Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/5A9D20920E5211EEB4699C4DC4F9AE02.roa
File: 5A9D20920E5211EEB4699C4DC4F9AE02.roa (raw, json)
Hash identifier: 6VF/r/sLK9bSyFZkrRivqEaulMpApnKTUd7lXhaYSA8=
Subject key identifier: C0:EB:B4:92:FF:BE:F1:29:12:00:F5:E1:2B:2C:DE:A1:54:01:A6:FD
Certificate issuer: /CN=A91383F0/serialNumber=1036C1E0FFE1CFC37D655D89FA65D65FE22E1F7A
Certificate serial: 06
Authority key identifier: 10:36:C1:E0:FF:E1:CF:C3:7D:65:5D:89:FA:65:D6:5F:E2:2E:1F:7A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDbB4P_hz8N9ZV2J-mXWX-IuH3o.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/5A9D20920E5211EEB4699C4DC4F9AE02.roa
Signing time: Mon 19 Jun 2023 03:35:37 +0000
ROA not before: Mon 19 Jun 2023 03:35:37 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 138362
IP address blocks: 103.221.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Jun 2023 04:05:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6 (0x6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91383F0/serialNumber=1036C1E0FFE1CFC37D655D89FA65D65FE22E1F7A
Validity
Not Before: Jun 19 03:35:37 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=648fcd08-7689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:55:89:4f:b1:0f:83:db:ad:55:2e:d8:8b:be:
66:86:dc:bb:1d:df:f9:c1:73:ab:77:1a:e0:56:7d:
5d:29:48:ea:e4:c6:75:59:4c:75:ac:bb:89:a0:4d:
69:40:8a:b2:bf:27:78:2d:4f:89:b1:b9:4a:6e:10:
f1:35:93:4a:63:04:95:1d:0d:9f:99:42:5f:15:92:
fe:46:24:88:75:73:91:b8:23:f1:1d:0b:e9:30:47:
e3:5c:5f:04:7a:1a:ea:8d:25:e5:0e:a1:86:52:e5:
d6:54:d0:dd:64:0e:97:aa:53:56:74:db:4e:17:89:
ba:c4:10:65:22:43:0e:41:f1:a3:8f:4e:c2:c7:b9:
a3:0b:82:21:e4:1a:b8:57:c5:69:a7:99:f4:00:a2:
2b:40:25:5c:a3:77:b0:a1:c0:a5:ad:20:46:f5:8e:
6c:6a:f2:93:ef:6d:7d:1f:5a:b5:27:42:c0:ed:dc:
11:6e:47:75:10:94:84:46:e8:ec:1e:23:38:04:da:
ec:23:57:5e:29:35:cc:30:3b:0f:40:36:fe:0d:0c:
a4:f1:d2:c3:55:0b:5b:3b:25:89:7e:21:d7:73:a9:
96:e6:82:03:35:f6:70:5d:99:5b:b1:9c:a8:93:b5:
b2:c9:12:98:03:f0:dd:78:46:6c:df:76:81:bc:8b:
59:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:EB:B4:92:FF:BE:F1:29:12:00:F5:E1:2B:2C:DE:A1:54:01:A6:FD
X509v3 Authority Key Identifier:
keyid:10:36:C1:E0:FF:E1:CF:C3:7D:65:5D:89:FA:65:D6:5F:E2:2E:1F:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/EDbB4P_hz8N9ZV2J-mXWX-IuH3o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDbB4P_hz8N9ZV2J-mXWX-IuH3o.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/5A9D20920E5211EEB4699C4DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.221.66.0/24
