Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/F4BDC2EEB0F111ED9671DC69C4F9AE02.roa
File: F4BDC2EEB0F111ED9671DC69C4F9AE02.roa (raw, json)
Hash identifier: FB80MvQnUQTm3Qtf/zb9USRrg8E92jtXgNRYcxT/ZYM=
Subject key identifier: A4:7B:33:E7:0A:B7:D2:CB:A0:79:03:12:CB:A6:E4:EC:40:07:1C:DC
Certificate issuer: /CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
Certificate serial: 0700
Authority key identifier: 3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/F4BDC2EEB0F111ED9671DC69C4F9AE02.roa
Signing time: Wed 31 Jan 2024 00:12:25 +0000
ROA not before: Wed 31 Jan 2024 00:12:25 +0000
ROA not after: Mon 31 Mar 2025 00:00:00 +0000
asID: 134143
IP address blocks: 202.148.152.0/21 maxlen: 24
203.147.240.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 09:53:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1792 (0x700)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CB7AB/serialNumber=3DE9D3DFF6E048FD908146502E4F08E456F3D9BC
Validity
Not Before: Jan 31 00:12:25 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=65b99069-f0b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:06:11:e0:fc:e3:4a:7b:0a:ef:70:1e:68:9e:
0a:29:20:d6:ae:5c:44:d6:a0:bc:70:fb:27:58:41:
bf:d4:82:d3:a8:28:34:05:a9:f5:10:bc:d0:38:22:
67:71:04:fb:ac:65:89:27:97:29:b5:d0:26:f7:30:
23:d8:b2:d2:43:d7:63:49:1f:a2:b8:c2:de:51:41:
7b:ae:f2:b1:a9:b1:94:a0:cf:04:7f:af:eb:d8:ce:
ea:1d:7c:49:f9:9c:14:a9:0d:6b:ae:d5:72:4a:9c:
c7:b1:bc:0e:1e:a6:8d:a6:e6:b0:4e:95:99:ec:a0:
1d:68:68:3b:f6:9e:e6:c2:34:7b:11:f7:a1:33:df:
c3:2d:e7:71:1d:2c:c7:b9:49:77:c2:ea:75:94:40:
37:70:8d:3a:57:25:72:f6:3e:8c:9e:dd:85:9c:0f:
2a:05:86:9f:54:39:0a:62:11:9c:21:0d:c6:0e:df:
47:9f:c8:4c:6c:80:99:8b:ff:d9:c7:3e:65:0b:9b:
ce:10:0b:50:79:a4:fb:96:78:6c:bc:a6:31:28:ac:
52:e9:01:ab:04:cf:ca:79:fe:b7:0e:5d:99:04:b8:
85:a8:e3:40:ee:b1:d5:3a:d0:5d:23:bb:6b:99:ed:
c5:06:d6:9e:b6:b7:c0:4b:d9:40:37:c7:2f:57:87:
1c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:7B:33:E7:0A:B7:D2:CB:A0:79:03:12:CB:A6:E4:EC:40:07:1C:DC
X509v3 Authority Key Identifier:
keyid:3D:E9:D3:DF:F6:E0:48:FD:90:81:46:50:2E:4F:08:E4:56:F3:D9:BC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/PenT3_bgSP2QgUZQLk8I5Fbz2bw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PenT3_bgSP2QgUZQLk8I5Fbz2bw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB7AB/56786568400911EBA374225BC4F9AE02/F4BDC2EEB0F111ED9671DC69C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.148.152.0/21
203.147.240.0/22
Signature Algorithm: sha256WithRSAEncryption
