Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/8BB57632478411EEB238B76AC4F9AE02.roa
File: 8BB57632478411EEB238B76AC4F9AE02.roa (raw, json)
Hash identifier: Dvj49ZTXkqr9az1Erui+uPOfVwSQI5vwDVX4cEuI0XM=
Subject key identifier: 89:5A:04:0B:D7:F3:94:AE:85:74:F1:29:02:5C:B1:F9:F7:85:21:64
Certificate issuer: /CN=A91CD5B5/serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179
Certificate serial: C9
Authority key identifier: A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/8BB57632478411EEB238B76AC4F9AE02.roa
Signing time: Wed 03 Jul 2024 05:46:50 +0000
ROA not before: Wed 03 Jul 2024 05:46:50 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 151336
IP address blocks: 103.204.2.0/23 maxlen: 24
2400:ff60::/32 maxlen: 33
Validation: Failed, certificate revoked on Tue 05 Nov 2024 01:50:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201 (0xc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91CD5B5/serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179
Validity
Not Before: Jul 3 05:46:50 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=6684e5c9-3113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:89:2a:d2:5b:5b:6d:f3:7f:05:fe:2a:6b:b6:
34:a6:93:e5:a0:8d:c0:52:87:2f:d5:57:9f:4f:8e:
b9:c9:75:b9:f6:63:4d:53:a8:67:ed:bb:da:43:9a:
34:34:3c:c9:60:43:97:45:00:32:f2:41:68:6b:70:
82:50:fc:13:29:db:a3:ff:3e:51:68:04:81:a4:c8:
7c:9a:4d:d6:30:6b:7f:42:88:cb:7e:70:ce:d8:9c:
14:d8:b2:b2:28:10:00:e3:ff:ef:bd:0b:14:83:46:
e8:63:69:15:d8:5a:17:82:53:d7:dd:5d:3e:6b:c8:
a9:81:fe:ac:d9:72:bd:5b:29:cb:90:a7:a3:de:db:
c3:d3:92:9b:f5:32:2b:41:98:7a:3e:52:48:cf:dd:
d0:49:2e:59:61:38:16:88:a4:7e:5d:6f:ac:d9:4a:
e7:94:7f:b4:21:6c:69:a9:12:72:c8:33:dd:aa:55:
aa:ee:d1:d8:91:85:3c:00:56:89:01:9a:44:6c:86:
f8:6b:b4:02:89:ec:cd:ec:b4:bd:01:75:e4:41:e3:
e7:63:38:82:53:47:74:8f:bc:a8:aa:2c:b0:80:f3:
fd:e2:82:c0:c2:a4:65:c8:4c:78:15:80:34:53:52:
c5:98:39:f5:b7:f5:3c:46:3c:81:48:e3:06:a4:07:
73:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:5A:04:0B:D7:F3:94:AE:85:74:F1:29:02:5C:B1:F9:F7:85:21:64
X509v3 Authority Key Identifier:
keyid:A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/8BB57632478411EEB238B76AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.204.2.0/23
IPv6:
2400:ff60::/32
Signature Algorithm: sha256WithRSAEncryption
69:21:5d:7a:a6:eb:f7:fa:62:64:bd:2b:59:ec:3e:be:13:3a:
e0:03:08:4a:5e:fe:e3:60:4c:cf:71:5a:c7:da:ed:11:98:e6:
