Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914198D/AA5B9BCC92D411E7AF52487DC4F9AE02/86E59A2A92D511E7A23CEC7DC4F9AE02.roa
File: 86E59A2A92D511E7A23CEC7DC4F9AE02.roa (raw, json)
Hash identifier: 3cQUcrT1u/oG1Q/aPaOZVb5lBnZkEYK8xTBgis0daP4=
Subject key identifier: F6:80:E1:7A:FD:80:62:7A:49:E5:54:BA:A2:12:09:A0:D1:87:8C:20
Certificate issuer: /CN=A914198D/serialNumber=DFA78706BEE5521A1B5B5145701E594F3C5D2096
Certificate serial: 1813
Authority key identifier: DF:A7:87:06:BE:E5:52:1A:1B:5B:51:45:70:1E:59:4F:3C:5D:20:96
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/36eHBr7lUhobW1FFcB5ZTzxdIJY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914198D/AA5B9BCC92D411E7AF52487DC4F9AE02/86E59A2A92D511E7A23CEC7DC4F9AE02.roa
Signing time: Wed 12 Jun 2024 17:48:02 +0000
ROA not before: Wed 12 Jun 2024 17:48:02 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 132730
IP address blocks: 103.90.148.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 10 Jul 2024 03:03:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6163 (0x1813)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914198D/serialNumber=DFA78706BEE5521A1B5B5145701E594F3C5D2096
Validity
Not Before: Jun 12 17:48:02 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6669df52-9a66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:40:21:b1:d1:6f:4b:4e:df:3d:12:79:8c:5a:
a4:c8:f9:7f:da:94:28:6d:5d:85:60:f6:6d:a4:61:
66:7f:7a:5b:d3:9c:2d:ed:db:34:7a:06:f8:6f:2d:
f7:32:b4:a4:26:37:b4:34:6d:98:a7:87:a7:34:ab:
58:28:61:8f:0c:18:bb:0f:4c:f7:9c:2e:70:23:2c:
ff:56:7b:15:b8:cc:ed:5f:3a:ed:6c:90:8a:0c:34:
a6:74:a1:b8:55:e0:3e:55:dc:be:88:f3:68:fa:d2:
36:bb:c0:67:9d:99:d1:88:2c:6f:39:fe:ee:c1:9c:
29:ea:9e:4b:aa:d0:5b:4d:8d:b4:4b:79:49:41:34:
0f:61:24:44:49:e6:d9:d6:84:0b:45:dd:68:e9:d5:
10:01:36:f0:b4:08:60:1a:5d:2f:2e:c0:a6:7d:d4:
d6:0a:46:8c:7d:c2:bc:a0:5a:71:a5:ad:8c:b1:15:
1f:d9:dc:5b:cd:77:2b:60:d4:1c:a9:cc:42:ad:a3:
0f:a0:3f:e1:d4:95:c8:3c:cb:bf:14:a3:1a:85:aa:
4f:67:2e:99:a5:a5:8c:56:d9:b2:06:38:f6:03:e5:
99:ea:4f:18:72:25:24:68:68:38:23:8b:c5:74:bb:
c6:b3:48:c7:17:96:30:32:97:f2:ff:c9:70:a9:a9:
35:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:80:E1:7A:FD:80:62:7A:49:E5:54:BA:A2:12:09:A0:D1:87:8C:20
X509v3 Authority Key Identifier:
keyid:DF:A7:87:06:BE:E5:52:1A:1B:5B:51:45:70:1E:59:4F:3C:5D:20:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914198D/AA5B9BCC92D411E7AF52487DC4F9AE02/36eHBr7lUhobW1FFcB5ZTzxdIJY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/36eHBr7lUhobW1FFcB5ZTzxdIJY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914198D/AA5B9BCC92D411E7AF52487DC4F9AE02/86E59A2A92D511E7A23CEC7DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.90.148.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:89:48:fd:d3:b3:75:01:88:f5:50:29:4f:63:73:66:b5:50:
