Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/5A591BB025E011EC9E89C60AC4F9AE02.roa
File:                     5A591BB025E011EC9E89C60AC4F9AE02.roa (raw, json)
Hash identifier:          SfX78mf8Kd7x/+CvFiJo2Q6E4e6u3b0BX938D2DXIEQ=
Subject key identifier:   C6:2F:3F:5E:B4:1B:E0:96:AE:64:AA:A2:D3:C6:C5:41:26:12:5A:68
Certificate issuer:       /CN=A912FAA0/serialNumber=C535B6343EA9BF59EA82EEEE3AFB8A4000DE8BB2
Certificate serial:       0361
Authority key identifier: C5:35:B6:34:3E:A9:BF:59:EA:82:EE:EE:3A:FB:8A:40:00:DE:8B:B2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xTW2ND6pv1nqgu7uOvuKQADei7I.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/5A591BB025E011EC9E89C60AC4F9AE02.roa
Signing time:             Mon 03 Jul 2023 01:11:29 +0000
ROA not before:           Mon 03 Jul 2023 01:11:29 +0000
ROA not after:            Mon 30 Sep 2024 00:00:00 +0000
asID:                     146993
IP address blocks:        103.255.56.0/22 maxlen: 24

Validation:               Failed, certificate revoked on Sat 07 Sep 2024 12:23:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 865 (0x361)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A912FAA0/serialNumber=C535B6343EA9BF59EA82EEEE3AFB8A4000DE8BB2
        Validity
            Not Before: Jul  3 01:11:29 2023 GMT
            Not After : Sep 30 00:00:00 2024 GMT
        Subject: CN=64a22041-d0f9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f6:89:83:05:30:f5:a4:34:66:cd:35:16:09:34:
                    f9:07:ec:ac:36:af:8c:e4:51:fe:3b:17:10:4f:02:
                    8f:e5:e4:b1:07:5d:c8:0b:1a:7b:85:d9:16:84:f6:
                    d7:06:60:87:32:72:53:ea:e9:8d:5f:35:76:1a:a2:
                    91:10:2b:a4:3d:3e:2f:c9:8f:78:d1:f0:e8:1b:63:
                    61:29:96:3f:59:b1:1e:4d:08:89:72:e8:31:a7:a9:
                    cf:6f:ab:11:bd:ea:69:1b:68:25:92:79:8e:68:35:
                    f7:af:0c:85:af:27:6b:38:62:24:8c:64:34:9d:1c:
                    37:46:1c:81:a4:25:27:41:4e:c0:e9:a8:db:40:26:
                    89:08:28:f9:d3:5b:6f:4a:74:3a:94:79:f0:aa:f5:
                    3c:02:91:b0:93:f0:0f:42:aa:1a:a3:bd:1b:70:60:
                    c9:64:aa:2b:36:28:c6:83:60:5a:b1:cc:d1:58:d2:
                    ff:1b:7b:ba:63:ae:5f:bd:fe:c5:ed:95:22:ad:92:
                    9e:97:11:43:22:5d:71:73:1b:c6:4f:54:46:8a:82:
                    4c:49:38:78:08:0e:7d:46:07:cf:2e:85:db:f2:e2:
                    04:73:c6:59:26:62:d9:53:d4:47:a1:2f:db:ed:c4:
                    19:be:c7:cd:c3:b1:ca:e9:e0:96:7b:48:b8:98:c5:
                    92:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:2F:3F:5E:B4:1B:E0:96:AE:64:AA:A2:D3:C6:C5:41:26:12:5A:68
            X509v3 Authority Key Identifier:
