Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/BBDFB9BCB7DD11EDA8ECF753C4F9AE02.roa
File:                     BBDFB9BCB7DD11EDA8ECF753C4F9AE02.roa (raw, json)
Hash identifier:          dqcdgxsYtxiu94dlnX2juVS3Lm8idA9jbY2j8vMIYaA=
Subject key identifier:   D0:DB:4D:88:BC:01:4B:BF:D2:15:FF:6E:B8:75:B9:B5:BB:FF:86:55
Certificate issuer:       /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
Certificate serial:       1D9E
Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/BBDFB9BCB7DD11EDA8ECF753C4F9AE02.roa
Signing time:             Wed 15 May 2024 10:27:45 +0000
ROA not before:           Wed 15 May 2024 10:27:45 +0000
ROA not after:            Sun 01 Dec 2024 00:00:00 +0000
asID:                     58777
IP address blocks:        202.67.0.0/22 maxlen: 24
                          202.73.128.0/22 maxlen: 24
                          202.191.72.0/21 maxlen: 24
                          203.33.67.0/24 maxlen: 24
                          203.33.68.0/24 maxlen: 24
                          203.33.73.0/24 maxlen: 24
                          203.33.79.0/24 maxlen: 24
                          203.33.100.0/24 maxlen: 24
                          203.33.122.0/24 maxlen: 24
                          203.33.129.0/24 maxlen: 24
                          203.33.131.0/24 maxlen: 24
                          240e:108:4000::/43 maxlen: 48
                          240e:108:4020::/43 maxlen: 48
                          240e:108:4040::/48 maxlen: 48
                          240e:108:4047::/48 maxlen: 48
                          240e:108:4060::/48 maxlen: 48
                          240e:108:4080::/43 maxlen: 48
                          240e:108:40a0::/43 maxlen: 48
                          240e:108:40c0::/43 maxlen: 48
                          240e:108:40e0::/43 maxlen: 48
                          240e:108:4100::/43 maxlen: 48
                          240e:108:4140::/43 maxlen: 48
                          240e:108:4180::/43 maxlen: 48
                          240e:108:41a0::/43 maxlen: 48
                          240e:108:41c0::/43 maxlen: 48
                          240e:108:41e0::/43 maxlen: 48
                          240e:108:4200::/43 maxlen: 48
                          240e:108:4220::/43 maxlen: 48
                          240e:108:4240::/43 maxlen: 48
                          240e:108:4260::/43 maxlen: 48
                          240e:108:4280::/43 maxlen: 48
                          240e:108:42a0::/43 maxlen: 48
                          240e:108:42c0::/43 maxlen: 48
                          240e:108:42e0::/43 maxlen: 48
                          240e:108:4300::/43 maxlen: 48
                          240e:108:4320::/43 maxlen: 48
                          240e:108:4360::/48 maxlen: 48
                          240e:108:4380::/43 maxlen: 48
                          240e:108:43a0::/43 maxlen: 48
                          240e:108:4820::/48 maxlen: 48
                          240e:108:4840::/48 maxlen: 48
                          240e:108:4847::/48 maxlen: 48
                          240e:108:4860::/48 maxlen: 48
                          240e:108:4a00::/43 maxlen: 48
                          240e:108:4a20::/43 maxlen: 48
                          240e:108:4a40::/43 maxlen: 48
                          240e:108:4a60::/43 maxlen: 48
                          240e:108:4a80::/43 maxlen: 48
                          240e:108:4aa0::/43 maxlen: 48
                          240e:108:4ac0::/43 maxlen: 48
                          240e:108:4ae0::/43 maxlen: 48
                          240e:108:4b00::/43 maxlen: 48
                          240e:108:4b20::/43 maxlen: 48
                          240e:108:4b60::/48 maxlen: 48
                          240e:108:4b80::/43 maxlen: 48
                          240e:108:4ba0::/43 maxlen: 48