bb:05:7f:5d:41:68:1d:35:22:60:ca:b8:8b:3f:2f:5e:2c:5a:
6c:af:a2:cb:05:7f:b4:9a:99:d1:0e:33:b3:95:0c:c8:b5:24:
cf:ae:fb:e9:a3:79:a4:0e:81:36:83:45:99:1a:c3:3e:7e:7b:
74:e4:85:a8:fc:45:f5:02:e4:57:9c:ae:05:d2:54:d5:6f:01:
30:d0:f3:20:34:0c:b3:d4:55:97:8c:f5:6c:e1:da:cd:ff:96:
f9:fe:b7:c1:6d:36:43:fc:d5:d7:c4:79:dc:cd:23:aa:c8:6f:
14:2a:cb:15:19:17:ce:39:97:d7:d5:63:d8:c4:b2:63:1c:06:
d9:3e:09:9f:9f:23:37:b0:c1:03:ac:e4:8e:ab:ce:bd:81:47:
c3:26:7c:4d:30:63:85:a7:78:93:c9:fb:79:4c:08:f4:1e:b9:
6d:65:ae:39:7e:d9:ee:41:51:52:97:f1:ab:ab:b4:8e:94:7a:
4b:9a:fd:b1:a8:60:66:30:41:3c:cd:fb:05:61:17:81:80:9d:
26:a4:bc:0f:d0:fe:ee:31:83:70:c8:d1:ad:29:b1:a1:35:c2:
36:33:9d:cb:f5:83:b2:2d:ce:ec:cb:62:7d:32:b8:75:9d:92:
0d:c9:b3:43
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICGBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDE5OEQxMTAvBgNVBAUTKERGQTc4NzA2QkVFNTUyMUExQjVCNTE0NTcwMUU1OTRG
M0M1RDIwOTYwHhcNMjQwNjEyMTc0ODAyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjY5ZGY1Mi05YTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA0EAhsdFvS07fPRJ5jFqkyPl/2pQobV2FYPZtpGFmf3pb05wt7ds0egb4by33
MrSkJje0NG2Yp4enNKtYKGGPDBi7D0z3nC5wIyz/VnsVuMztXzrtbJCKDDSmdKG4
VeA+Vdy+iPNo+tI2u8BnnZnRiCxvOf7uwZwp6p5LqtBbTY20S3lJQTQPYSRESebZ
1oQLRd1o6dUQATbwtAhgGl0vLsCmfdTWCkaMfcK8oFpxpa2MsRUf2dxbzXcrYNQc
qcxCraMPoD/h1JXIPMu/FKMahapPZy6ZpaWMVtmyBjj2A+WZ6k8YciUkaGg4I4vF
dLvGs0jHF5YwMpfy/8lwqak1UwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPaA4Xr9
gGJ6SeVUuqISCaDRh4wgMB8GA1UdIwQYMBaAFN+nhwa+5VIaG1tRRXAeWU88XSCW
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTk4RC9BQTVCOUJDQzky
RDQxMUU3QUY1MjQ4N0RDNEY5QUUwMi8zNmVIQnI3bFVob2JXMUZGY0I1WlR6eGRJ
SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzM2ZUhCcjdsVWhvYlcxRkZjQjVaVHp4ZElKWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDE5OEQvQUE1QjlCQ0M5MkQ0MTFFN0FGNTI0ODdEQzRGOUFFMDIvODZFNTlBMkE5
MkQ1MTFFN0EyM0NFQzdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAJnWpQwDQYJKoZIhvcNAQELBQADggEBAGyJSP3Ts3UBiPVQ
KU9jc2a1ULsFf11BaB01ImDKuIs/L14sWmyvossFf7SamdEOM7OVDMi1JM+u++mj
eaQOgTaDRZkawz5+e3Tkhaj8RfUC5FecrgXSVNVvATDQ8yA0DLPUVZeM9Wzh2s3/
lvn+t8FtNkP81dfEedzNI6rIbxQqyxUZF845l9fVY9jEsmMcBtk+CZ+fIzewwQOs
5I6rzr2BR8MmfE0wY4WneJPJ+3lMCPQeuW1lrjl+2e5BUVKX8aurtI6Uekua/bGo
YGYwQTzN+wVhF4GAnSakvA/Q/u4xg3DI0a0psaE1wjYzncv1g7ItzuzLYn0yuHWd
kg3Js0M=
-----END CERTIFICATE-----
Generated at Wed Jul 10 04:19:16 2024 by rpki-client on console-ams.rpki-client.org