Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91455BE/DDDA7ED6675411EE9DE70143C4F9AE02/27DE3D4C675511EEAD204D46C4F9AE02.roa
File: 27DE3D4C675511EEAD204D46C4F9AE02.roa (raw, json)
Hash identifier: qHL4gu1EUj7Oyzpx7BrZuPQd3XpAvcpeIebqUwat6IM=
Subject key identifier: 94:BE:B7:5B:F1:2D:C9:29:88:21:AF:D2:55:1C:43:EA:12:7C:54:C4
Certificate issuer: /CN=A91455BE/serialNumber=5839D445BA3B3F53E2D0A42023100B1875A96174
Certificate serial: 02
Authority key identifier: 58:39:D4:45:BA:3B:3F:53:E2:D0:A4:20:23:10:0B:18:75:A9:61:74
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WDnURbo7P1Pi0KQgIxALGHWpYXQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91455BE/DDDA7ED6675411EE9DE70143C4F9AE02/27DE3D4C675511EEAD204D46C4F9AE02.roa
Signing time: Tue 10 Oct 2023 10:09:53 +0000
ROA not before: Tue 10 Oct 2023 10:09:53 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 151351
IP address blocks: 103.134.148.0/23 maxlen: 23
2401:2e0::/33 maxlen: 33
Validation: Failed, certificate revoked on Tue 09 Jul 2024 05:47:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91455BE/serialNumber=5839D445BA3B3F53E2D0A42023100B1875A96174
Validity
Not Before: Oct 10 10:09:53 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=652522f1-bd58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4b:ff:1c:05:f8:4f:9d:96:47:de:51:fd:d7:
a0:e5:99:34:72:37:1d:3e:98:d7:eb:a3:18:ad:c9:
93:de:11:82:d9:84:dd:90:68:65:4a:5a:16:3f:ad:
06:fd:d1:ce:b8:a6:41:bc:76:d3:84:95:ac:74:20:
e4:ac:1c:ac:ef:66:20:45:68:9c:82:cf:e7:36:df:
e4:0b:77:a9:5c:5c:79:2e:01:7c:f0:7c:ad:92:85:
bf:db:05:18:e9:97:ae:db:e2:1b:fd:4f:f7:a3:6a:
8c:19:1b:bb:45:cd:32:35:dc:13:26:2a:e7:6a:db:
a6:2b:48:19:0e:f0:ef:f7:4e:53:fd:93:6b:68:c5:
e3:ba:a2:47:04:79:65:20:f2:ac:82:47:04:ba:67:
50:99:9f:6a:8e:66:fa:17:00:f8:5c:bf:e0:7b:7a:
9d:58:38:d0:74:9c:d8:80:c2:2b:d4:66:3c:5b:c8:
4c:ef:1d:fa:17:79:de:fb:8c:8e:b7:40:3e:7e:a6:
bc:58:a1:16:5d:a4:66:b4:a8:a5:d9:3d:76:b5:70:
97:4f:49:e8:80:73:7e:77:db:c3:b7:f0:05:bd:1f:
b2:f2:43:25:45:1b:3b:22:68:14:21:c3:c0:62:1d:
dc:bf:0f:cf:d3:95:e9:97:c3:06:fd:7d:96:1d:16:
7e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:BE:B7:5B:F1:2D:C9:29:88:21:AF:D2:55:1C:43:EA:12:7C:54:C4
X509v3 Authority Key Identifier:
keyid:58:39:D4:45:BA:3B:3F:53:E2:D0:A4:20:23:10:0B:18:75:A9:61:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91455BE/DDDA7ED6675411EE9DE70143C4F9AE02/WDnURbo7P1Pi0KQgIxALGHWpYXQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WDnURbo7P1Pi0KQgIxALGHWpYXQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91455BE/DDDA7ED6675411EE9DE70143C4F9AE02/27DE3D4C675511EEAD204D46C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.134.148.0/23
