Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/0DF632EC8A5A11ECB056B715C4F9AE02.roa
File: 0DF632EC8A5A11ECB056B715C4F9AE02.roa (raw, json)
Hash identifier: buIWI6JlFWU5hyp8hrCDkecCEjqPHdanYNlDHEr7sTE=
Subject key identifier: 41:5B:9C:F8:46:57:19:39:DB:92:62:0D:1E:4F:F7:FD:C5:2B:5B:0E
Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19
Certificate serial: 054B
Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/0DF632EC8A5A11ECB056B715C4F9AE02.roa
Signing time: Mon 26 Aug 2024 04:41:13 +0000
ROA not before: Mon 26 Aug 2024 04:41:13 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 58955
IP address blocks: 27.254.141.0/24 maxlen: 24
27.254.163.0/24 maxlen: 24
27.254.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Sep 2024 02:24:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1355 (0x54b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91262CA
Validity
Not Before: Aug 26 04:41:13 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=66cc0769-2dd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:60:66:88:16:65:1b:28:eb:ae:50:83:c5:dc:
f5:b5:82:ba:e4:ae:06:18:7c:d1:ce:26:51:30:6c:
5e:47:ed:8a:4c:02:62:51:80:15:5b:44:ac:1b:57:
18:d2:6e:cf:9e:a4:a8:a2:7f:ac:62:b0:28:67:b0:
58:6c:58:e8:4b:ad:bd:b6:09:f6:ab:7b:ad:33:2d:
0e:96:05:3f:0f:60:c1:b1:f3:d2:d0:b1:0a:5f:b1:
84:35:95:e5:84:e5:58:1b:c0:5d:5d:40:8f:1d:a7:
ee:33:4a:4d:85:fa:f6:b2:c9:f8:39:69:fd:2a:49:
54:a6:36:4f:68:31:13:2b:ab:99:2b:07:a2:36:34:
49:21:ad:7d:23:1b:08:70:10:5b:62:5c:f7:1b:c6:
ef:14:e2:2e:74:d2:73:ee:1e:0a:e3:6a:94:8f:a6:
9e:a1:a8:e9:35:62:8d:f2:6b:80:1f:53:bc:76:47:
4d:00:45:26:8a:48:c6:be:ea:37:c1:c8:f7:e1:66:
bf:a1:29:ab:cf:94:ec:a8:9e:30:bc:13:e6:b7:96:
65:81:d6:60:c2:e9:a8:f2:df:a6:a5:a8:8c:3b:61:
98:c5:53:20:6c:a9:fc:61:8d:04:fc:0c:31:81:8f:
df:5c:8b:ca:13:c3:76:7e:38:7f:a0:e9:01:ad:93:
3b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:5B:9C:F8:46:57:19:39:DB:92:62:0D:1E:4F:F7:FD:C5:2B:5B:0E
X509v3 Authority Key Identifier:
keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/0DF632EC8A5A11ECB056B715C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.254.141.0/24
27.254.163.0/24
27.254.216.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:cf:ca:56:e4:bf:40:3e:65:13:c6:36:68:0f:9d:90:c1:6b:
27:43:ee:d1:89:95:8e:88:01:33:17:1a:f9:86:a5:98:ba:a1:
03:ab:42:06:d5:6a:d4:0e:7c:42:9d:6c:a1:68:56:1c:8b:74:
31:c3:bd:1d:14:c4:7a:d2:c5:8c:d4:10:8e:bc:7d:c4:ea:a0:
28:40:11:b0:01:b2:88:0f:3f:3e:88:6a:8e:d8:33:a2:14:c0:
8c:b5:3f:c9:dc:af:79:4b:d0:2a:e2:6c:a9:8b:84:89:9f:55:
58:0f:d7:f4:39:95:3e:71:a6:d2:3d:83:6e:07:43:36:ab:27:
16:10:52:6a:e1:00:fc:a6:09:e3:81:8a:34:8d:77:9e:d6:3e:
39:60:4f:6e:9e:3f:d7:22:83:9d:02:49:0c:90:71:e7:e2:13:
82:12:fb:08:bb:8e:ca:0e:99:99:67:95:38:11:90:47:65:d9:
9e:1a:85:fb:c4:2e:4c:9e:5e:6e:f0:0f:2d:10:aa:cd:f5:73:
48:6f:70:e0:59:99:cc:1e:3f:e6:7a:0d:aa:56:b7:85:5b:c5:
d3:4c:d0:05:66:35:54:9a:9d:6b:8d:7c:1f:b8:07:44:33:f1:
b7:10:17:69:c4:f7:a8:39:52:e2:22:c2:bf:4f:bb:f4:b6:fe:
69:d8:84:3c
-----BEGIN CERTIFICATE-----
MIIFfTCCBGWgAwIBAgICBUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1
OTVFNjFBMTkwHhcNMjQwODI2MDQ0MTEzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmNjMDc2OS0yZGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAr2BmiBZlGyjrrlCDxdz1tYK65K4GGHzRziZRMGxeR+2KTAJiUYAVW0SsG1cY
0m7PnqSoon+sYrAoZ7BYbFjoS629tgn2q3utMy0OlgU/D2DBsfPS0LEKX7GENZXl
hOVYG8BdXUCPHafuM0pNhfr2ssn4OWn9KklUpjZPaDETK6uZKweiNjRJIa19IxsI
cBBbYlz3G8bvFOIudNJz7h4K42qUj6aeoajpNWKN8muAH1O8dkdNAEUmikjGvuo3
wcj34Wa/oSmrz5TsqJ4wvBPmt5ZlgdZgwumo8t+mpaiMO2GYxVMgbKn8YY0E/Awx
gY/fXIvKE8N2fjh/oOkBrZM7xQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFEFbnPhG
Vxk525JiDR5P9/3FK1sOMB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB
NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H
aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvMERGNjMyRUM4
QTVBMTFFQ0IwNTZCNzE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E
HDAaMBgEAgABMBIDBAAb/o0DBAAb/qMDBAAb/tgwDQYJKoZIhvcNAQELBQADggEB
AErPylbkv0A+ZRPGNmgPnZDBaydD7tGJlY6IATMXGvmGpZi6oQOrQgbVatQOfEKd
bKFoVhyLdDHDvR0UxHrSxYzUEI68fcTqoChAEbABsogPPz6Iao7YM6IUwIy1P8nc
r3lL0CribKmLhImfVVgP1/Q5lT5xptI9g24HQzarJxYQUmrhAPymCeOBijSNd57W
PjlgT26eP9cig50CSQyQcefiE4IS+wi7jsoOmZlnlTgRkEdl2Z4ahfvELkyeXm7w
Dy0Qqs31c0hvcOBZmcweP+Z6DapWt4VbxdNM0AVmNVSanWuNfB+4B0Qz8bcQF2nE
96g5UuIiwr9Pu/S2/mnYhDw=
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:00:43 2025 by rpki-client