Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63EA/50A4289E95FF11EEA6A4F70AC4F9AE02/336C470E074A11EF89A6A085C4F9AE02.roa
File: 336C470E074A11EF89A6A085C4F9AE02.roa (raw, json)
Hash identifier: jJw1sphUKWkJinhfo0wxcdjzuobsW0oX28J88lUIpU0=
Subject key identifier: 97:CC:F0:69:90:06:E7:45:FB:1A:E8:03:CA:6F:15:46:54:2D:EE:4E
Certificate issuer: /CN=A91D63EA/serialNumber=5E7DD05A9C1BE04444ACE03FE4A92026804D4B2A
Certificate serial: 7B
Authority key identifier: 5E:7D:D0:5A:9C:1B:E0:44:44:AC:E0:3F:E4:A9:20:26:80:4D:4B:2A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xn3QWpwb4ERErOA_5KkgJoBNSyo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D63EA/50A4289E95FF11EEA6A4F70AC4F9AE02/336C470E074A11EF89A6A085C4F9AE02.roa
Signing time: Mon 15 Jul 2024 09:17:31 +0000
ROA not before: Mon 15 Jul 2024 09:17:31 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 149283
IP address blocks: 113.192.46.0/24 maxlen: 24
113.192.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Aug 2024 22:49:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123 (0x7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D63EA/serialNumber=5E7DD05A9C1BE04444ACE03FE4A92026804D4B2A
Validity
Not Before: Jul 15 09:17:31 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=6694e92a-79ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d5:40:f7:f2:f5:cf:84:f2:b5:55:a1:ff:05:
8b:b2:6d:6d:66:76:2b:2a:7b:c7:3d:ec:7c:2d:d2:
37:69:51:d1:01:d8:0b:73:ed:b3:dd:13:00:71:b0:
6a:99:7d:05:e0:5f:5a:7e:18:59:0b:ea:b4:d7:6c:
e4:bd:7d:a7:44:eb:f9:37:46:07:6d:15:d0:ec:c8:
9d:ac:27:bc:3c:8a:38:e3:97:47:76:a8:1c:5a:f8:
c5:27:de:cc:d9:62:8c:a4:87:1a:0a:87:97:9f:14:
b9:6c:b2:9a:bb:63:de:8e:49:3b:46:b7:88:4e:9b:
a2:9d:9a:7a:a7:ea:0c:d7:4f:6c:8a:4d:2e:ee:19:
e5:63:49:10:e7:2f:da:43:5e:35:1e:5a:39:57:4a:
5b:ea:2d:f7:46:4c:63:37:67:8d:f5:e3:24:21:f5:
dd:45:8b:4c:33:8e:64:75:bf:6f:4a:40:da:38:81:
81:76:c0:18:49:25:6c:c9:e5:7b:14:60:75:48:f3:
3c:3b:84:aa:e6:7e:f2:2b:6d:4e:69:a2:c6:da:90:
09:53:df:48:58:ea:4b:16:fa:5e:ec:86:62:fb:9b:
b5:b4:5a:e6:2b:c6:91:78:40:6a:c4:b2:1b:c6:ad:
5b:90:c6:71:9a:33:d7:d9:26:ec:fe:6b:03:fd:fe:
26:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:CC:F0:69:90:06:E7:45:FB:1A:E8:03:CA:6F:15:46:54:2D:EE:4E
X509v3 Authority Key Identifier:
keyid:5E:7D:D0:5A:9C:1B:E0:44:44:AC:E0:3F:E4:A9:20:26:80:4D:4B:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D63EA/50A4289E95FF11EEA6A4F70AC4F9AE02/Xn3QWpwb4ERErOA_5KkgJoBNSyo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xn3QWpwb4ERErOA_5KkgJoBNSyo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63EA/50A4289E95FF11EEA6A4F70AC4F9AE02/336C470E074A11EF89A6A085C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.192.46.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:58:68:03:bf:78:45:43:6e:40:28:d4:6d:01:d5:98:84:95:
47:f3:8e:19:b9:44:16:56:af:79:f8:69:89:a0:8e:c9:3d:a7:
4a:6c:1b:40:f6:94:9c:26:46:17:21:8a:0e:63:5d:ca:55:ce:
0b:4e:03:7a:b4:ed:64:e9:f3:8b:7d:fc:b1:e0:15:b4:29:6e:
1e:e2:a2:4e:85:04:b2:02:aa:93:c4:2e:93:26:17:12:77:84:
06:24:11:a4:fa:f1:93:8f:24:ff:67:3e:0f:b1:08:b7:55:a7:
5b:13:82:ee:42:c7:d5:f8:ee:c2:c5:3c:3f:cc:e9:dd:c3:fb:
bf:9b:f2:e4:15:28:6f:54:dc:5d:8d:76:83:49:8e:d4:e7:04:
db:07:0a:1e:77:17:ca:78:01:23:5f:61:26:c1:31:b9:fe:6b:
83:70:fc:38:90:a8:01:12:f1:4d:44:55:60:b1:c7:74:72:24:
34:17:73:9a:31:a2:0f:cc:c6:2b:9f:00:8c:0b:3f:ad:56:86:
67:1b:72:eb:77:6f:1a:7f:ad:c6:eb:62:99:ec:b3:9f:c0:79:
9a:1c:b7:56:64:32:29:61:22:99:e2:58:71:65:21:0e:90:0d:
45:52:7b:5b:6b:5b:74:bc:f6:dd:30:c0:f8:4b:fa:f5:33:5b:
91:79:cb:db
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE
NjNFQTExMC8GA1UEBRMoNUU3REQwNUE5QzFCRTA0NDQ0QUNFMDNGRTRBOTIwMjY4
MDRENEIyQTAeFw0yNDA3MTUwOTE3MzFaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV
BAMTDTY2OTRlOTJhLTc5Y2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCq1UD38vXPhPK1VaH/BYuybW1mdisqe8c97Hwt0jdpUdEB2Atz7bPdEwBxsGqZ
fQXgX1p+GFkL6rTXbOS9fadE6/k3RgdtFdDsyJ2sJ7w8ijjjl0d2qBxa+MUn3szZ
YoykhxoKh5efFLlsspq7Y96OSTtGt4hOm6Kdmnqn6gzXT2yKTS7uGeVjSRDnL9pD
XjUeWjlXSlvqLfdGTGM3Z4314yQh9d1Fi0wzjmR1v29KQNo4gYF2wBhJJWzJ5XsU
YHVI8zw7hKrmfvIrbU5posbakAlT30hY6ksW+l7shmL7m7W0WuYrxpF4QGrEshvG
rVuQxnGaM9fZJuz+awP9/ibfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUl8zwaZAG
50X7GugDym8VRlQt7k4wHwYDVR0jBBgwFoAUXn3QWpwb4ERErOA/5KkgJoBNSyow
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2M0VBLzUwQTQyODlFOTVG
RjExRUVBNkE0RjcwQUM0RjlBRTAyL1huM1FXcHdiNEVSRXJPQV81S2tnSm9CTlN5
by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvWG4zUVdwd2I0RVJFck9BXzVLa2dKb0JOU3lvLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE
NjNFQS81MEE0Mjg5RTk1RkYxMUVFQTZBNEY3MEFDNEY5QUUwMi8zMzZDNDcwRTA3
NEExMUVGODlBNkEwODVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAXHALjANBgkqhkiG9w0BAQsFAAOCAQEAbFhoA794RUNuQCjU
bQHVmISVR/OOGblEFlavefhpiaCOyT2nSmwbQPaUnCZGFyGKDmNdylXOC04DerTt
ZOnzi338seAVtCluHuKiToUEsgKqk8QukyYXEneEBiQRpPrxk48k/2c+D7EIt1Wn
WxOC7kLH1fjuwsU8P8zp3cP7v5vy5BUob1TcXY12g0mO1OcE2wcKHncXyngBI19h
JsExuf5rg3D8OJCoARLxTURVYLHHdHIkNBdzmjGiD8zGK58AjAs/rVaGZxty63dv
Gn+txutimeyzn8B5mhy3VmQyKWEimeJYcWUhDpANRVJ7W2tbdLz23TDA+Ev69TNb
kXnL2w==
-----END CERTIFICATE-----
Generated at Sat Aug 31 00:10:38 2024 by rpki-client on console-ams.rpki-client.org