c1:6b:74:77:ed:4d:a6:29:84:c7:e5:54:17:81:2e:bf:fa:3c:
a0:1f:90:be:45:b5:37:47:a0:24:39:99:e8:b7:56:cd:80:dc:
a3:2b:a2:04:ab:d5:bc:fc:46:81:8c:43:cb:91:37:43:9a:84:
a1:06:0a:56:02:15:75:e5:a8:3a:5f:9f:1e:8d:c8:01:70:f6:
2b:d5:58:69:d4:c1:8b:c3:f4:b6:ca:da:13:ac:15:85:04:cd:
af:2a:34:23:87:9c:ad:38:4f:d3:61:f2:05:a8:fe:47:84:3c:
ce:bf:c1:4c:09:c1:19:dd:45:29:3e:19:ba:8e:fe:d1:36:6d:
d2:26:0a:9d:08:c7:e0:7f:d2:d8:4d:14:93:c3:a4:57:42:02:
ae:f9:1b:ca:81:8c:a0:e6:fa:4d:2e:84:9e:32:96:06:3b:f6:
61:23:56:b9:26:e0:b3:fa:e2:22:ae:a9:b9:fd:44:a4:05:c4:
0e:1a:8b:53:d3:b5:ec:7c:de:7e:76:9e:09:0e:c6:99:2b:54:
e1:cc:89:44:78:68:6f:5e:3e:62:e4:09:05:c1:e0:28:94:88:
bf:2a:83:82
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Q0Q1QjUxMTAvBgNVBAUTKEE1NTBFRTk5NDQyODJGQ0ZDMzg0QjA4MkJGRkE4OEY4
NkRCMDQxNzkwHhcNMjQwNzAzMDU0NjUwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02Njg0ZTVjOS0zMTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA6okq0ltbbfN/Bf4qa7Y0ppPloI3AUocv1VefT465yXW59mNNU6hn7bvaQ5o0
NDzJYEOXRQAy8kFoa3CCUPwTKduj/z5RaASBpMh8mk3WMGt/QojLfnDO2JwU2LKy
KBAA4//vvQsUg0boY2kV2FoXglPX3V0+a8ipgf6s2XK9WynLkKej3tvD05Kb9TIr
QZh6PlJIz93QSS5ZYTgWiKR+XW+s2UrnlH+0IWxpqRJyyDPdqlWq7tHYkYU8AFaJ
AZpEbIb4a7QCiezN7LS9AXXkQePnYziCU0d0j7yoqiywgPP94oLAwqRlyEx4FYA0
U1LFmDn1t/U8RjyBSOMGpAdzWwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIlaBAvX
85SuhXTxKQJcsfn3hSFkMB8GA1UdIwQYMBaAFKVQ7plEKC/Pw4Swgr/6iPhtsEF5
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDVCNS9BNDZCOTkxMjE2
NEQxMUVFOTY4NTg1MzRDNEY5QUUwMi9wVkR1bVVRb0w4X0RoTENDdl9xSS1HMndR
WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3BWRHVtVVFvTDhfRGhMQ0N2X3FJLUcyd1FYay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Q0Q1QjUvQTQ2Qjk5MTIxNjREMTFFRTk2ODU4NTM0QzRGOUFFMDIvOEJCNTc2MzI0
Nzg0MTFFRUIyMzhCNzZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E
HzAdMAwEAgABMAYDBAFnzAIwDQQCAAIwBwMFACQA/2AwDQYJKoZIhvcNAQELBQAD
ggEBAGkhXXqm6/f6YmS9K1nsPr4TOuADCEpe/uNgTM9xWsfa7RGY5sFrdHftTaYp
hMflVBeBLr/6PKAfkL5FtTdHoCQ5mei3Vs2A3KMrogSr1bz8RoGMQ8uRN0OahKEG
ClYCFXXlqDpfnx6NyAFw9ivVWGnUwYvD9LbK2hOsFYUEza8qNCOHnK04T9Nh8gWo
/keEPM6/wUwJwRndRSk+GbqO/tE2bdImCp0Ix+B/0thNFJPDpFdCAq75G8qBjKDm
+k0uhJ4ylgY79mEjVrkm4LP64iKuqbn9RKQFxA4ai1PTtex83n52ngkOxpkrVOHM
iUR4aG9ePmLkCQXB4CiUiL8qg4I=
-----END CERTIFICATE-----
Generated at Tue Nov 5 06:48:41 2024 by rpki-client on console-fra.rpki-client.org