Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143C5C/F652EFF894E811EAB0C01668C4F9AE02/F616AAB8C08511ED86BEFA59C4F9AE02.roa
File: F616AAB8C08511ED86BEFA59C4F9AE02.roa (raw, json)
Hash identifier: qHmXir7+ajau+kuXM6CcM3fe0bpCzBdtLSypWd/Lt+M=
Subject key identifier: 42:16:B2:B2:B6:C3:D1:F6:FD:15:11:B8:64:01:CC:7C:FC:CD:2D:E5
Certificate issuer: /CN=A9143C5C/serialNumber=72F2CB33D77C163899E5350D8E801E7170E484DE
Certificate serial: 0817
Authority key identifier: 72:F2:CB:33:D7:7C:16:38:99:E5:35:0D:8E:80:1E:71:70:E4:84:DE
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cvLLM9d8FjiZ5TUNjoAecXDkhN4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9143C5C/F652EFF894E811EAB0C01668C4F9AE02/F616AAB8C08511ED86BEFA59C4F9AE02.roa
Signing time: Sun 16 Jul 2023 20:57:34 +0000
ROA not before: Sun 16 Jul 2023 20:57:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23991
IP address blocks: 103.151.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 12 Nov 2023 05:54:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2071 (0x817)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9143C5C/serialNumber=72F2CB33D77C163899E5350D8E801E7170E484DE
Validity
Not Before: Jul 16 20:57:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64b459bd-445b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:59:75:20:2e:08:6b:69:32:b2:69:78:80:3d:
62:89:48:ba:96:cf:72:25:37:a6:ea:b4:6e:8a:7e:
b6:dc:4b:0e:fb:a7:29:15:4d:5d:98:85:e1:aa:45:
b3:18:b2:ee:8f:2e:66:b2:01:85:45:2b:06:72:1f:
c5:73:be:85:80:20:73:a9:53:61:7e:82:33:a5:51:
6c:bc:82:62:35:0a:63:df:6b:66:9e:ba:a2:e9:28:
e3:62:cd:e0:24:91:06:59:0b:7e:a2:c7:23:b7:fb:
11:35:55:bd:70:27:23:7d:52:ec:78:36:08:be:62:
f2:c9:97:a3:fa:6d:46:98:7e:34:bf:1e:d4:ad:45:
cd:8a:1a:54:99:61:56:9b:09:01:64:5a:4b:e0:a6:
e7:0d:8c:6a:87:72:05:7e:57:fe:d4:ec:fd:b4:b4:
6c:57:bd:69:ab:7e:6d:35:89:4f:7d:7c:30:c4:05:
49:47:a0:b1:9c:c7:4b:bd:7f:20:f0:2d:6b:80:e7:
99:11:d1:44:73:68:e4:11:99:a7:a7:ef:a8:a0:71:
af:b7:fa:df:94:cd:65:af:6a:75:6b:14:22:36:a6:
cb:0f:f4:ad:57:89:c3:bc:91:c9:e9:fd:f9:81:84:
99:00:94:e2:55:dd:3e:86:b5:0c:fa:ab:96:86:e6:
c2:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:16:B2:B2:B6:C3:D1:F6:FD:15:11:B8:64:01:CC:7C:FC:CD:2D:E5
X509v3 Authority Key Identifier:
keyid:72:F2:CB:33:D7:7C:16:38:99:E5:35:0D:8E:80:1E:71:70:E4:84:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9143C5C/F652EFF894E811EAB0C01668C4F9AE02/cvLLM9d8FjiZ5TUNjoAecXDkhN4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cvLLM9d8FjiZ5TUNjoAecXDkhN4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143C5C/F652EFF894E811EAB0C01668C4F9AE02/F616AAB8C08511ED86BEFA59C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.151.59.0/24
