Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/4F18C63C2D3C11EE9A8F5732C4F9AE02.roa
File: 4F18C63C2D3C11EE9A8F5732C4F9AE02.roa (raw, json)
Hash identifier: jJyizwI9sN/E/hqruRexiyYy/rAEgsYNQMzmC5bG8EY=
Subject key identifier: 5F:A6:CD:5E:BD:C1:92:F4:29:0B:88:B5:DF:37:19:14:5C:C9:38:DD
Certificate issuer: /CN=A91BB4C2/serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04
Certificate serial: 38
Authority key identifier: DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/4F18C63C2D3C11EE9A8F5732C4F9AE02.roa
Signing time: Fri 28 Jul 2023 11:45:55 +0000
ROA not before: Fri 28 Jul 2023 11:45:55 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 151391
IP address blocks: 2401:5e0::/32 maxlen: 32
2401:5e0::/36 maxlen: 36
2401:5e0:1000::/36 maxlen: 36
2401:5e0:1002::/48 maxlen: 48
2401:5e0:1003::/48 maxlen: 48
2401:5e0:1004::/48 maxlen: 48
2401:5e0:2000::/36 maxlen: 36
2401:5e0:3000::/36 maxlen: 36
2401:5e0:4000::/36 maxlen: 36
2401:5e0:5000::/36 maxlen: 36
2401:5e0:6000::/36 maxlen: 36
2401:5e0:7000::/36 maxlen: 36
2401:5e0:8000::/36 maxlen: 36
2401:5e0:9000::/36 maxlen: 36
2401:5e0:a000::/36 maxlen: 36
2401:5e0:b000::/36 maxlen: 36
2401:5e0:c000::/36 maxlen: 36
2401:5e0:d000::/36 maxlen: 36
2401:5e0:e000::/36 maxlen: 36
2401:5e0:f000::/36 maxlen: 36
Validation: Failed, certificate revoked on Fri 28 Jul 2023 12:03:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56 (0x38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BB4C2/serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04
Validity
Not Before: Jul 28 11:45:55 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=64c3aa72-9824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e4:ec:5f:8e:22:7a:98:55:68:78:41:40:c6:
14:b4:72:3c:23:9d:a6:db:de:ca:7c:b7:ae:a1:39:
b3:49:36:0d:b4:7b:85:e3:ff:dc:c8:04:0e:2f:c9:
51:54:05:9f:12:03:67:3e:59:a3:b8:7d:5c:56:be:
c2:a5:70:2b:9c:30:9c:65:90:20:00:43:ab:82:d1:
95:07:a0:af:db:d8:2c:f8:a4:e6:9a:ad:ad:a1:c6:
08:b4:14:a1:d5:34:62:4b:ee:e7:71:02:43:65:64:
ca:05:b2:ce:f8:42:14:7e:7e:5b:ed:6d:99:c8:75:
24:d6:4f:96:b1:e1:78:73:34:a9:36:cf:f4:4f:6b:
01:cc:44:a5:63:28:43:aa:55:c3:aa:68:10:83:0f:
72:db:02:01:60:32:4e:4a:76:04:f5:97:13:c6:3e:
01:d2:3a:5d:cf:ee:e6:ef:9c:cf:c1:f1:56:ed:f9:
24:83:3a:ff:32:98:53:85:83:2b:9b:b7:e0:b3:30:
af:fe:a0:a4:3b:90:07:8f:a4:d8:9a:a6:5e:ae:1d:
86:0a:bb:2c:ec:2f:71:72:6f:b3:04:2a:28:0e:83:
4b:42:c9:e1:83:32:38:8e:44:8b:56:c7:18:c8:26:
f2:0d:a9:44:90:f2:8e:3c:c0:ab:6f:46:60:28:cc:
3a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:A6:CD:5E:BD:C1:92:F4:29:0B:88:B5:DF:37:19:14:5C:C9:38:DD
X509v3 Authority Key Identifier:
