Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A9136655/F707F4640A9811EABDCAA17CC4F9AE02/EB178426B21A11ED84E25A26C4F9AE02.roa
File:                     EB178426B21A11ED84E25A26C4F9AE02.roa (raw, json)
Hash identifier:          mCs5aM26Uxw4AJ/Ax2/LfnKNqjFpSJZdVYWN0Eyue7g=
Subject key identifier:   E3:16:BB:0D:FB:22:91:3E:68:2A:1D:BE:77:30:6E:FE:12:E4:62:DD
Certificate issuer:       /CN=A9136655/serialNumber=70579F7F5F1B21DFC9DE667C6B3C21F16F87D572
Certificate serial:       0B41
Authority key identifier: 70:57:9F:7F:5F:1B:21:DF:C9:DE:66:7C:6B:3C:21:F1:6F:87:D5:72
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFeff18bId_J3mZ8azwh8W-H1XI.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A9136655/F707F4640A9811EABDCAA17CC4F9AE02/EB178426B21A11ED84E25A26C4F9AE02.roa
Signing time:             Fri 02 Feb 2024 19:37:29 +0000
ROA not before:           Fri 02 Feb 2024 19:37:29 +0000
ROA not after:            Mon 31 Mar 2025 00:00:00 +0000
asID:                     136014
IP address blocks:        103.132.178.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Fri 24 May 2024 11:58:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2881 (0xb41)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9136655/serialNumber=70579F7F5F1B21DFC9DE667C6B3C21F16F87D572
        Validity
            Not Before: Feb  2 19:37:29 2024 GMT
            Not After : Mar 31 00:00:00 2025 GMT
        Subject: CN=65bd4479-8425
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:ef:75:cb:7f:0f:2f:30:84:6d:fd:b9:3a:b7:
                    06:30:b5:44:09:f0:5a:c1:80:a6:91:ab:d8:04:b4:
                    89:49:3b:2d:06:6f:48:2e:57:e3:ef:6d:39:26:94:
                    0e:27:d8:71:72:9e:cc:98:41:61:32:53:5f:cc:bb:
                    46:45:75:51:fd:ee:64:07:61:a5:d7:4a:55:20:9a:
                    be:70:b3:02:24:55:30:5a:a9:32:1c:b5:1c:34:b7:
                    d2:bb:2f:60:56:73:1f:57:e6:71:d3:6a:6e:5f:9f:
                    a6:9d:21:a2:6c:61:19:2b:19:4b:0a:37:77:e3:50:
                    b0:8f:a7:c4:37:65:94:02:bf:e5:d5:9a:30:e7:a3:
                    12:a9:2c:1c:ce:08:d5:ba:bb:c7:36:bb:b6:0b:60:
                    bb:93:1e:6e:d7:7d:22:2d:2f:0f:3b:79:c3:65:36:
                    34:7e:ee:76:ae:fb:c8:12:c7:8b:a9:24:a0:c0:89:
                    14:1b:5c:6d:c2:d3:30:01:88:c7:21:b5:46:a0:3b:
                    1a:00:a0:66:44:60:02:f3:6b:05:e8:af:a2:45:61:
                    52:81:9d:06:cc:a4:94:62:5b:40:bd:dc:fb:ec:1a:
                    90:18:e4:4b:a4:ec:01:b3:6b:1e:a9:07:00:97:bd:
                    49:88:89:2b:ce:30:f9:47:f8:cc:ff:87:85:8f:80:
                    46:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:16:BB:0D:FB:22:91:3E:68:2A:1D:BE:77:30:6E:FE:12:E4:62:DD
            X509v3 Authority Key Identifier:
                keyid:70:57:9F:7F:5F:1B:21:DF:C9:DE:66:7C:6B:3C:21:F1:6F:87:D5:72

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A9136655/F707F4640A9811EABDCAA17CC4F9AE02/cFeff18bId_J3mZ8azwh8W-H1XI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFeff18bId_J3mZ8azwh8W-H1XI.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136655/F707F4640A9811EABDCAA17CC4F9AE02/EB178426B21A11ED84E25A26C4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.132.178.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a5:36:1f:82:bd:55:0f:06:a6:9c:79:76:1f:9c:fa:f4:75:eb:
         ad:a1:50:e6:97:4b:42:80:91:f4:fa:27:e7:c9:20:6f:4c:81:
         3e:8c:48:73:a7:fb:0c:32:56:44:5e:d2:f5:0a:07:3b:dc:14:
         d1:02:88:cf:80:98:aa:52:f4:96:d6:ad:2e:9b:5d:da:9e:2b:
         7e:8a:a2:df:6c:d9:1e:d8:14:79:2e:ab:46:cb:64:b9:3d:3c:
         ea:d1:ae:9e:08:78:57:0d:e8:cb:18:5a:89:86:27:28:44:40:
         3c:80:f9:50:8a:f2:9b:6c:f9:4c:8d:51:12:56:20:82:76:68:
         63:11:38:00:18:de:ec:8d:c9:52:9e:a6:c7:6d:0c:f4:f6:b2:
         32:6f:0b:61:8f:c5:e6:92:fb:5f:82:0c:96:3a:4f:c8:e3:68:
         93:4a:75:cf:3c:7b:43:a0:55:65:fc:b9:29:29:2b:1b:ab:24:
         35:ef:9b:a8:3c:a9:2b:f2:9a:4f:71:e8:ec:0b:a8:f1:dd:ac:
         aa:31:b6:25:5b:51:a6:7b:a0:72:49:69:80:7c:59:f7:06:d1:
         35:b3:f1:45:5d:56:9c:5a:35:6c:5d:b4:d5:43:0f:f1:af:6a:
         09:68:63:dc:c0:32:37:fa:70:75:8a:60:1e:0c:15:ae:44:a3:
         94:f6:08:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:02 2024 by rpki-client on console-fra.rpki-client.org