Signature Algorithm: sha256WithRSAEncryption
77:bd:1c:1f:55:19:10:b2:24:b5:b9:2c:51:be:81:2f:53:8b:
bc:ea:18:eb:52:82:5b:a5:d0:93:c9:5b:86:33:3b:cf:d7:cd:
53:17:b4:36:0e:69:02:cc:c2:9b:e6:cc:68:b9:ec:c1:fd:52:
e8:3c:76:b7:46:23:64:e1:42:ad:1d:d5:63:ee:03:ba:b1:c5:
25:12:8a:e8:a6:ff:9a:0c:3b:11:a0:7c:79:0f:0f:00:73:be:
db:f3:ec:41:a0:11:a4:97:09:9a:ca:b2:ed:8e:67:39:12:ab:
7a:84:64:26:7a:49:45:8d:7c:06:ce:d6:af:2e:32:d2:c0:5d:
76:2c:71:fb:5c:50:2b:b4:2e:14:64:25:28:40:ba:ee:c3:60:
be:92:fe:f7:54:3f:77:2d:83:85:3f:8c:e9:14:8f:c4:9c:e5:
e8:19:a9:85:c2:02:61:f6:21:39:dd:7e:c4:2b:64:df:3c:7a:
29:af:16:e7:33:aa:be:98:f8:89:c2:47:2f:74:b7:d5:ed:25:
19:8f:34:b5:0a:f3:ed:ff:f5:70:b9:5c:49:25:1b:c8:8f:f7:
d3:fd:8a:c4:bf:aa:f1:d3:a9:cd:25:1d:43:ab:30:e7:10:cd:
a2:9b:7e:62:a8:4b:45:5f:4e:11:2d:66:28:ed:6b:f0:d5:c9:
70:87:b9:65
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICCBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDNDNUMxMTAvBgNVBAUTKDcyRjJDQjMzRDc3QzE2Mzg5OUU1MzUwRDhFODAxRTcx
NzBFNDg0REUwHhcNMjMwNzE2MjA1NzMzWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NGI0NTliZC00NDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAzVl1IC4Ia2kysml4gD1iiUi6ls9yJTem6rRuin623EsO+6cpFU1dmIXhqkWz
GLLujy5msgGFRSsGch/Fc76FgCBzqVNhfoIzpVFsvIJiNQpj32tmnrqi6SjjYs3g
JJEGWQt+oscjt/sRNVW9cCcjfVLseDYIvmLyyZej+m1GmH40vx7UrUXNihpUmWFW
mwkBZFpL4KbnDYxqh3IFflf+1Oz9tLRsV71pq35tNYlPfXwwxAVJR6CxnMdLvX8g
8C1rgOeZEdFEc2jkEZmnp++ooHGvt/rflM1lr2p1axQiNqbLD/StV4nDvJHJ6f35
gYSZAJTiVd0+hrUM+quWhubCVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEIWsrK2
w9H2/RURuGQBzHz8zS3lMB8GA1UdIwQYMBaAFHLyyzPXfBY4meU1DY6AHnFw5ITe
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0M1Qy9GNjUyRUZGODk0
RTgxMUVBQjBDMDE2NjhDNEY5QUUwMi9jdkxMTTlkOEZqaVo1VFVOam9BZWNYRGto
TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2N2TExNOWQ4RmppWjVUVU5qb0FlY1hEa2hONC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDNDNUMvRjY1MkVGRjg5NEU4MTFFQUIwQzAxNjY4QzRGOUFFMDIvRjYxNkFBQjhD
MDg1MTFFRDg2QkVGQTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnlzswDQYJKoZIhvcNAQELBQADggEBAHe9HB9VGRCyJLW5
LFG+gS9Ti7zqGOtSglul0JPJW4YzO8/XzVMXtDYOaQLMwpvmzGi57MH9Uug8drdG
I2ThQq0d1WPuA7qxxSUSiuim/5oMOxGgfHkPDwBzvtvz7EGgEaSXCZrKsu2OZzkS
q3qEZCZ6SUWNfAbO1q8uMtLAXXYscftcUCu0LhRkJShAuu7DYL6S/vdUP3ctg4U/
jOkUj8Sc5egZqYXCAmH2ITndfsQrZN88eimvFuczqr6Y+InCRy90t9XtJRmPNLUK
8+3/9XC5XEklG8iP99P9isS/qvHTqc0lHUOrMOcQzaKbfmKoS0VfThEtZijta/DV
yXCHuWU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:04 2024 by rpki-client on console-fra.rpki-client.org