Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/B236129A4F3511EEAA1E9578C4F9AE02.roa
File:                     B236129A4F3511EEAA1E9578C4F9AE02.roa (raw, json)
Hash identifier:          +xU06lMrv6uW78VLa0TdE5pdYCVbZgZ0MZbDOyyDys8=
Subject key identifier:   21:3A:0B:45:85:D4:F2:5E:CF:E6:AB:A0:4B:96:31:03:22:13:2E:3E
Certificate issuer:       /CN=A91F715C/serialNumber=E77132E4FEAD04EED4FE946D607A0DCB57A42065
Certificate serial:       02
Authority key identifier: E7:71:32:E4:FE:AD:04:EE:D4:FE:94:6D:60:7A:0D:CB:57:A4:20:65
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53Ey5P6tBO7U_pRtYHoNy1ekIGU.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/B236129A4F3511EEAA1E9578C4F9AE02.roa
Signing time:             Sat 09 Sep 2023 17:24:14 +0000
ROA not before:           Sat 09 Sep 2023 17:24:14 +0000
ROA not after:            Sun 01 Dec 2024 00:00:00 +0000
asID:                     151790
IP address blocks:        103.72.62.0/23 maxlen: 24

Validation:               Failed, certificate revoked on Tue 12 Sep 2023 11:01:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F715C/serialNumber=E77132E4FEAD04EED4FE946D607A0DCB57A42065
        Validity
            Not Before: Sep  9 17:24:14 2023 GMT
            Not After : Dec  1 00:00:00 2024 GMT
        Subject: CN=64fcaa3d-6c6c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:48:4c:96:cb:79:36:54:d2:53:ef:ef:18:dd:
                    52:47:9c:eb:a6:bc:06:1c:1f:f0:2f:2e:07:9f:de:
                    f1:9d:f8:4e:22:6b:de:f3:96:ae:6d:0c:09:46:fc:
                    f2:65:87:d9:51:fd:60:64:c3:d7:2d:5d:cf:50:05:
                    1f:39:92:5d:67:3c:ba:03:81:8e:21:eb:db:40:e0:
                    06:28:a5:52:58:f3:e3:ac:fc:7b:bf:20:ac:46:12:
                    2e:43:ba:ce:8e:41:6e:93:34:fd:e1:8f:7b:3b:28:
                    05:9c:e3:bc:4e:2c:64:6a:82:40:c7:91:29:81:f9:
                    a9:3c:b3:ab:c1:b8:1d:1c:43:da:90:be:7c:b9:b2:
                    34:1b:67:7a:b6:aa:10:3a:33:ec:6e:ce:2d:14:fb:
                    1b:1f:71:c7:17:de:25:7b:6d:a5:6a:be:bb:09:92:
                    8d:82:97:af:db:31:6f:71:c1:c5:c5:94:7b:ec:7d:
                    97:24:5f:c6:bf:2c:cd:43:e5:38:e2:19:65:f3:c4:
                    4a:17:e3:79:72:47:0f:ec:a1:88:aa:77:80:94:90:
                    94:cc:3a:ad:38:a3:bf:1e:9f:99:2a:f3:8c:c5:82:
                    18:68:2c:28:96:fd:64:5a:5e:9f:b4:92:6e:43:ec:
                    21:f2:ca:8d:c6:e6:c2:4e:4c:32:05:e3:50:78:fa:
                    97:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:3A:0B:45:85:D4:F2:5E:CF:E6:AB:A0:4B:96:31:03:22:13:2E:3E
            X509v3 Authority Key Identifier:
                keyid:E7:71:32:E4:FE:AD:04:EE:D4:FE:94:6D:60:7A:0D:CB:57:A4:20:65

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/53Ey5P6tBO7U_pRtYHoNy1ekIGU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53Ey5P6tBO7U_pRtYHoNy1ekIGU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/B236129A4F3511EEAA1E9578C4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.72.62.0/23

    Signature Algorithm: sha256WithRSAEncryption
         46:63:d2:b6:9a:bf:24:60:35:7b:fb:a8:d3:c7:a0:20:5c:4b:
         5c:0b:69:82:cb:37:13:02:03:d3:2b:8e:f6:b7:b0:cd:6e:77:
         11:d5:3d:98:50:43:b0:ec:56:2f:2b:4d:1a:11:99:3b:b0:20:
         cd:26:57:05:9a:da:c6:a6:e9:d5:32:6b:c3:ec:17:17:71:a4:
         a9:d2:61:83:cc:ca:e2:ef:ce:bc:5e:dd:53:e6:6e:10:79:48:
         15:12:a6:0c:18:f9:77:fa:f5:f9:b9:86:17:88:44:46:80:56:
         f3:6f:cb:11:3d:19:3e:f0:15:d9:eb:9f:bf:d7:6a:0a:aa:e7:
         11:fb:44:bd:95:93:ae:3b:38:1e:c4:37:e6:c6:1a:2a:6c:23:
         2a:10:f8:62:32:b7:5c:18:c7:8c:3b:31:42:88:52:05:b1:05:
         c1:44:3a:13:0f:48:2d:4a:c6:4e:98:b8:8c:8f:63:0d:03:2b:
         7e:8d:c7:43:28:ee:ff:74:c3:5f:1f:e0:78:71:50:1c:58:a6:
         9e:d1:d0:74:f0:91:5c:c6:37:7e:d9:a1:d9:be:dd:87:9a:5f:
         9d:b7:d5:d3:e0:9d:b7:03:12:8b:00:d4:e7:f1:70:84:be:63:
         38:1d:fe:0c:ee:de:b1:e0:c3:c7:06:15:7c:6f:b5:eb:df:17:
         c6:4f:b5:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:38 2024 by rpki-client on console-ams.rpki-client.org