Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/D6ADA382705511EDB81BBE3DC4F9AE02.roa
File: D6ADA382705511EDB81BBE3DC4F9AE02.roa (raw, json)
Hash identifier: SmYYqDO8T4pdMwq0J7tRF7I7MsDOcdP8Ur+o6C6KOMM=
Subject key identifier: E2:D9:E1:45:4B:7C:5D:E3:0F:AF:81:09:97:5B:B8:0C:E2:78:34:FF
Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93
Certificate serial: 264B
Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/D6ADA382705511EDB81BBE3DC4F9AE02.roa
Signing time: Sun 06 Aug 2023 16:13:24 +0000
ROA not before: Sun 06 Aug 2023 16:13:23 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 46664
IP address blocks: 45.249.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Nov 2023 23:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9803 (0x264b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93
Validity
Not Before: Aug 6 16:13:23 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=64cfc6a3-dc51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:06:b7:96:c0:84:4a:ad:16:89:06:e3:1d:97:
5d:4e:ec:9a:c0:bb:74:10:61:5f:34:ed:de:04:65:
00:6e:b6:40:7b:98:6b:2f:ef:04:9a:5a:71:77:58:
be:c3:65:5e:c2:09:03:c1:cc:84:2f:08:dc:05:49:
c9:84:57:50:fd:01:11:b5:b9:64:64:09:b5:32:78:
c3:ae:6c:b5:89:3c:a0:42:75:b3:64:b3:41:bb:80:
f0:d5:f7:2d:4d:a6:a0:2e:91:f7:41:25:c9:56:db:
f1:8e:c6:a2:e8:a5:60:e3:a5:60:9f:b0:43:e7:e7:
33:4b:21:d3:07:ba:b1:56:cc:0f:8b:d9:fa:61:7a:
21:8e:70:55:2f:11:29:11:c2:ae:90:7b:4d:74:c2:
1c:89:69:da:20:45:51:38:dd:ed:11:95:91:54:e0:
60:ee:7c:0a:4d:fc:63:fb:a9:b8:93:56:40:25:33:
bc:b6:b4:8e:8b:86:c9:19:09:fd:8c:06:91:d4:2a:
0a:26:b8:74:01:7b:87:31:a9:c6:19:44:63:24:90:
b6:ea:b7:11:dc:3e:b4:97:d9:25:c5:4b:98:a8:ea:
88:a6:6a:71:bc:5b:6a:74:20:de:04:5c:10:5b:83:
ea:cb:38:a4:7f:55:19:fd:15:f5:a8:91:ec:f7:16:
c4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:D9:E1:45:4B:7C:5D:E3:0F:AF:81:09:97:5B:B8:0C:E2:78:34:FF
X509v3 Authority Key Identifier:
keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/D6ADA382705511EDB81BBE3DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.249.91.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:d1:aa:85:31:84:99:b5:24:cc:13:99:b9:af:0e:4c:8c:fb:
d5:fb:1c:50:9b:f7:8f:4d:ea:c9:7f:a8:20:c3:7b:59:36:14:
9b:a5:47:a1:d2:d2:9d:8e:ca:df:be:b9:1c:d7:92:f5:a1:93:
6c:de:23:bb:42:22:62:08:0f:75:70:3e:6f:e7:fa:1e:29:56:
7c:4d:96:3e:b2:4a:02:f9:e7:f2:1f:23:d3:a3:cc:a5:f0:6c:
7b:7b:01:c8:60:01:d0:37:8c:c1:bd:78:e3:3b:57:77:23:86:
e4:e2:5a:3c:6a:29:1e:c3:28:d0:05:f1:ff:31:22:bf:d5:69:
c5:30:4b:df:c4:3c:e1:e1:6a:d1:d7:71:b9:12:5d:7f:2b:28:
ef:47:53:1f:2a:44:f5:dd:1a:5c:30:e9:fe:b8:dc:76:64:6a:
b8:36:d3:ca:b7:32:5a:44:14:1f:11:93:45:53:48:b1:40:5d:
e1:ee:c8:cc:7a:6a:71:6b:3d:f2:bc:f0:e0:30:e8:a1:a5:27:
13:a4:92:7f:fb:63:2d:7b:f3:fc:73:4e:c7:53:c0:f0:97:6c:
17:42:14:fe:1b:c7:6b:8f:15:16:cc:70:74:d0:a2:e8:e3:5d:
91:09:d8:5d:ea:4a:3d:e0:9e:10:5e:88:ab:b5:3e:8e:05:c5:
7d:42:20:51
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICJkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw
ODYzRDNEOTMwHhcNMjMwODA2MTYxMzIzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NGNmYzZhMy1kYzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwga3lsCESq0WiQbjHZddTuyawLt0EGFfNO3eBGUAbrZAe5hrL+8Emlpxd1i+
w2VewgkDwcyELwjcBUnJhFdQ/QERtblkZAm1MnjDrmy1iTygQnWzZLNBu4Dw1fct
TaagLpH3QSXJVtvxjsai6KVg46Vgn7BD5+czSyHTB7qxVswPi9n6YXohjnBVLxEp
EcKukHtNdMIciWnaIEVRON3tEZWRVOBg7nwKTfxj+6m4k1ZAJTO8trSOi4bJGQn9
jAaR1CoKJrh0AXuHManGGURjJJC26rcR3D60l9klxUuYqOqIpmpxvFtqdCDeBFwQ
W4Pqyzikf1UZ/RX1qJHs9xbEBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOLZ4UVL
fF3jD6+BCZdbuAzieDT/MB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB
ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ
Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvRDZBREEzODI3
MDU1MTFFREI4MUJCRTNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAAt+VswDQYJKoZIhvcNAQELBQADggEBAIrRqoUxhJm1JMwT
mbmvDkyM+9X7HFCb949N6sl/qCDDe1k2FJulR6HS0p2Oyt++uRzXkvWhk2zeI7tC
ImIID3VwPm/n+h4pVnxNlj6ySgL55/IfI9OjzKXwbHt7AchgAdA3jMG9eOM7V3cj
huTiWjxqKR7DKNAF8f8xIr/VacUwS9/EPOHhatHXcbkSXX8rKO9HUx8qRPXdGlww
6f643HZkarg208q3MlpEFB8Rk0VTSLFAXeHuyMx6anFrPfK88OAw6KGlJxOkkn/7
Yy178/xzTsdTwPCXbBdCFP4bx2uPFRbMcHTQoujjXZEJ2F3qSj3gnhBeiKu1Po4F
xX1CIFE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-ams.rpki-client.org