Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/BF76DB38CB4611EDB438CE81C4F9AE02.roa
File: BF76DB38CB4611EDB438CE81C4F9AE02.roa (raw, json)
Hash identifier: msYixYcub0I5zOsS8X6n+mGGQ6SFUFASxM7mFqf3JjU=
Subject key identifier: A2:EB:F3:10:42:25:76:FC:B3:C7:C5:99:B3:2C:5B:D5:B2:38:31:9B
Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Certificate serial: 029F
Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/BF76DB38CB4611EDB438CE81C4F9AE02.roa
Signing time: Sat 25 Mar 2023 19:53:44 +0000
ROA not before: Sat 25 Mar 2023 19:53:44 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 142600
IP address blocks: 2001:df0:3540::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 671 (0x29f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Validity
Not Before: Mar 25 19:53:44 2023 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=641f5148-e812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:41:36:95:8d:c8:ea:0f:79:c9:6b:b7:ca:92:
ce:57:04:c6:5b:67:32:85:45:26:eb:dd:38:29:2a:
4b:ea:0e:a2:e7:6c:f2:21:71:be:77:bc:10:e0:6e:
86:95:87:df:89:f4:29:dd:9b:e3:94:67:c8:ed:16:
42:26:fc:74:77:51:62:b2:1c:90:f0:f9:38:12:f9:
42:2e:f5:90:98:43:16:06:71:b4:03:5a:83:0b:d9:
0a:6e:cd:51:ea:46:95:e2:20:d4:9d:03:db:c5:66:
bb:8e:7f:87:7f:16:5a:99:2a:51:99:75:af:a4:a4:
73:f7:0d:f2:2c:71:56:5f:f8:6c:3f:7d:48:3b:4d:
73:25:ea:4c:58:b1:fb:ff:c0:ec:ea:6d:d7:cd:25:
a2:5d:7f:b9:60:30:1a:47:43:a2:9b:94:07:f3:29:
ba:1f:a2:0e:fd:3d:b6:9e:9f:2c:64:2e:b3:e8:88:
73:44:1b:79:07:9e:62:07:91:45:f9:01:8e:bb:e7:
1a:c6:03:02:b3:f7:0a:85:3a:16:d9:55:20:51:62:
ab:e7:bc:e1:90:3c:57:e6:e6:6d:a1:6c:68:cd:60:
17:33:6f:6a:6f:2a:ec:65:9b:c0:1e:bc:16:9f:9e:
8e:ca:bd:11:f7:66:6f:0d:82:f1:cc:d1:28:27:97:
ab:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:EB:F3:10:42:25:76:FC:B3:C7:C5:99:B3:2C:5B:D5:B2:38:31:9B
X509v3 Authority Key Identifier:
keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/BF76DB38CB4611EDB438CE81C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df0:3540::/48
Signature Algorithm: sha256WithRSAEncryption
48:60:2e:ba:4b:a5:fb:7c:f0:65:fc:4c:98:91:42:ab:2e:9a:
b6:1f:5e:4d:1d:7f:21:41:d3:ca:a8:41:aa:a3:7a:46:03:b9:
5a:5b:da:d6:e6:4a:cf:1b:14:d4:a0:91:aa:09:cf:64:13:e0:
66:0a:0b:65:97:96:33:fd:09:8d:2d:dd:5f:35:38:43:93:d5:
d1:75:cf:00:fe:1e:51:33:4f:d0:98:be:75:e5:8c:62:58:67:
17:8c:e6:17:0f:b8:05:7e:d3:86:1e:a6:ff:4f:52:eb:4f:97:
4d:4a:ba:0f:46:52:77:21:c3:1d:ed:4a:d7:a6:72:6c:6c:82:
4e:49:c6:0d:86:e8:35:e3:0e:45:2d:9b:fb:88:86:6b:cf:f8:
2c:c7:c7:ac:f6:33:9b:64:a4:40:43:1e:55:86:df:6f:c7:b5:
6a:02:f8:68:a0:1a:c7:31:b4:b7:6e:48:f5:37:df:54:b1:d7:
67:e9:6c:c0:ea:dc:92:97:78:97:95:f7:38:4f:e4:4f:0b:43:
85:eb:b6:ea:87:f0:42:ca:f8:36:bf:e9:8c:3e:a8:0f:42:bc:
60:d6:a4:99:44:bb:42:6b:b6:ad:80:67:d5:d5:13:95:91:ca:
ab:ab:a0:aa:0a:ac:3e:e4:b3:2d:ef:50:5d:9d:6f:0c:49:03:
64:f1:e4:f2
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgICAp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjYwNUIxMTAvBgNVBAUTKDkxMzM4NjkwREVCQTU3OENFNzM4MjE4QTlFMjIwODU0
RDFCNTI3NUYwHhcNMjMwMzI1MTk1MzQ0WhcNMjQwMzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDFmNTE0OC1lODEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxEE2lY3I6g95yWu3ypLOVwTGW2cyhUUm6904KSpL6g6i52zyIXG+d7wQ4G6G
lYffifQp3ZvjlGfI7RZCJvx0d1FishyQ8Pk4EvlCLvWQmEMWBnG0A1qDC9kKbs1R
6kaV4iDUnQPbxWa7jn+HfxZamSpRmXWvpKRz9w3yLHFWX/hsP31IO01zJepMWLH7
/8Ds6m3XzSWiXX+5YDAaR0Oim5QH8ym6H6IO/T22np8sZC6z6IhzRBt5B55iB5FF
+QGOu+caxgMCs/cKhToW2VUgUWKr57zhkDxX5uZtoWxozWAXM29qbyrsZZvAHrwW
n56Oyr0R92ZvDYLxzNEoJ5erMQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKLr8xBC
JXb8s8fFmbMsW9WyODGbMB8GA1UdIwQYMBaAFJEzhpDeuleM5zghip4iCFTRtSdf
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA1Qi85ODE3RDI3MjY0
Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0em5PQ0dLbmlJSVZORzFK
MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2tUT0drTjY2VjR6bk9DR0tuaUlJVk5HMUoxOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RjYwNUIvOTgxN0QyNzI2NENDMTFFQzk2RDRBNTU4QzRGOUFFMDIvQkY3NkRCMzhD
QjQ2MTFFREI0MzhDRTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwAgAQ3wNUAwDQYJKoZIhvcNAQELBQADggEBAEhgLrpLpft8
8GX8TJiRQqsumrYfXk0dfyFB08qoQaqjekYDuVpb2tbmSs8bFNSgkaoJz2QT4GYK
C2WXljP9CY0t3V81OEOT1dF1zwD+HlEzT9CYvnXljGJYZxeM5hcPuAV+04Yepv9P
UutPl01Kug9GUnchwx3tStemcmxsgk5Jxg2G6DXjDkUtm/uIhmvP+CzHx6z2M5tk
pEBDHlWG32/HtWoC+GigGscxtLduSPU331Sx12fpbMDq3JKXeJeV9zhP5E8LQ4Xr
tuqH8ELK+Da/6Yw+qA9CvGDWpJlEu0Jrtq2AZ9XVE5WRyquroKoKrD7ksy3vUF2d
bwxJA2Tx5PI=
-----END CERTIFICATE-----
Generated at Fri Aug 25 10:03:58 2023 by rpki-client on console-ams.rpki-client.org