Signature Algorithm: sha256WithRSAEncryption
16:55:3c:ff:73:91:c2:30:90:66:64:c8:93:e4:38:e9:99:80:
77:48:df:5d:ad:e2:b2:9e:b8:80:46:7b:05:ac:c5:77:ed:06:
bd:fc:72:21:21:32:53:51:51:4d:10:14:3e:60:ff:16:f8:79:
71:80:37:1d:5e:2f:ef:f6:72:1e:9e:b0:0b:5f:70:53:cd:09:
c9:10:3d:9b:13:d9:19:80:20:5a:df:e4:2c:93:c5:69:96:e1:
e6:74:73:fd:dd:71:4a:43:27:cc:03:92:c0:08:cc:89:11:5c:
c1:14:32:73:71:c4:cd:79:e6:72:a7:3a:e2:38:ca:d4:de:93:
7c:09:c5:17:eb:75:ba:0e:aa:d8:0c:05:f0:f0:27:8d:9c:39:
b4:c3:cc:b5:d5:3c:38:83:6f:c6:ef:d3:ca:49:0a:40:6c:b4:
78:4b:71:5d:52:49:2d:42:2e:15:4c:f8:00:b6:fb:88:0c:76:
9a:8b:bc:f4:77:4e:b5:a8:61:6d:3c:67:db:99:a6:91:99:6f:
c0:57:da:bb:83:41:aa:85:64:19:dd:d0:a9:b4:8b:66:f6:f1:
cc:08:06:48:dd:79:04:9f:58:4a:c7:df:a7:d3:c4:a9:6b:2c:
11:9d:a7:bc:6d:72:55:46:04:4d:48:4a:cf:c1:51:62:17:ac:
15:db:1d:b4
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz
ODNGMDExMC8GA1UEBRMoMTAzNkMxRTBGRkUxQ0ZDMzdENjU1RDg5RkE2NUQ2NUZF
MjJFMUY3QTAeFw0yMzA2MTkwMzM1MzdaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV
BAMTDTY0OGZjZDA4LTc2ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDAVYlPsQ+D261VLtiLvmaG3Lsd3/nBc6t3GuBWfV0pSOrkxnVZTHWsu4mgTWlA
irK/J3gtT4mxuUpuEPE1k0pjBJUdDZ+ZQl8Vkv5GJIh1c5G4I/EdC+kwR+NcXwR6
GuqNJeUOoYZS5dZU0N1kDpeqU1Z0204XibrEEGUiQw5B8aOPTsLHuaMLgiHkGrhX
xWmnmfQAoitAJVyjd7ChwKWtIEb1jmxq8pPvbX0fWrUnQsDt3BFuR3UQlIRG6Owe
IzgE2uwjV14pNcwwOw9ANv4NDKTx0sNVC1s7JYl+IddzqZbmggM19nBdmVuxnKiT
tbLJEpgD8N14RmzfdoG8i1kHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUwOu0kv++
8SkSAPXhKyzeoVQBpv0wHwYDVR0jBBgwFoAUEDbB4P/hz8N9ZV2J+mXWX+IuH3ow
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4M0YwL0RDRkNBNkEyMEE4
MzExRUU5RTZBOTI1MEM0RjlBRTAyL0VEYkI0UF9oejhOOVpWMkotbVhXWC1JdUgz
by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvRURiQjRQX2h6OE45WlYySi1tWFdYLUl1SDNvLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz
ODNGMC9EQ0ZDQTZBMjBBODMxMUVFOUU2QTkyNTBDNEY5QUUwMi81QTlEMjA5MjBF
NTIxMUVFQjQ2OTlDNERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAGfdQjANBgkqhkiG9w0BAQsFAAOCAQEAFlU8/3ORwjCQZmTI
k+Q46ZmAd0jfXa3isp64gEZ7BazFd+0GvfxyISEyU1FRTRAUPmD/Fvh5cYA3HV4v
7/ZyHp6wC19wU80JyRA9mxPZGYAgWt/kLJPFaZbh5nRz/d1xSkMnzAOSwAjMiRFc
wRQyc3HEzXnmcqc64jjK1N6TfAnFF+t1ug6q2AwF8PAnjZw5tMPMtdU8OINvxu/T
ykkKQGy0eEtxXVJJLUIuFUz4ALb7iAx2mou89HdOtahhbTxn25mmkZlvwFfau4NB
qoVkGd3QqbSLZvbxzAgGSN15BJ9YSsffp9PEqWssEZ2nvG1yVUYETUhKz8FRYhes
FdsdtA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:02 2024 by rpki-client on console-fra.rpki-client.org