Validation:               Failed, certificate revoked on Thu 16 May 2024 06:56:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7582 (0x1d9e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA
        Validity
            Not Before: May 15 10:27:45 2024 GMT
            Not After : Dec  1 00:00:00 2024 GMT
        Subject: CN=66448e21-46ea
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:06:a3:15:54:1b:ae:3f:c4:71:00:e9:fd:fc:
                    4b:3d:f3:41:11:ba:e2:9c:49:0f:3f:21:90:02:ce:
                    bb:63:76:0d:6b:96:68:e3:ac:d4:78:1d:63:11:b1:
                    b4:33:53:6a:72:61:ce:a1:c6:86:29:f7:60:d0:65:
                    e3:18:39:e2:e3:e0:eb:78:7a:3b:68:f8:c9:e9:7f:
                    5a:6e:29:54:f4:21:eb:9f:c3:37:a3:dd:0c:96:65:
                    5a:33:4d:96:5d:b2:52:11:95:52:42:88:b0:93:18:
                    d5:4e:73:2a:b9:97:01:5d:6b:3a:d5:19:e1:20:1a:
                    0a:ad:4a:6a:51:04:7f:9b:68:53:be:12:29:b2:b2:
                    26:1d:8f:13:50:94:14:5c:d0:46:90:85:34:72:88:
                    30:d2:46:53:0b:59:2a:35:61:0c:b8:19:25:dd:15:
                    c8:56:34:db:4e:dd:45:73:ab:5b:aa:9c:78:e0:09:
                    81:61:c9:05:64:fe:5d:61:5f:85:9e:b2:e4:af:19:
                    ac:13:29:71:ed:31:63:19:76:a1:6a:84:b5:62:8a:
                    ba:65:ea:aa:bf:7f:cc:4f:3d:9b:35:a3:b7:aa:fe:
                    3a:98:fc:30:17:5d:68:ee:67:9e:55:bc:23:0b:fd:
                    2c:2c:3c:76:6a:bf:e3:0f:b2:8b:98:7c:12:98:03:
                    14:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D0:DB:4D:88:BC:01:4B:BF:D2:15:FF:6E:B8:75:B9:B5:BB:FF:86:55
            X509v3 Authority Key Identifier:
                keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/BBDFB9BCB7DD11EDA8ECF753C4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  202.67.0.0/22
                  202.73.128.0/22
                  202.191.72.0/21
                  203.33.67.0-203.33.68.255
                  203.33.73.0/24
                  203.33.79.0/24
                  203.33.100.0/24
                  203.33.122.0/24
                  203.33.129.0/24
                  203.33.131.0/24
                IPv6:
                  240e:108:4000::-240e:108:4040:ffff:ffff:ffff:ffff:ffff
                  240e:108:4047::/48
                  240e:108:4060::/48
                  240e:108:4080::-240e:108:411f:ffff:ffff:ffff:ffff:ffff
                  240e:108:4140::/43
                  240e:108:4180::-240e:108:433f:ffff:ffff:ffff:ffff:ffff
                  240e:108:4360::/48
                  240e:108:4380::/42
                  240e:108:4820::/48
                  240e:108:4840::/48
                  240e:108:4847::/48
                  240e:108:4860::/48
                  240e:108:4a00::-240e:108:4b3f:ffff:ffff:ffff:ffff:ffff
                  240e:108:4b60::/48
                  240e:108:4b80::/42

    Signature Algorithm: sha256WithRSAEncryption
         aa:29:6b:2d:25:32:53:70:19:55:e9:e2:26:1f:a5:1e:52:c9:
         af:0d:01:a5:ab:29:0a:f8:dd:3e:47:cc:6a:47:97:b2:17:70:
         3a:6c:fc:c0:39:b6:b9:92:b9:af:51:41:7e:2b:1e:42:87:55:
         0a:82:3a:df:92:fe:94:14:d8:f3:2f:23:98:0a:ec:0f:1d:dc:
         d0:1f:75:19:05:a2:e5:f4:22:8b:ea:94:16:e8:77:b2:d2:c2:
         bc:b2:36:59:55:51:5d:41:4f:82:b5:26:77:d0:8f:04:f1:75:
         0d:9f:96:e0:0d:b4:1b:36:a5:1d:b6:db:6b:00:41:a3:47:8c:
         36:5b:60:fc:26:a1:6a:b0:7f:8a:03:2a:05:ad:6d:7f:ac:b6:
         3d:32:c1:45:6a:7f:b4:8e:74:64:a0:bd:88:40:c8:16:4f:3f:
         9d:08:08:30:3d:85:44:4c:cf:50:3c:73:a2:4b:89:3b:a3:88:
         23:00:7c:bc:4d:80:96:30:36:54:3d:cc:1b:88:6d:dc:da:4a:
         40:4f:f2:68:5e:3a:58:d4:0b:17:83:c4:6c:72:f0:eb:24:53:
         4c:67:fc:cb:a3:c1:b0:66:56:50:c4:39:9a:be:19:c9:2a:a4:
         6d:6e:45:ee:ce:2c:97:d7:63:fe:d9:17:c7:91:6b:5d:cc:4f:
         95:bc:35:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:58 2024 by rpki-client on console-ams.rpki-client.org