Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/B236129A4F3511EEAA1E9578C4F9AE02.roa
File: B236129A4F3511EEAA1E9578C4F9AE02.roa (raw, json)
Hash identifier: +xU06lMrv6uW78VLa0TdE5pdYCVbZgZ0MZbDOyyDys8=
Subject key identifier: 21:3A:0B:45:85:D4:F2:5E:CF:E6:AB:A0:4B:96:31:03:22:13:2E:3E
Certificate issuer: /CN=A91F715C/serialNumber=E77132E4FEAD04EED4FE946D607A0DCB57A42065
Certificate serial: 02
Authority key identifier: E7:71:32:E4:FE:AD:04:EE:D4:FE:94:6D:60:7A:0D:CB:57:A4:20:65
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53Ey5P6tBO7U_pRtYHoNy1ekIGU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/B236129A4F3511EEAA1E9578C4F9AE02.roa
Signing time: Sat 09 Sep 2023 17:24:14 +0000
ROA not before: Sat 09 Sep 2023 17:24:14 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 151790
IP address blocks: 103.72.62.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Sep 2023 11:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F715C/serialNumber=E77132E4FEAD04EED4FE946D607A0DCB57A42065
Validity
Not Before: Sep 9 17:24:14 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=64fcaa3d-6c6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:48:4c:96:cb:79:36:54:d2:53:ef:ef:18:dd:
52:47:9c:eb:a6:bc:06:1c:1f:f0:2f:2e:07:9f:de:
f1:9d:f8:4e:22:6b:de:f3:96:ae:6d:0c:09:46:fc:
f2:65:87:d9:51:fd:60:64:c3:d7:2d:5d:cf:50:05:
1f:39:92:5d:67:3c:ba:03:81:8e:21:eb:db:40:e0:
06:28:a5:52:58:f3:e3:ac:fc:7b:bf:20:ac:46:12:
2e:43:ba:ce:8e:41:6e:93:34:fd:e1:8f:7b:3b:28:
05:9c:e3:bc:4e:2c:64:6a:82:40:c7:91:29:81:f9:
a9:3c:b3:ab:c1:b8:1d:1c:43:da:90:be:7c:b9:b2:
34:1b:67:7a:b6:aa:10:3a:33:ec:6e:ce:2d:14:fb:
1b:1f:71:c7:17:de:25:7b:6d:a5:6a:be:bb:09:92:
8d:82:97:af:db:31:6f:71:c1:c5:c5:94:7b:ec:7d:
97:24:5f:c6:bf:2c:cd:43:e5:38:e2:19:65:f3:c4:
4a:17:e3:79:72:47:0f:ec:a1:88:aa:77:80:94:90:
94:cc:3a:ad:38:a3:bf:1e:9f:99:2a:f3:8c:c5:82:
18:68:2c:28:96:fd:64:5a:5e:9f:b4:92:6e:43:ec:
21:f2:ca:8d:c6:e6:c2:4e:4c:32:05:e3:50:78:fa:
97:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:3A:0B:45:85:D4:F2:5E:CF:E6:AB:A0:4B:96:31:03:22:13:2E:3E
X509v3 Authority Key Identifier:
keyid:E7:71:32:E4:FE:AD:04:EE:D4:FE:94:6D:60:7A:0D:CB:57:A4:20:65
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/53Ey5P6tBO7U_pRtYHoNy1ekIGU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53Ey5P6tBO7U_pRtYHoNy1ekIGU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/B236129A4F3511EEAA1E9578C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.72.62.0/23
