqLsBXjtPMHpmMB8GA1UdIwQYMBaAFBsDa/+HgHy/xukSNssIbU/isJk9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDcyMC8yMDlGOEI3NEE3
OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZMX0c2UkkyeXdodFQtS3dt
VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0d3TnJfNGVBZkxfRzZSSTJ5d2h0VC1Ld21UMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QjA3MjAvMjA5RjhCNzRBNzlCMTFFQzhERDJCMTU3QzRGOUFFMDIvMzJEOENGNkUz
MUQyMTFFREIxMDRFMDE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E
ETAPMA0EAgACMAcDBQAkBztAMA0GCSqGSIb3DQEBCwUAA4IBAQCW2ACjkwaDuCiN
lSd2D0jTQ93XB1KR8QwUO1HbhvtYoj2NrRDG+kRI5vJPpdRdymgJOmj9tKttpuw3
i+lkKToOy45qqu+kU2Lj2uv7fDxDhF9L7vRlWjos3RVdEEgG6SMd3ZQtGtNTHmgu
7nY/PtFCs59QIrS/Z2UkiyTgRYNbyILMTo4Z4EbWHh60wxJqPFFr1x4qnHMtXa8V
xOz2O6Sb6NCFOnX+jqgNQ9vaizCqbQ98YXJQqg7EDz3JZqskEfs0i4tMMzMwqkG0
si7ZZ6mpi1O4TytwuujmHhWchHNdaoXP+zSHrRMMstT8/gpmSfGejfNZR4+8tVby
3sjGhp/K
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:04 2023 by rpki-client on console-fra.rpki-client.org