Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/E2F151268A3811EFB684037EC4F9AE02.roa
File: E2F151268A3811EFB684037EC4F9AE02.roa (raw, json)
Hash identifier: RJoXdW7XhcLcqnaa1C0ls1SEfyTxnzsV9Uz0C7RxbSk=
Subject key identifier: 4B:2F:E3:F7:9B:9E:EB:B5:F8:27:F2:C5:9D:8E:6C:8B:2A:15:7F:DC
Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B
Certificate serial: 21AA
Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/E2F151268A3811EFB684037EC4F9AE02.roa
Signing time: Mon 14 Oct 2024 15:44:10 +0000
ROA not before: Mon 14 Oct 2024 15:44:10 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 59.153.30.0/24 maxlen: 24
180.210.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Nov 2024 16:02:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8618 (0x21aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B
Validity
Not Before: Oct 14 15:44:10 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=670d3c4a-0d36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:02:79:60:32:2d:7d:0e:9c:df:10:bd:a4:67:
f7:92:9f:d4:95:28:79:1e:fe:67:57:78:bc:b6:0d:
36:9c:2e:87:d7:d8:f8:b2:c0:4a:9a:6d:3a:72:4c:
e4:ec:f9:96:b0:34:ef:9c:6f:f3:e0:2d:c9:5b:a2:
f7:b6:8e:83:2a:d7:69:b1:d0:f5:dc:48:03:c8:ef:
d1:a5:b4:f1:a7:7c:f6:8d:10:78:26:72:30:57:70:
e4:d7:e4:8d:0f:f1:32:2d:ea:a2:94:41:d9:78:16:
b0:f8:ac:0a:0e:b9:18:52:b0:b4:80:1a:75:f8:57:
06:63:9b:64:38:e3:77:81:d3:c9:76:ae:06:ad:06:
4d:67:fe:28:2d:46:b9:bb:a8:de:0f:0d:8a:c3:27:
4e:4f:d9:2b:05:8a:cd:24:98:16:fb:94:34:21:fd:
a1:c4:85:61:13:d4:27:0c:d6:b4:de:5e:81:5c:d8:
73:d5:8c:f5:6c:14:4e:1a:1d:bd:db:ba:5b:86:d8:
57:89:68:69:40:f8:73:fb:bc:51:01:2b:37:06:40:
e4:b2:61:ca:dc:d4:ae:fd:9b:2b:e6:ba:4c:f2:e0:
19:34:66:2f:c4:ea:67:a1:6f:1d:01:e3:bf:f7:2f:
5f:3f:83:89:8a:be:0a:d6:06:b8:0d:85:ce:1a:63:
fd:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:2F:E3:F7:9B:9E:EB:B5:F8:27:F2:C5:9D:8E:6C:8B:2A:15:7F:DC
X509v3 Authority Key Identifier:
keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/E2F151268A3811EFB684037EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.153.30.0/24
180.210.221.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:c2:af:73:e2:69:0c:13:97:77:b7:db:d2:4e:e0:6d:0b:fa:
1c:66:76:d7:cd:2a:2c:dc:a8:70:77:3d:16:a2:e9:e6:0e:1d:
2a:6d:51:ed:ea:98:79:45:79:d8:27:e2:a5:35:d9:21:d6:b4:
77:fb:77:fb:fc:83:2a:a5:ed:23:bc:6a:3c:be:a6:03:9f:f1:
4b:f8:64:af:b4:e3:19:55:7e:1a:b6:8d:8b:54:39:9a:e4:50:
a3:19:58:a6:7c:2b:e5:e9:31:07:dc:dc:2b:ef:e9:96:fc:e4:
7b:c2:15:82:4e:c8:7e:e6:c7:c8:bd:df:e5:20:4b:aa:f2:b7:
99:5c:97:b9:dc:13:1d:8d:1c:94:4e:58:96:1f:2e:4c:e8:30:
ac:fc:84:22:c7:5a:8e:4d:b6:0d:c7:cb:db:4d:d0:ba:81:c8:
31:40:bb:b9:0c:99:6f:81:f4:bd:7c:d3:e2:65:4b:48:70:ad:
89:12:73:44:f9:3d:02:d6:65:0f:cb:b0:0e:a6:a6:90:6a:47:
a8:5e:15:c1:5b:18:26:e1:41:19:90:7e:63:b1:ce:3e:fa:39:
c0:bc:9d:f3:02:6b:52:c3:65:a3:59:54:6c:db:09:b0:f5:08:
39:d3:94:d2:b9:82:ca:2d:32:8b:70:1d:40:4a:34:0c:f6:82:
17:d8:a9:23
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgICIaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2
OEY2OTg1M0IwHhcNMjQxMDE0MTU0NDEwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzBkM2M0YS0wZDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA6gJ5YDItfQ6c3xC9pGf3kp/UlSh5Hv5nV3i8tg02nC6H19j4ssBKmm06ckzk
7PmWsDTvnG/z4C3JW6L3to6DKtdpsdD13EgDyO/RpbTxp3z2jRB4JnIwV3Dk1+SN
D/EyLeqilEHZeBaw+KwKDrkYUrC0gBp1+FcGY5tkOON3gdPJdq4GrQZNZ/4oLUa5
u6jeDw2KwydOT9krBYrNJJgW+5Q0If2hxIVhE9QnDNa03l6BXNhz1Yz1bBROGh29
27pbhthXiWhpQPhz+7xRASs3BkDksmHK3NSu/Zsr5rpM8uAZNGYvxOpnoW8dAeO/
9y9fP4OJir4K1ga4DYXOGmP9eQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEsv4/eb
nuu1+CfyxZ2ObIsqFX/cMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy
RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo
VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MkZDRDYvMUU5RTFBQUNEMkVBMTFFNUFGQjFFMjRDQzRGOUFFMDIvRTJGMTUxMjY4
QTM4MTFFRkI2ODQwMzdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E
FjAUMBIEAgABMAwDBAA7mR4DBAC00t0wDQYJKoZIhvcNAQELBQADggEBAIzCr3Pi
aQwTl3e329JO4G0L+hxmdtfNKizcqHB3PRai6eYOHSptUe3qmHlFedgn4qU12SHW
tHf7d/v8gyql7SO8ajy+pgOf8Uv4ZK+04xlVfhq2jYtUOZrkUKMZWKZ8K+XpMQfc
3Cvv6Zb85HvCFYJOyH7mx8i93+UgS6ryt5lcl7ncEx2NHJROWJYfLkzoMKz8hCLH
Wo5Ntg3Hy9tN0LqByDFAu7kMmW+B9L180+JlS0hwrYkSc0T5PQLWZQ/LsA6mppBq
R6heFcFbGCbhQRmQfmOxzj76OcC8nfMCa1LDZaNZVGzbCbD1CDnTlNK5gsotMotw
HUBKNAz2ghfYqSM=
-----END CERTIFICATE-----
Generated at Fri Nov 15 19:15:26 2024 by rpki-client on console-ams.rpki-client.org