Signature Algorithm: sha256WithRSAEncryption
46:63:d2:b6:9a:bf:24:60:35:7b:fb:a8:d3:c7:a0:20:5c:4b:
5c:0b:69:82:cb:37:13:02:03:d3:2b:8e:f6:b7:b0:cd:6e:77:
11:d5:3d:98:50:43:b0:ec:56:2f:2b:4d:1a:11:99:3b:b0:20:
cd:26:57:05:9a:da:c6:a6:e9:d5:32:6b:c3:ec:17:17:71:a4:
a9:d2:61:83:cc:ca:e2:ef:ce:bc:5e:dd:53:e6:6e:10:79:48:
15:12:a6:0c:18:f9:77:fa:f5:f9:b9:86:17:88:44:46:80:56:
f3:6f:cb:11:3d:19:3e:f0:15:d9:eb:9f:bf:d7:6a:0a:aa:e7:
11:fb:44:bd:95:93:ae:3b:38:1e:c4:37:e6:c6:1a:2a:6c:23:
2a:10:f8:62:32:b7:5c:18:c7:8c:3b:31:42:88:52:05:b1:05:
c1:44:3a:13:0f:48:2d:4a:c6:4e:98:b8:8c:8f:63:0d:03:2b:
7e:8d:c7:43:28:ee:ff:74:c3:5f:1f:e0:78:71:50:1c:58:a6:
9e:d1:d0:74:f0:91:5c:c6:37:7e:d9:a1:d9:be:dd:87:9a:5f:
9d:b7:d5:d3:e0:9d:b7:03:12:8b:00:d4:e7:f1:70:84:be:63:
38:1d:fe:0c:ee:de:b1:e0:c3:c7:06:15:7c:6f:b5:eb:df:17:
c6:4f:b5:69
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG
NzE1QzExMC8GA1UEBRMoRTc3MTMyRTRGRUFEMDRFRUQ0RkU5NDZENjA3QTBEQ0I1
N0E0MjA2NTAeFw0yMzA5MDkxNzI0MTRaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY0ZmNhYTNkLTZjNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDDSEyWy3k2VNJT7+8Y3VJHnOumvAYcH/AvLgef3vGd+E4ia97zlq5tDAlG/PJl
h9lR/WBkw9ctXc9QBR85kl1nPLoDgY4h69tA4AYopVJY8+Os/Hu/IKxGEi5Dus6O
QW6TNP3hj3s7KAWc47xOLGRqgkDHkSmB+ak8s6vBuB0cQ9qQvny5sjQbZ3q2qhA6
M+xuzi0U+xsfcccX3iV7baVqvrsJko2Cl6/bMW9xwcXFlHvsfZckX8a/LM1D5Tji
GWXzxEoX43lyRw/soYiqd4CUkJTMOq04o78en5kq84zFghhoLCiW/WRaXp+0km5D
7CHyyo3G5sJOTDIF41B4+pdRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUIToLRYXU
8l7P5qugS5YxAyITLj4wHwYDVR0jBBgwFoAU53Ey5P6tBO7U/pRtYHoNy1ekIGUw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3MTVDLzVGMDcyNjM4NEYz
MzExRUU5NjZFMEY3MkM0RjlBRTAyLzUzRXk1UDZ0Qk83VV9wUnRZSG9OeTFla0lH
VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvNTNFeTVQNnRCTzdVX3BSdFlIb055MWVrSUdVLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
NzE1Qy81RjA3MjYzODRGMzMxMUVFOTY2RTBGNzJDNEY5QUUwMi9CMjM2MTI5QTRG
MzUxMUVFQUExRTk1NzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAWdIPjANBgkqhkiG9w0BAQsFAAOCAQEARmPStpq/JGA1e/uo
08egIFxLXAtpgss3EwID0yuO9rewzW53EdU9mFBDsOxWLytNGhGZO7AgzSZXBZra
xqbp1TJrw+wXF3GkqdJhg8zK4u/OvF7dU+ZuEHlIFRKmDBj5d/r1+bmGF4hERoBW
82/LET0ZPvAV2eufv9dqCqrnEftEvZWTrjs4HsQ35sYaKmwjKhD4YjK3XBjHjDsx
QohSBbEFwUQ6Ew9ILUrGTpi4jI9jDQMrfo3HQyju/3TDXx/geHFQHFimntHQdPCR
XMY3ftmh2b7dh5pfnbfV0+CdtwMSiwDU5/FwhL5jOB3+DO7eseDDxwYVfG+1698X
xk+1aQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:38 2024 by rpki-client on console-ams.rpki-client.org