                keyid:C5:35:B6:34:3E:A9:BF:59:EA:82:EE:EE:3A:FB:8A:40:00:DE:8B:B2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/xTW2ND6pv1nqgu7uOvuKQADei7I.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xTW2ND6pv1nqgu7uOvuKQADei7I.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/5A591BB025E011EC9E89C60AC4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.255.56.0/22

    Signature Algorithm: sha256WithRSAEncryption
         ae:87:89:47:a6:ed:c2:ae:83:ba:73:60:31:f4:d2:19:9c:18:
         74:ce:a2:aa:d9:be:62:45:54:47:9b:9b:6b:6f:f9:89:71:92:
         25:49:14:1e:21:3d:26:ab:4b:92:6c:60:db:75:4c:fe:e8:ef:
         58:6e:aa:e8:52:20:ab:9e:51:01:b6:29:d2:e2:19:21:73:a0:
         1c:cb:4c:84:75:23:d5:b3:a8:c8:96:d7:c8:e8:fa:b0:82:1a:
         c6:77:cd:1a:fd:b1:40:2a:f2:91:c1:a9:c3:b9:6a:f1:77:cb:
         24:d1:af:8c:4b:5c:62:b3:fb:aa:f2:89:7b:e4:4c:6b:4c:35:
         cc:ee:67:57:97:d6:00:db:b4:d5:12:d0:55:74:dc:81:0d:f3:
         6f:49:ce:c8:61:ab:17:d1:9d:e9:3d:ff:33:0d:a8:5d:dd:a8:
         f5:99:93:77:b7:f6:e7:ef:58:cd:06:46:ad:dd:13:f5:a2:76:
         ab:07:0c:c0:5b:22:d8:15:11:62:27:e2:db:69:25:13:d8:08:
         14:8b:e1:f8:3f:7e:d0:9f:b7:38:32:2a:6f:9f:6c:5b:5b:18:
         7f:f2:05:bf:87:3c:88:12:62:8d:54:62:49:89:6e:7a:48:72:
         83:33:fc:ba:a1:88:74:d1:f7:26:23:7a:e3:95:b3:5f:22:a6:
         e5:b0:af:aa
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICA2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MkZBQTAxMTAvBgNVBAUTKEM1MzVCNjM0M0VBOUJGNTlFQTgyRUVFRTNBRkI4QTQw
MDBERThCQjIwHhcNMjMwNzAzMDExMTI5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NGEyMjA0MS1kMGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA9omDBTD1pDRmzTUWCTT5B+ysNq+M5FH+OxcQTwKP5eSxB13ICxp7hdkWhPbX
BmCHMnJT6umNXzV2GqKRECukPT4vyY940fDoG2NhKZY/WbEeTQiJcugxp6nPb6sR
veppG2glknmOaDX3rwyFrydrOGIkjGQ0nRw3RhyBpCUnQU7A6ajbQCaJCCj501tv
SnQ6lHnwqvU8ApGwk/APQqoao70bcGDJZKorNijGg2BasczRWNL/G3u6Y65fvf7F
7ZUirZKelxFDIl1xcxvGT1RGioJMSTh4CA59RgfPLoXb8uIEc8ZZJmLZU9RHoS/b
7cQZvsfNw7HK6eCWe0i4mMWSqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMYvP160
G+CWrmSqotPGxUEmElpoMB8GA1UdIwQYMBaAFMU1tjQ+qb9Z6oLu7jr7ikAA3ouy
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkFBMC9BNjMzN0JFMjI1
REMxMUVDOTUxRUNFODJDNEY5QUUwMi94VFcyTkQ2cHYxbnFndTd1T3Z1S1FBRGVp
N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3hUVzJORDZwdjFucWd1N3VPdnVLUUFEZWk3SS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MkZBQTAvQTYzMzdCRTIyNURDMTFFQzk1MUVDRTgyQzRGOUFFMDIvNUE1OTFCQjAy
NUUwMTFFQzlFODlDNjBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAJn/zgwDQYJKoZIhvcNAQELBQADggEBAK6HiUem7cKug7pz
YDH00hmcGHTOoqrZvmJFVEebm2tv+YlxkiVJFB4hPSarS5JsYNt1TP7o71huquhS
IKueUQG2KdLiGSFzoBzLTIR1I9WzqMiW18jo+rCCGsZ3zRr9sUAq8pHBqcO5avF3
yyTRr4xLXGKz+6ryiXvkTGtMNczuZ1eX1gDbtNUS0FV03IEN829JzshhqxfRnek9
/zMNqF3dqPWZk3e39ufvWM0GRq3dE/WidqsHDMBbItgVEWIn4ttpJRPYCBSL4fg/
ftCftzgyKm+fbFtbGH/yBb+HPIgSYo1UYkmJbnpIcoMz/LqhiHTR9yYjeuOVs18i
puWwr6o=
-----END CERTIFICATE-----
Generated at Sat Sep 7 15:32:40 2024 by rpki-client on console-ams.rpki-client.org