01:3c:41:10:9f:93:8e:1b:e9:b9:79:d6:ed:1d:0b:44:e3:33:
95:d9:90:98:d2:93:43:99:51:7d:fa:c0:56:3b:74:2c:de:4c:
5c:d9:1e:52:96:c8:30:da:6f:ef:eb:e5:bd:a0:b1:a4:aa:f7:
06:3d:0a:ba:20:80:5e:be:5d:26:6d:4a:1b:11:aa:b9:da:4a:
35:db:ef:cc:72:6d:89:4d:18:87:50:de:03:cf:30:53:43:16:
25:11:95:af:8c:15:81:26:46:06:ac:af:dd:c3:3f:ae:e3:6a:
3b:d8:d2:a8:f8:ce:f1:c8:99:ef:89:60:55:39:a7:23:3b:e2:
34:46:56:b7:ba:c3:98:27:86:5b:d2:9d:3e:1b:9b:9c:bd:46:
d6:f4:09:3b:05:d0:fe:5a:4e:a3:3a:5c:42:e7:a9:f9:3b:37:
2e:71:46:e5:4e:5f:fb:ad:38:d5:da:91:2b:c8:9a:14:fc:c0:
90:c7:55:75:67:c1:dc:44:48:05:1d:30:41:57:80:2b:60:aa:
33:32:51:03:59:00:de:27:3d:22:88:c0:4d:78:9a:c5:2d:c0:
b9:f5:ed:64:15:6a:a9:4c:1a:dc:6b:13:6e:05:37:a4:6b:fe:
40:5b:b3:70:a4:41:1a:f5:89:07:79:ee:ff:c5:15:b4:a2:31:
57:a1:d6:a9
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgICBwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Q0I3QUIxMTAvBgNVBAUTKDNERTlEM0RGRjZFMDQ4RkQ5MDgxNDY1MDJFNEYwOEU0
NTZGM0Q5QkMwHhcNMjQwMTMxMDAxMjI1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NWI5OTA2OS1mMGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxAYR4PzjSnsK73AeaJ4KKSDWrlxE1qC8cPsnWEG/1ILTqCg0Ban1ELzQOCJn
cQT7rGWJJ5cptdAm9zAj2LLSQ9djSR+iuMLeUUF7rvKxqbGUoM8Ef6/r2M7qHXxJ
+ZwUqQ1rrtVySpzHsbwOHqaNpuawTpWZ7KAdaGg79p7mwjR7EfehM9/DLedxHSzH
uUl3wup1lEA3cI06VyVy9j6Mnt2FnA8qBYafVDkKYhGcIQ3GDt9Hn8hMbICZi//Z
xz5lC5vOEAtQeaT7lnhsvKYxKKxS6QGrBM/Kef63Dl2ZBLiFqONA7rHVOtBdI7tr
me3FBtaetrfAS9lAN8cvV4cc9QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKR7M+cK
t9LLoHkDEsum5OxABxzcMB8GA1UdIwQYMBaAFD3p09/24Ej9kIFGUC5PCORW89m8
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjdBQi81Njc4NjU2ODQw
MDkxMUVCQTM3NDIyNUJDNEY5QUUwMi9QZW5UM19iZ1NQMlFnVVpRTGs4STVGYnoy
YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1BlblQzX2JnU1AyUWdVWlFMazhJNUZiejJidy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Q0I3QUIvNTY3ODY1Njg0MDA5MTFFQkEzNzQyMjVCQzRGOUFFMDIvRjRCREMyRUVC
MEYxMTFFRDk2NzFEQzY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E
FjAUMBIEAgABMAwDBAPKlJgDBALLk/AwDQYJKoZIhvcNAQELBQADggEBAAE8QRCf
k44b6bl51u0dC0TjM5XZkJjSk0OZUX36wFY7dCzeTFzZHlKWyDDab+/r5b2gsaSq
9wY9CroggF6+XSZtShsRqrnaSjXb78xybYlNGIdQ3gPPMFNDFiURla+MFYEmRgas
r93DP67jajvY0qj4zvHIme+JYFU5pyM74jRGVre6w5gnhlvSnT4bm5y9Rtb0CTsF
0P5aTqM6XELnqfk7Ny5xRuVOX/utONXakSvImhT8wJDHVXVnwdxESAUdMEFXgCtg
qjMyUQNZAN4nPSKIwE14msUtwLn17WQVaqlMGtxrE24FN6Rr/kBbs3CkQRr1iQd5
7v/FFbSiMVeh1qk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:41 2024 by rpki-client on console-fra.rpki-client.org