keyid:DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/4F18C63C2D3C11EE9A8F5732C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:5e0::/32
Signature Algorithm: sha256WithRSAEncryption
b1:ff:47:1f:fb:25:fa:27:0d:c5:4f:c1:a0:35:41:f9:2a:cf:
8e:62:61:ee:21:0e:22:d1:7d:a2:0e:11:80:11:85:d0:d5:9c:
28:5b:67:b2:e3:51:a2:f2:38:39:db:88:94:cd:b2:d3:74:a9:
9b:7a:0b:89:39:95:03:e5:1a:ac:92:ce:28:d0:cb:86:f4:b0:
dc:d2:1b:d7:81:0e:cc:0f:e8:cd:15:a5:8f:dd:ea:cd:48:31:
65:dc:49:bc:fa:7f:51:ce:93:1c:7e:47:22:7f:78:a7:a7:90:
db:e2:88:e0:ee:3e:56:3a:68:60:14:8c:8a:a1:1d:0d:3c:e3:
a2:25:08:dc:85:f4:f4:4b:2c:9f:b6:a4:75:2d:19:5e:eb:83:
61:4e:77:3a:a8:6a:37:85:07:a1:9f:16:31:68:63:75:aa:f7:
fb:89:79:49:b6:58:8a:b6:00:9d:e1:dc:e0:5b:27:d9:09:77:
a2:ad:8a:25:4e:eb:6f:5b:df:c9:56:32:6d:93:13:11:6f:d7:
2e:ef:67:23:80:79:2f:c4:ec:80:f0:1c:cf:5f:b6:98:ff:a4:
26:60:0c:32:89:47:1b:10:ce:75:3a:9e:ff:00:47:26:85:4f:
df:2a:ec:cb:93:fd:08:e9:07:f3:c4:f3:97:22:3c:a4:28:4b:
77:2e:87:c1
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC
QjRDMjExMC8GA1UEBRMoREMyM0E2OUVBMUVGQzFBMzc5NDkyQzEzRTlBQzE0N0M0
OUY1QUQwNDAeFw0yMzA3MjgxMTQ1NTVaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY0YzNhYTcyLTk4MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDS5OxfjiJ6mFVoeEFAxhS0cjwjnabb3sp8t66hObNJNg20e4Xj/9zIBA4vyVFU
BZ8SA2c+WaO4fVxWvsKlcCucMJxlkCAAQ6uC0ZUHoK/b2Cz4pOaara2hxgi0FKHV
NGJL7udxAkNlZMoFss74QhR+flvtbZnIdSTWT5ax4XhzNKk2z/RPawHMRKVjKEOq
VcOqaBCDD3LbAgFgMk5KdgT1lxPGPgHSOl3P7ubvnM/B8Vbt+SSDOv8ymFOFgyub
t+CzMK/+oKQ7kAePpNiapl6uHYYKuyzsL3Fyb7MEKigOg0tCyeGDMjiORItWxxjI
JvINqUSQ8o48wKtvRmAozDrFAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUX6bNXr3B
kvQpC4i13zcZFFzJON0wHwYDVR0jBBgwFoAU3COmnqHvwaN5SSwT6awUfEn1rQQw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCNEMyL0IxN0U5NUQ2MDM3
MDExRUU5QkI2MkMyRkM0RjlBRTAyLzNDT21ucUh2d2FONVNTd1Q2YXdVZkVuMXJR
US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvM0NPbW5xSHZ3YU41U1N3VDZhd1VmRW4xclFRLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
QjRDMi9CMTdFOTVENjAzNzAxMUVFOUJCNjJDMkZDNEY5QUUwMi80RjE4QzYzQzJE
M0MxMUVFOUE4RjU3MzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR
MA8wDQQCAAIwBwMFACQBBeAwDQYJKoZIhvcNAQELBQADggEBALH/Rx/7JfonDcVP
waA1Qfkqz45iYe4hDiLRfaIOEYARhdDVnChbZ7LjUaLyODnbiJTNstN0qZt6C4k5
lQPlGqySzijQy4b0sNzSG9eBDswP6M0VpY/d6s1IMWXcSbz6f1HOkxx+RyJ/eKen
kNviiODuPlY6aGAUjIqhHQ0846IlCNyF9PRLLJ+2pHUtGV7rg2FOdzqoajeFB6Gf
FjFoY3Wq9/uJeUm2WIq2AJ3h3OBbJ9kJd6KtiiVO629b38lWMm2TExFv1y7vZyOA
eS/E7IDwHM9ftpj/pCZgDDKJRxsQznU6nv8ARyaFT98q7MuT/QjpB/PE85ciPKQo
S3cuh8E=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:39 2024 by rpki-client on console-fra.rpki-client.org