Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/7382810EDE7011ED852DB613C4F9AE02.roa
File: 7382810EDE7011ED852DB613C4F9AE02.roa (raw, json)
Hash identifier: p023hQGAzxf8a4HiFyLGBsDAN/qCznswCYv4lPqj4aI=
Subject key identifier: B9:BB:9D:B4:AD:1D:02:6C:0B:06:9A:1F:62:66:01:08:E5:9D:16:BC
Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268
Certificate serial: 3437
Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/7382810EDE7011ED852DB613C4F9AE02.roa
Signing time: Wed 19 Apr 2023 05:10:07 +0000
ROA not before: Wed 19 Apr 2023 05:10:07 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 131007
IP address blocks: 202.125.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jul 2023 01:33:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13367 (0x3437)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268
Validity
Not Before: Apr 19 05:10:07 2023 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=643f77af-27e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:de:30:3c:59:f1:40:47:09:4b:95:46:4e:bd:
a2:5d:8e:74:5f:f7:ab:f3:33:c8:5b:6e:25:fd:59:
c9:65:3d:ea:26:30:f3:a4:af:5b:5e:9b:72:84:91:
b5:25:1c:df:8d:f4:bc:a3:e1:aa:fe:2c:ac:84:78:
8d:47:1b:14:62:3b:79:81:34:e3:ae:c2:29:6a:04:
c4:d8:8e:a8:86:3c:66:98:64:ec:70:1f:68:40:0e:
57:46:ee:21:df:26:5c:19:28:74:ae:22:3b:94:7c:
42:59:af:70:a9:84:85:1a:01:49:86:fc:0a:b7:0f:
a7:c5:6b:84:09:40:6d:81:a4:9c:ad:01:6f:fd:a5:
07:31:56:5e:8b:99:3a:98:98:5b:9b:de:62:7f:aa:
d9:ec:58:2e:8b:92:6d:d3:3b:37:3b:a6:dd:24:18:
12:62:24:99:a1:f7:31:0e:8c:b6:28:49:08:b0:63:
7b:db:98:43:bf:d9:ad:0c:7c:53:e0:7e:d1:53:aa:
3f:67:01:06:ec:41:6c:eb:e7:af:14:7b:4e:53:c2:
a6:33:03:d3:ce:c6:a5:63:a1:1b:33:f2:ba:12:4f:
ff:e7:c1:e5:6f:78:52:72:de:16:cc:57:3e:0e:62:
36:ab:65:12:c8:5b:f8:0d:6f:22:9a:be:5e:46:8d:
94:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:BB:9D:B4:AD:1D:02:6C:0B:06:9A:1F:62:66:01:08:E5:9D:16:BC
X509v3 Authority Key Identifier:
keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/7382810EDE7011ED852DB613C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.125.97.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:b4:b2:07:a2:bd:46:25:82:55:e6:3b:61:ea:46:b1:2c:f7:
80:97:b0:08:bc:1b:7d:9f:bb:94:71:0a:6e:78:fb:df:38:28:
8f:04:57:e2:13:a1:07:1c:bc:55:1f:97:ac:02:17:8a:2d:fb:
b9:a3:4c:5f:8c:61:6d:8d:46:3c:d7:32:66:45:ec:15:a2:64:
9b:ae:1c:20:96:1f:ae:f0:49:ea:3f:a4:35:7d:49:60:9d:5c:
e3:77:df:56:e7:4a:bf:24:92:95:16:19:18:3b:6e:4b:d7:e6:
f1:28:38:1c:50:64:b9:cf:ad:98:b9:db:bd:81:f9:a3:29:83:
52:93:0a:b2:8a:3f:a7:28:d6:67:aa:16:f3:43:55:85:8c:77:
5d:69:dc:d5:bb:25:ff:54:7e:d7:68:a6:b0:25:29:31:d3:2b:
1c:67:f9:6a:0d:85:f8:ba:40:20:ce:5a:3c:3d:a7:85:a6:3a:
e3:3f:44:86:72:94:11:ef:07:d8:ce:1c:32:90:8f:b8:6e:44:
ba:92:c9:10:f6:d6:17:8b:da:84:46:94:64:88:cb:97:75:94:
52:bf:d5:67:3b:e6:37:0f:85:6f:01:45:eb:35:7c:21:96:d2:
68:95:99:13:ad:e0:ba:05:4a:7d:c1:ae:d1:e9:55:cf:f2:d5:
8a:9d:52:c5
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICNDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2
OTYwQkUyNjgwHhcNMjMwNDE5MDUxMDA3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDNmNzdhZi0yN2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEApd4wPFnxQEcJS5VGTr2iXY50X/er8zPIW24l/VnJZT3qJjDzpK9bXptyhJG1
JRzfjfS8o+Gq/iyshHiNRxsUYjt5gTTjrsIpagTE2I6ohjxmmGTscB9oQA5XRu4h
3yZcGSh0riI7lHxCWa9wqYSFGgFJhvwKtw+nxWuECUBtgaScrQFv/aUHMVZei5k6
mJhbm95if6rZ7Fgui5Jt0zs3O6bdJBgSYiSZofcxDoy2KEkIsGN725hDv9mtDHxT
4H7RU6o/ZwEG7EFs6+evFHtOU8KmMwPTzsalY6EbM/K6Ek//58Hlb3hSct4WzFc+
DmI2q2USyFv4DW8imr5eRo2UJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLm7nbSt
HQJsCwaaH2JmAQjlnRa8MB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE
NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0
bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvNzM4MjgxMEVE
RTcwMTFFRDg1MkRCNjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADKfWEwDQYJKoZIhvcNAQELBQADggEBADu0sgeivUYlglXm
O2HqRrEs94CXsAi8G32fu5RxCm54+984KI8EV+IToQccvFUfl6wCF4ot+7mjTF+M
YW2NRjzXMmZF7BWiZJuuHCCWH67wSeo/pDV9SWCdXON331bnSr8kkpUWGRg7bkvX
5vEoOBxQZLnPrZi5272B+aMpg1KTCrKKP6co1meqFvNDVYWMd11p3NW7Jf9Uftdo
prAlKTHTKxxn+WoNhfi6QCDOWjw9p4WmOuM/RIZylBHvB9jOHDKQj7huRLqSyRD2
1heL2oRGlGSIy5d1lFK/1Wc75jcPhW8BRes1fCGW0miVmROt4LoFSn3BrtHpVc/y
1YqdUsU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:32 2024 by rpki-client on console-ams.rpki-client.org