Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/C4C1BD2257DE11EE8DBFD830C4F9AE02.roa
File: C4C1BD2257DE11EE8DBFD830C4F9AE02.roa (raw, json)
Hash identifier: MrZ0dzYRizeq8tml4LsZ9Rk4mZFnxpQbFGck+Rzqfsc=
Subject key identifier: 86:C3:A9:C4:FD:FC:62:E7:D3:ED:EA:81:23:07:CF:7F:1E:6B:BC:C0
Certificate issuer: /CN=A91C0E6A/serialNumber=F5459CBA31F933F9073B514C9CBBEC34F6ED2E4A
Certificate serial: B8
Authority key identifier: F5:45:9C:BA:31:F9:33:F9:07:3B:51:4C:9C:BB:EC:34:F6:ED:2E:4A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UWcujH5M_kHO1FMnLvsNPbtLko.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/C4C1BD2257DE11EE8DBFD830C4F9AE02.roa
Signing time: Mon 13 May 2024 15:57:47 +0000
ROA not before: Mon 13 May 2024 15:57:47 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 9009
IP address blocks: 103.130.238.0/24 maxlen: 24
103.130.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 May 2024 15:11:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184 (0xb8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C0E6A/serialNumber=F5459CBA31F933F9073B514C9CBBEC34F6ED2E4A
Validity
Not Before: May 13 15:57:47 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=6642387a-d0f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ee:38:00:35:7a:a0:c7:c8:cd:d6:49:7c:d8:
16:7b:a6:31:d3:8b:3f:6b:9a:ae:5d:90:4c:b1:77:
a4:b5:8d:92:62:d7:73:1f:76:38:06:96:79:c7:17:
df:a3:6e:42:5f:25:ab:eb:3e:b4:06:6e:84:fb:69:
df:87:04:1d:cc:ca:27:70:08:39:bf:d7:42:b3:8a:
fa:19:97:06:61:b5:2d:bf:10:d5:d9:95:48:89:63:
77:6b:2b:ac:d8:6a:d2:21:1b:37:5d:2c:d0:73:4e:
79:e7:36:30:ee:26:ae:b6:b3:83:c8:e4:8b:de:99:
cc:c6:6c:bc:11:c3:88:01:8c:08:ad:0b:8f:9d:65:
2a:b1:87:a7:d5:e7:eb:c1:55:fd:97:97:08:34:d6:
4f:83:4c:b2:7f:55:39:e4:31:10:a6:7e:22:cb:5d:
fb:ad:ea:75:b3:c4:d3:78:ed:c9:96:b7:7b:4d:89:
d1:b8:27:b4:6b:3d:6e:9a:09:23:44:b0:d7:14:fa:
f1:25:8a:f3:53:3e:d1:a5:3a:0c:bd:b4:c6:74:8e:
17:00:d4:3b:0f:a1:ac:ad:01:cf:92:96:f0:aa:ca:
ab:93:94:60:7f:d3:cf:9a:f9:f8:ba:20:bf:32:89:
37:52:51:7e:85:48:07:5c:c7:b3:0c:aa:64:91:68:
a1:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:C3:A9:C4:FD:FC:62:E7:D3:ED:EA:81:23:07:CF:7F:1E:6B:BC:C0
X509v3 Authority Key Identifier:
keyid:F5:45:9C:BA:31:F9:33:F9:07:3B:51:4C:9C:BB:EC:34:F6:ED:2E:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/9UWcujH5M_kHO1FMnLvsNPbtLko.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UWcujH5M_kHO1FMnLvsNPbtLko.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/C4C1BD2257DE11EE8DBFD830C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.238.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:1a:98:76:7b:3b:dd:9c:1c:d6:bf:ae:79:f4:48:f3:0d:a1:
a3:05:d1:8a:fd:6a:b3:f6:11:51:a9:df:38:d8:46:ad:c5:da:
e9:f7:7d:05:2a:18:cb:82:e3:6f:85:84:b1:01:44:20:d5:b4:
55:36:d2:b6:9f:ae:0a:08:9d:08:21:f7:db:0c:45:64:0c:13:
4d:27:23:8f:d7:34:96:fc:02:f0:3e:c6:c5:d7:25:c7:fd:3b:
e0:0d:9d:f2:cb:20:30:55:e1:7b:a3:54:6f:c5:dd:fc:c3:81:
3c:55:15:db:1d:aa:ef:a2:3d:74:ab:80:77:82:cb:c7:f3:50:
00:b9:ae:85:7a:de:88:46:68:cd:d7:14:15:46:a5:d9:9c:fb:
78:0f:f3:a5:0e:20:be:55:7d:f0:a3:58:4a:b7:3b:62:62:59:
ab:d6:1a:ab:48:40:5b:65:8a:b9:da:08:37:46:60:14:89:92:
10:13:96:76:3c:98:19:3e:d2:c2:89:b1:d2:cf:4b:78:e9:52:
9b:64:4b:bb:8c:0f:6a:b3:d7:d1:81:0e:6d:b8:19:fa:40:68:
bb:4e:78:ba:47:70:85:1a:8f:06:31:a1:2d:53:71:6a:f9:26:
07:75:fe:25:a3:28:4c:50:c2:64:9d:b7:85:2a:0e:4d:2d:58:
86:cf:6b:ea
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QzBFNkExMTAvBgNVBAUTKEY1NDU5Q0JBMzFGOTMzRjkwNzNCNTE0QzlDQkJFQzM0
RjZFRDJFNEEwHhcNMjQwNTEzMTU1NzQ3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD
VQQDEw02NjQyMzg3YS1kMGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwO44ADV6oMfIzdZJfNgWe6Yx04s/a5quXZBMsXektY2SYtdzH3Y4BpZ5xxff
o25CXyWr6z60Bm6E+2nfhwQdzMoncAg5v9dCs4r6GZcGYbUtvxDV2ZVIiWN3ayus
2GrSIRs3XSzQc0555zYw7iautrODyOSL3pnMxmy8EcOIAYwIrQuPnWUqsYen1efr
wVX9l5cINNZPg0yyf1U55DEQpn4iy137rep1s8TTeO3Jlrd7TYnRuCe0az1umgkj
RLDXFPrxJYrzUz7RpToMvbTGdI4XANQ7D6GsrQHPkpbwqsqrk5Rgf9PPmvn4uiC/
Mok3UlF+hUgHXMezDKpkkWihVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIbDqcT9
/GLn0+3qgSMHz38ea7zAMB8GA1UdIwQYMBaAFPVFnLox+TP5BztRTJy77DT27S5K
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU2QS80QzI4MUJCRTEx
QTYxMUVFQjMzNDY5MjZDNEY5QUUwMi85VVdjdWpINU1fa0hPMUZNbkx2c05QYnRM
a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzlVV2N1akg1TV9rSE8xRk1uTHZzTlBidExrby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QzBFNkEvNEMyODFCQkUxMUE2MTFFRUIzMzQ2OTI2QzRGOUFFMDIvQzRDMUJEMjI1
N0RFMTFFRThEQkZEODMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFngu4wDQYJKoZIhvcNAQELBQADggEBAD4amHZ7O92cHNa/
rnn0SPMNoaMF0Yr9arP2EVGp3zjYRq3F2un3fQUqGMuC42+FhLEBRCDVtFU20raf
rgoInQgh99sMRWQME00nI4/XNJb8AvA+xsXXJcf9O+ANnfLLIDBV4XujVG/F3fzD
gTxVFdsdqu+iPXSrgHeCy8fzUAC5roV63ohGaM3XFBVGpdmc+3gP86UOIL5VffCj
WEq3O2JiWavWGqtIQFtlirnaCDdGYBSJkhATlnY8mBk+0sKJsdLPS3jpUptkS7uM
D2qz19GBDm24GfpAaLtOeLpHcIUajwYxoS1TcWr5Jgd1/iWjKExQwmSdt4UqDk0t
WIbPa+o=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:39 2024 by rpki-client on console-fra.rpki-client.org