IPv6:
2401:2e0::/33
Signature Algorithm: sha256WithRSAEncryption
70:f3:90:5c:08:b2:c5:d4:a7:b8:9f:e4:9f:71:83:b3:ad:ae:
d1:09:1d:e2:8d:9f:33:ba:fb:f9:a5:ac:ba:14:52:9c:09:a8:
a0:cb:9a:f6:3b:4b:0c:64:9e:8f:5f:40:2c:93:7d:5a:e0:31:
0e:c1:04:ba:df:17:48:cd:35:8c:f5:92:e3:46:a4:30:e7:da:
c0:5e:3f:c8:20:c5:f9:1c:0e:9e:4f:07:dd:09:e9:9e:30:4e:
66:e4:fc:84:4f:b1:20:55:01:6b:92:b0:b0:3f:cc:b4:ac:ed:
47:3f:98:7b:ee:bc:48:44:3b:a1:71:f9:ab:c3:99:70:54:ef:
24:e7:9f:a3:46:89:b9:e3:37:b5:9b:81:7a:e9:00:10:93:a6:
ff:fa:d6:ef:d8:a4:d3:ac:a6:50:c4:94:7c:e6:31:6a:c6:e8:
be:1f:37:3e:c6:d6:16:c4:ff:12:d2:0e:08:2a:c4:d8:c5:61:
a5:b9:52:ee:32:af:30:7a:ac:9b:74:41:77:16:af:0d:80:88:
ae:ca:6d:b3:5c:3d:ce:d7:75:08:6d:b0:f7:6e:49:54:33:0b:
c3:33:2a:f1:67:a7:ff:fb:6a:c0:8d:68:44:60:7e:a8:84:26:
7f:66:07:c7:88:52:94:76:47:2a:c2:7a:0c:eb:d1:e1:39:db:
30:33:db:74
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0
NTVCRTExMC8GA1UEBRMoNTgzOUQ0NDVCQTNCM0Y1M0UyRDBBNDIwMjMxMDBCMTg3
NUE5NjE3NDAeFw0yMzEwMTAxMDA5NTNaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY1MjUyMmYxLWJkNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQClS/8cBfhPnZZH3lH916DlmTRyNx0+mNfroxityZPeEYLZhN2QaGVKWhY/rQb9
0c64pkG8dtOElax0IOSsHKzvZiBFaJyCz+c23+QLd6lcXHkuAXzwfK2Shb/bBRjp
l67b4hv9T/ejaowZG7tFzTI13BMmKudq26YrSBkO8O/3TlP9k2toxeO6okcEeWUg
8qyCRwS6Z1CZn2qOZvoXAPhcv+B7ep1YONB0nNiAwivUZjxbyEzvHfoXed77jI63
QD5+prxYoRZdpGa0qKXZPXa1cJdPSeiAc35328O38AW9H7LyQyVFGzsiaBQhw8Bi
Hdy/D8/TlemXwwb9fZYdFn6nAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUlL63W/Et
ySmIIa/SVRxD6hJ8VMQwHwYDVR0jBBgwFoAUWDnURbo7P1Pi0KQgIxALGHWpYXQw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1NUJFL0REREE3RUQ2Njc1
NDExRUU5REU3MDE0M0M0RjlBRTAyL1dEblVSYm83UDFQaTBLUWdJeEFMR0hXcFlY
US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvV0RuVVJibzdQMVBpMEtRZ0l4QUxHSFdwWVhRLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0
NTVCRS9ERERBN0VENjY3NTQxMUVFOURFNzAxNDNDNEY5QUUwMi8yN0RFM0Q0QzY3
NTUxMUVFQUQyMDRENDZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAvBggrBgEFBQcBBwEB/wQg
MB4wDAQCAAEwBgMEAWeGlDAOBAIAAjAIAwYHJAEC4AAwDQYJKoZIhvcNAQELBQAD
ggEBAHDzkFwIssXUp7if5J9xg7OtrtEJHeKNnzO6+/mlrLoUUpwJqKDLmvY7Swxk
no9fQCyTfVrgMQ7BBLrfF0jNNYz1kuNGpDDn2sBeP8ggxfkcDp5PB90J6Z4wTmbk
/IRPsSBVAWuSsLA/zLSs7Uc/mHvuvEhEO6Fx+avDmXBU7yTnn6NGibnjN7WbgXrp
ABCTpv/61u/YpNOsplDElHzmMWrG6L4fNz7G1hbE/xLSDggqxNjFYaW5Uu4yrzB6
rJt0QXcWrw2AiK7KbbNcPc7XdQhtsPduSVQzC8MzKvFnp//7asCNaERgfqiEJn9m
B8eIUpR2RyrCegzr0eE52zAz23Q=
-----END CERTIFICATE-----
Generated at Tue Jul 9 06:22:47 2024 by rpki-client on console-fra.rpki-client.org