Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/F94D5B76296D11EF9A68D25CC4F9AE02.roa
File: F94D5B76296D11EF9A68D25CC4F9AE02.roa (raw, json)
Hash identifier: LXnRj84uTL+Un6xFD/dbs6NcZGU9wlCIM/csxfUBRoY=
Subject key identifier: 2F:21:55:94:60:12:95:81:B9:C9:68:F5:A2:83:A2:09:22:D4:5E:CA
Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934
Certificate serial: 0603
Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/F94D5B76296D11EF9A68D25CC4F9AE02.roa
Signing time: Thu 13 Jun 2024 10:16:18 +0000
ROA not before: Thu 13 Jun 2024 10:16:18 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 140525
IP address blocks: 163.53.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jun 2024 09:37:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1539 (0x603)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934
Validity
Not Before: Jun 13 10:16:18 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=666ac6f2-7d7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:43:ab:22:04:2f:a5:4e:9a:61:f2:bf:43:9c:
db:58:14:49:c8:28:56:cc:a7:db:4f:4e:f4:44:12:
16:64:45:94:8c:46:5f:88:6d:36:a8:8a:11:1f:99:
15:6d:e6:53:0a:0e:ab:69:44:30:06:1c:71:61:ad:
9b:2c:20:a4:f8:c2:d3:f4:7d:6b:1d:0f:23:09:2d:
7a:ee:aa:2d:57:d7:28:8d:56:50:79:da:d4:1a:10:
88:72:fd:f4:19:84:2a:e1:30:a9:50:ff:f2:83:60:
82:28:5a:81:63:6a:df:1e:75:52:5d:cf:6a:d7:ae:
b6:77:c6:b2:63:8b:e1:d8:41:bf:c8:5c:b6:7c:d0:
d7:ca:47:43:39:3e:92:eb:45:5d:3e:ee:b8:6f:22:
74:f9:e8:04:91:ef:c5:af:c8:09:68:c8:17:26:62:
60:a6:b6:29:49:d2:70:5a:b1:54:13:5e:5f:9d:3d:
bc:ff:d3:21:56:41:9c:d9:14:db:53:0f:32:ce:b3:
b1:d6:85:59:a3:5c:02:e0:a1:bd:b5:ad:7d:9c:74:
fd:0a:44:bf:d7:07:3c:06:7d:90:9b:8e:63:22:df:
84:73:0d:ff:56:66:36:78:61:1a:cc:ec:88:c8:46:
97:ae:24:6a:3a:a7:76:43:60:3a:f0:de:17:51:c9:
de:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:21:55:94:60:12:95:81:B9:C9:68:F5:A2:83:A2:09:22:D4:5E:CA
X509v3 Authority Key Identifier:
keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/F94D5B76296D11EF9A68D25CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.53.16.0/24
Signature Algorithm: sha256WithRSAEncryption
71:df:5b:b5:58:90:f8:0f:a0:5e:90:7d:53:b0:74:2b:c6:5c:
3c:2f:a5:3b:a1:ec:cd:71:41:ce:dc:c0:27:3d:f1:bf:42:c1:
2e:85:bd:20:81:1f:81:b1:65:78:fb:a1:ee:69:4e:bf:16:1b:
97:58:e0:cd:52:5f:e8:52:09:38:ad:e7:ab:5d:1e:11:09:51:
05:fc:2a:f9:22:02:2d:9d:8c:3f:d2:8a:63:17:f7:17:c8:98:
fa:59:37:10:ce:e3:a2:a0:f7:99:82:14:92:10:a2:9f:85:9b:
c5:2e:34:83:1a:59:d7:fe:69:43:22:d1:e0:60:d4:6c:3a:ef:
f3:9a:5a:79:e6:c3:46:bf:18:74:f3:e0:ce:8a:b8:a1:0e:a9:
2c:d0:8f:24:3d:d5:fb:e7:a6:75:a4:e4:3b:bf:5a:43:82:72:
0f:ff:da:8a:f3:6a:ba:1e:f7:b3:21:ba:28:2f:10:d7:c6:c3:
25:ce:d0:d9:ca:57:e1:bc:56:a3:69:1e:80:f0:13:5b:54:52:
1a:4d:fb:b0:f5:d9:fa:6f:ae:ce:1d:62:87:a9:06:14:07:c6:
3b:ac:7a:1a:5b:0f:f8:0b:56:db:41:a7:01:55:18:f3:ff:ed:
25:3d:77:96:c4:44:19:58:80:f3:ea:e1:01:74:f8:98:d4:8d:
b6:81:d6:b3
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICBgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3
RDgwQjA5MzQwHhcNMjQwNjEzMTAxNjE4WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjZhYzZmMi03ZDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEApUOrIgQvpU6aYfK/Q5zbWBRJyChWzKfbT070RBIWZEWUjEZfiG02qIoRH5kV
beZTCg6raUQwBhxxYa2bLCCk+MLT9H1rHQ8jCS167qotV9cojVZQedrUGhCIcv30
GYQq4TCpUP/yg2CCKFqBY2rfHnVSXc9q1662d8ayY4vh2EG/yFy2fNDXykdDOT6S
60VdPu64byJ0+egEke/Fr8gJaMgXJmJgprYpSdJwWrFUE15fnT28/9MhVkGc2RTb
Uw8yzrOx1oVZo1wC4KG9ta19nHT9CkS/1wc8Bn2Qm45jIt+Ecw3/VmY2eGEazOyI
yEaXriRqOqd2Q2A68N4XUcne+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFC8hVZRg
EpWBuclo9aKDogki1F7KMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy
RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD
VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvRjk0RDVCNzYy
OTZEMTFFRjlBNjhEMjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBACjNRAwDQYJKoZIhvcNAQELBQADggEBAHHfW7VYkPgPoF6Q
fVOwdCvGXDwvpTuh7M1xQc7cwCc98b9CwS6FvSCBH4GxZXj7oe5pTr8WG5dY4M1S
X+hSCTit56tdHhEJUQX8KvkiAi2djD/SimMX9xfImPpZNxDO46Kg95mCFJIQop+F
m8UuNIMaWdf+aUMi0eBg1Gw67/OaWnnmw0a/GHTz4M6KuKEOqSzQjyQ91fvnpnWk
5Du/WkOCcg//2orzaroe97MhuigvENfGwyXO0NnKV+G8VqNpHoDwE1tUUhpN+7D1
2fpvrs4dYoepBhQHxjusehpbD/gLVttBpwFVGPP/7SU9d5bERBlYgPPq4QF0+JjU
jbaB1rM=
-----END CERTIFICATE-----
Generated at Fri Jun 14 11:38:06 2024 by rpki-client on console-fra.rpki-client.org