Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/1272A1BE370511EC8309D965C4F9AE02.roa
File: 1272A1BE370511EC8309D965C4F9AE02.roa (raw, json)
Hash identifier: YNnk96blRqn4E7ZNK3+SyeWFDfS0OyRWkt831KtjUB0=
Subject key identifier: 96:48:E7:16:B4:7E:CF:7E:DD:18:E8:9E:89:20:AD:73:61:A2:C9:D8
Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Certificate serial: 1639
Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/1272A1BE370511EC8309D965C4F9AE02.roa
Signing time: Thu 16 Feb 2023 05:04:53 +0000
ROA not before: Thu 16 Feb 2023 05:04:53 +0000
ROA not after: Wed 01 May 2024 00:00:00 +0000
asID: 136994
IP address blocks: 112.213.192.0/20 maxlen: 20
112.213.192.0/24 maxlen: 24
112.213.193.0/24 maxlen: 24
112.213.194.0/24 maxlen: 24
112.213.195.0/24 maxlen: 24
112.213.196.0/24 maxlen: 24
112.213.197.0/24 maxlen: 24
112.213.198.0/24 maxlen: 24
112.213.199.0/24 maxlen: 24
112.213.200.0/24 maxlen: 24
112.213.201.0/24 maxlen: 24
112.213.202.0/24 maxlen: 24
112.213.203.0/24 maxlen: 24
112.213.204.0/24 maxlen: 24
112.213.205.0/24 maxlen: 24
112.213.206.0/24 maxlen: 24
112.213.207.0/24 maxlen: 24
112.213.208.0/20 maxlen: 20
112.213.208.0/24 maxlen: 24
112.213.209.0/24 maxlen: 24
112.213.210.0/24 maxlen: 24
112.213.211.0/24 maxlen: 24
112.213.212.0/24 maxlen: 24
112.213.213.0/24 maxlen: 24
112.213.214.0/24 maxlen: 24
112.213.215.0/24 maxlen: 24
112.213.220.0/24 maxlen: 24
112.213.221.0/24 maxlen: 24
112.213.222.0/24 maxlen: 24
112.213.223.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5689 (0x1639)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Validity
Not Before: Feb 16 05:04:53 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=63edb975-fb4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ad:a6:5e:29:42:8c:13:60:ed:27:4a:53:4f:
80:96:da:31:01:a5:86:d3:f9:6f:be:19:ad:81:3d:
6f:e6:87:1b:5c:85:a7:30:67:87:3c:d1:e2:c0:c8:
f0:7b:c7:d0:50:97:a4:f2:c7:8f:18:d8:8a:25:53:
33:0e:b4:5d:9b:08:ab:58:03:5f:54:e6:24:57:d9:
e8:71:74:e7:bf:f5:2c:59:e6:db:a7:f2:59:f1:ab:
0a:b4:5c:ab:21:0f:93:a4:98:f6:a5:2f:6c:81:5b:
a8:bd:b7:9b:de:e1:b7:58:6f:09:70:dc:c5:b8:f9:
b2:b3:73:9c:4e:ad:e3:ca:25:9f:40:f7:86:47:f9:
3c:93:ad:99:6a:a1:34:39:45:08:24:e8:8f:7c:13:
62:e8:0d:49:cc:e3:49:fe:c2:8b:32:5c:b3:cd:ef:
e2:79:34:10:ce:ea:65:30:9a:7c:be:d2:e5:0e:66:
a0:98:fb:3a:44:5d:b7:91:8a:b1:2c:04:25:76:97:
d4:5d:9f:9a:0d:64:7c:7b:3a:4c:a5:c7:a3:02:dc:
c1:be:33:37:12:2a:d5:8e:4b:af:7b:0b:ce:49:b9:
1e:8e:79:28:28:3b:b7:57:f0:fe:91:d7:50:35:68:
b0:b8:bb:d5:82:39:e2:b6:8a:97:e7:6f:6a:ef:ad:
be:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:48:E7:16:B4:7E:CF:7E:DD:18:E8:9E:89:20:AD:73:61:A2:C9:D8
X509v3 Authority Key Identifier:
keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/1272A1BE370511EC8309D965C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
112.213.192.0/19
Signature Algorithm: sha256WithRSAEncryption
38:bc:39:5a:99:71:64:3a:0c:1b:6b:d3:78:a2:e8:35:e1:da:
08:88:17:8c:09:32:e8:fe:56:92:6b:5f:0f:66:e6:71:14:c2:
8d:b1:88:3b:b8:a5:1e:02:d8:2f:24:59:8c:3a:b7:94:1b:0f:
f3:0b:a4:57:65:99:82:db:44:7f:5b:5b:9f:c8:41:70:99:23:
5d:7e:bf:b5:8a:d3:88:d0:68:51:08:00:13:5b:dd:de:b1:b0:
f8:3e:64:63:52:51:d2:03:24:38:56:36:3f:54:54:4a:2a:e2:
82:b5:e3:7a:a1:68:bb:06:da:51:cc:2d:2d:6c:69:55:6e:68:
4d:a7:57:5f:08:8d:a9:15:7a:31:8c:e9:2f:9c:74:2c:3e:de:
56:75:e8:57:f9:cb:60:5a:4c:33:38:12:d9:6e:ce:4f:34:8a:
36:be:54:3e:f2:80:27:a8:fc:ff:3a:d8:7d:d6:98:14:e6:98:
e3:e2:8f:57:ca:57:a0:33:65:bb:57:7c:18:72:a9:5e:31:12:
b1:0e:13:3e:b7:f8:8f:cd:b5:5a:44:6e:ed:f6:eb:25:17:7b:
26:3e:b0:e0:80:79:0d:9d:25:69:87:9e:20:37:47:39:09:03:
86:e2:c6:c9:ae:a2:d8:64:ea:77:41:81:8e:2b:32:8b:96:2d:
4a:0f:81:75
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICFjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE
NDc2Q0JEMDAwHhcNMjMwMjE2MDUwNDUzWhcNMjQwNTAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02M2VkYjk3NS1mYjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAyK2mXilCjBNg7SdKU0+AltoxAaWG0/lvvhmtgT1v5ocbXIWnMGeHPNHiwMjw
e8fQUJek8sePGNiKJVMzDrRdmwirWANfVOYkV9nocXTnv/UsWebbp/JZ8asKtFyr
IQ+TpJj2pS9sgVuovbeb3uG3WG8JcNzFuPmys3OcTq3jyiWfQPeGR/k8k62ZaqE0
OUUIJOiPfBNi6A1JzONJ/sKLMlyzze/ieTQQzuplMJp8vtLlDmagmPs6RF23kYqx
LAQldpfUXZ+aDWR8ezpMpcejAtzBvjM3EirVjkuvewvOSbkejnkoKDu3V/D+kddQ
NWiwuLvVgjnitoqX529q762+8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJZI5xa0
fs9+3RjonokgrXNhosnYMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1
REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2
UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvMTI3MkExQkUz
NzA1MTFFQzgzMDlEOTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAVw1cAwDQYJKoZIhvcNAQELBQADggEBADi8OVqZcWQ6DBtr
03ii6DXh2giIF4wJMuj+VpJrXw9m5nEUwo2xiDu4pR4C2C8kWYw6t5QbD/MLpFdl
mYLbRH9bW5/IQXCZI11+v7WK04jQaFEIABNb3d6xsPg+ZGNSUdIDJDhWNj9UVEoq
4oK143qhaLsG2lHMLS1saVVuaE2nV18IjakVejGM6S+cdCw+3lZ16Ff5y2BaTDM4
Etluzk80ija+VD7ygCeo/P862H3WmBTmmOPij1fKV6AzZbtXfBhyqV4xErEOEz63
+I/NtVpEbu326yUXeyY+sOCAeQ2dJWmHniA3RzkJA4bixsmuothk6ndBgY4rMouW
LUoPgXU=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:11 2023 by rpki-client on console-ams.rpki-client.org