Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/144CF39E0BCD11EC85811A0DC4F9AE02.roa
File: 144CF39E0BCD11EC85811A0DC4F9AE02.roa (raw, json)
Hash identifier: 4QTKj0g01Bd7g3bz31icI30QfZMoSAQYLiAn5Y57r1U=
Subject key identifier: 1A:44:97:36:24:65:48:FD:02:28:34:19:35:C3:BB:DC:43:D5:A2:5D
Certificate issuer: /CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F
Certificate serial: 1581
Authority key identifier: 7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/144CF39E0BCD11EC85811A0DC4F9AE02.roa
Signing time: Fri 24 May 2024 17:26:00 +0000
ROA not before: Fri 24 May 2024 17:26:00 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 25605
IP address blocks: 202.79.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Oct 2024 04:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5505 (0x1581)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F
Validity
Not Before: May 24 17:26:00 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6650cda7-396c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4b:15:3b:80:d4:22:b2:e0:94:fa:53:8b:5c:
1d:a3:73:00:a0:1f:76:df:f2:50:48:10:0e:23:cf:
1c:8c:48:3e:e5:58:2c:d6:43:4e:c1:8e:5f:1f:2c:
04:db:b1:e8:64:d0:4b:c6:99:3d:15:09:c1:57:19:
02:42:05:42:0d:e7:3a:b7:4f:cd:1d:a4:67:43:b2:
87:e4:0c:ef:28:25:ae:0a:03:94:fd:32:f6:54:96:
0a:77:2b:ff:37:1d:fb:07:b8:5b:50:80:5b:da:30:
7c:5a:fd:b7:e2:16:08:f7:82:88:83:48:98:13:2c:
7e:48:ec:04:70:3a:81:71:d6:2e:e4:d1:c6:3d:d3:
45:4a:3f:45:1d:25:05:83:6f:a2:73:8e:4d:24:82:
60:d7:8c:f2:0e:f4:f3:53:de:c0:6d:62:78:da:b7:
cf:61:fe:d7:78:b4:71:96:26:ac:78:e7:d7:a1:1a:
03:84:ad:0d:97:72:f5:c0:0a:d4:ce:e7:5f:41:dd:
70:6d:a2:46:12:83:57:73:a3:48:d5:33:e3:06:de:
7e:59:5b:7d:4d:a7:13:3f:ee:28:a4:41:06:72:58:
68:25:25:ce:9d:04:b7:68:94:9e:61:05:3a:fe:77:
2a:0c:39:22:79:10:fd:88:4c:f0:a4:49:ff:53:b2:
e1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:44:97:36:24:65:48:FD:02:28:34:19:35:C3:BB:DC:43:D5:A2:5D
X509v3 Authority Key Identifier:
keyid:7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/144CF39E0BCD11EC85811A0DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.79.203.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:8d:19:30:9d:3b:54:04:ec:c7:f4:10:9a:29:b8:b4:a9:d5:
69:82:7f:6f:fc:95:21:8c:0a:b3:ef:ac:58:37:4d:b7:be:b0:
d7:b8:8e:c9:95:23:6d:62:5a:e1:9d:d0:39:b2:f1:1a:69:42:
ea:4c:e8:6d:08:ad:9b:ab:05:8a:e7:fd:40:c5:d9:82:bc:2e:
ff:f9:02:13:8e:6b:ed:a3:a5:e2:75:44:bc:52:30:ab:92:f0:
08:fa:9d:40:e9:58:62:11:94:ae:92:73:5a:fb:7e:e7:70:e4:
1c:07:05:74:88:d8:71:be:f2:ec:5e:75:18:2f:4d:4e:78:a1:
49:9a:2a:4f:f6:6c:4c:39:a9:54:b4:40:25:90:80:7a:64:1f:
c1:c3:6e:20:46:f4:9e:93:d0:a7:45:1d:57:be:96:f7:1b:bd:
bf:3f:61:04:42:e8:86:6a:2d:c1:58:59:32:c2:a9:7d:87:c9:
d1:39:75:41:40:1a:57:49:09:1e:b1:40:9d:1b:28:32:8f:8d:
0f:22:92:ab:e9:1e:16:91:eb:28:52:22:7d:3e:b4:9e:1c:b3:
81:e9:73:f5:9b:12:a2:7e:e1:0f:15:7a:fa:e6:bf:72:ac:a1:
a4:6e:73:be:87:39:a2:ee:dc:05:8d:b2:17:ac:16:7b:11:3d:
c1:57:74:c7
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICFYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDI1NEMxMTAvBgNVBAUTKDdCM0Y2MEQ5QjFBMjgwMDJBMDc4NzVDQUI1OEEyMTQ1
NzA3M0UxN0YwHhcNMjQwNTI0MTcyNjAwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjUwY2RhNy0zOTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAuksVO4DUIrLglPpTi1wdo3MAoB923/JQSBAOI88cjEg+5Vgs1kNOwY5fHywE
27HoZNBLxpk9FQnBVxkCQgVCDec6t0/NHaRnQ7KH5AzvKCWuCgOU/TL2VJYKdyv/
Nx37B7hbUIBb2jB8Wv234hYI94KIg0iYEyx+SOwEcDqBcdYu5NHGPdNFSj9FHSUF
g2+ic45NJIJg14zyDvTzU97AbWJ42rfPYf7XeLRxliaseOfXoRoDhK0Nl3L1wArU
zudfQd1wbaJGEoNXc6NI1TPjBt5+WVt9TacTP+4opEEGclhoJSXOnQS3aJSeYQU6
/ncqDDkieRD9iEzwpEn/U7LhFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBpElzYk
ZUj9Aig0GTXDu9xD1aJdMB8GA1UdIwQYMBaAFHs/YNmxooACoHh1yrWKIUVwc+F/
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjU0Qy81QTU2NEQ0ODE5
RTgxMUU4Qjk2NTBDN0VDNEY5QUUwMi9lejlnMmJHaWdBS2dlSFhLdFlvaFJYQno0
WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2V6OWcyYkdpZ0FLZ2VIWEt0WW9oUlhCejRYOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDI1NEMvNUE1NjRENDgxOUU4MTFFOEI5NjUwQzdFQzRGOUFFMDIvMTQ0Q0YzOUUw
QkNEMTFFQzg1ODExQTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADKT8swDQYJKoZIhvcNAQELBQADggEBANSNGTCdO1QE7Mf0
EJopuLSp1WmCf2/8lSGMCrPvrFg3Tbe+sNe4jsmVI21iWuGd0Dmy8RppQupM6G0I
rZurBYrn/UDF2YK8Lv/5AhOOa+2jpeJ1RLxSMKuS8Aj6nUDpWGIRlK6Sc1r7fudw
5BwHBXSI2HG+8uxedRgvTU54oUmaKk/2bEw5qVS0QCWQgHpkH8HDbiBG9J6T0KdF
HVe+lvcbvb8/YQRC6IZqLcFYWTLCqX2HydE5dUFAGldJCR6xQJ0bKDKPjQ8ikqvp
HhaR6yhSIn0+tJ4cs4Hpc/WbEqJ+4Q8Vevrmv3KsoaRuc76HOaLu3AWNshesFnsR
PcFXdMc=
-----END CERTIFICATE-----
Generated at Wed Oct 2 06:16:28 2024 by rpki-client on console-ams.rpki-client.org