Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/0D4E0330F84311ED9A637A17C4F9AE02.roa
File: 0D4E0330F84311ED9A637A17C4F9AE02.roa (raw, json)
Hash identifier: GW4sU5p94GRtc8NuZr0os0a87zpLxQMkJR+okKMABPE=
Subject key identifier: 81:A3:18:64:67:CF:93:9C:25:8B:08:B1:0C:0E:16:6C:EA:DC:C3:58
Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB
Certificate serial: 04BE
Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/0D4E0330F84311ED9A637A17C4F9AE02.roa
Signing time: Fri 01 Mar 2024 06:57:22 +0000
ROA not before: Fri 01 Mar 2024 06:57:22 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 16509
IP address blocks: 1.44.96.0/24 maxlen: 24
203.17.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 00:47:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1214 (0x4be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB
Validity
Not Before: Mar 1 06:57:22 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=65e17c52-82e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8e:1d:39:96:8b:f7:d5:fa:91:2c:ca:f2:00:
0a:fe:4a:bd:a3:fb:be:02:57:f1:c0:e5:fc:6d:ff:
8c:ea:a2:95:92:7a:de:e3:08:09:42:3d:53:18:0c:
3e:ea:ae:bc:e8:d8:2d:a8:19:db:bb:0c:6d:03:31:
ae:be:10:1a:2c:0f:69:45:2f:9f:30:03:cc:be:3f:
d0:08:bb:38:ae:77:88:00:28:bf:12:4f:2b:89:97:
dc:0b:a8:7a:54:70:af:70:4c:33:4f:70:b7:b8:79:
9e:4c:1d:5f:b7:87:f0:dd:6b:35:5a:28:59:e5:ba:
af:65:53:3a:c2:4b:70:95:2c:2e:49:0b:41:ba:8b:
ff:6b:17:fe:12:04:8a:c3:2c:8b:a2:4d:ee:e9:6c:
a1:75:ce:19:55:ca:22:8d:8d:65:bf:c1:39:e7:5a:
14:77:23:ae:e5:85:d7:e6:a5:6e:60:5a:7f:ce:4b:
cc:d3:02:20:72:1e:d9:20:fd:50:cc:b7:41:f0:2d:
49:da:72:ef:c1:eb:b1:cf:39:2f:0a:cf:a0:3e:1e:
50:f0:10:9b:76:ed:69:11:cb:b9:f8:08:2e:f3:30:
f3:ab:42:e8:be:c4:86:3f:a9:22:e6:d3:95:93:e5:
5a:61:89:af:b6:4a:72:de:c0:d0:99:78:1f:31:bd:
b4:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A3:18:64:67:CF:93:9C:25:8B:08:B1:0C:0E:16:6C:EA:DC:C3:58
X509v3 Authority Key Identifier:
keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/0D4E0330F84311ED9A637A17C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.44.96.0/24
203.17.138.0/24
Signature Algorithm: sha256WithRSAEncryption
59:1d:3b:cd:d8:e7:94:2d:51:28:a9:71:78:27:ea:1a:87:1b:
e9:fd:91:40:b9:9c:3c:c6:db:8e:11:df:40:30:44:15:0b:74:
0d:ba:e3:4a:b8:65:45:a0:93:a4:b5:8d:cd:a2:e5:47:3d:6d:
91:4d:a6:28:9c:6d:f4:75:91:b8:b7:19:29:27:b9:c2:2e:4d:
dd:94:77:85:f1:f6:5c:a0:ab:e0:3e:af:d6:80:fd:c3:f6:3b:
0f:dd:8a:72:3f:c0:4b:fb:aa:54:b1:fd:ab:43:e8:1b:ba:9f:
cd:16:18:3c:e7:bb:6d:ea:81:ed:4f:03:ec:8c:90:56:f7:a0:
48:bb:d1:4a:da:15:80:0f:b8:d7:9c:3d:22:78:a8:fa:70:72:
14:a4:74:6a:73:29:88:9d:c8:a3:52:61:16:4b:37:50:02:db:
1f:17:ec:26:61:cb:df:09:64:97:87:e9:3d:6a:9c:a3:a8:9d:
7a:43:79:41:2a:9c:24:7b:f2:f3:d0:87:b0:3d:34:85:ab:df:
cc:15:d4:0c:7e:f9:37:d3:e1:bb:88:de:5c:60:cd:aa:7c:39:
71:d9:6c:fc:25:dd:0c:5a:a2:f4:4a:aa:b2:da:52:b5:82:d9:
bc:14:dc:15:e0:3d:12:62:f0:79:bb:37:e1:e6:f2:b7:a5:5b:
71:2d:3a:34
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgICBL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC
RUM0NkU1RkIwHhcNMjQwMzAxMDY1NzIyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NWUxN2M1Mi04MmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtI4dOZaL99X6kSzK8gAK/kq9o/u+AlfxwOX8bf+M6qKVknre4wgJQj1TGAw+
6q686NgtqBnbuwxtAzGuvhAaLA9pRS+fMAPMvj/QCLs4rneIACi/Ek8riZfcC6h6
VHCvcEwzT3C3uHmeTB1ft4fw3Ws1WihZ5bqvZVM6wktwlSwuSQtBuov/axf+EgSK
wyyLok3u6Wyhdc4ZVcoijY1lv8E551oUdyOu5YXX5qVuYFp/zkvM0wIgch7ZIP1Q
zLdB8C1J2nLvweuxzzkvCs+gPh5Q8BCbdu1pEcu5+Agu8zDzq0LovsSGP6ki5tOV
k+VaYYmvtkpy3sDQmXgfMb20SwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIGjGGRn
z5OcJYsIsQwOFmzq3MNYMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC
RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1
ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvMEQ0RTAzMzBG
ODQzMTFFRDlBNjM3QTE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E
FjAUMBIEAgABMAwDBAABLGADBADLEYowDQYJKoZIhvcNAQELBQADggEBAFkdO83Y
55QtUSipcXgn6hqHG+n9kUC5nDzG244R30AwRBULdA2640q4ZUWgk6S1jc2i5Uc9
bZFNpiicbfR1kbi3GSknucIuTd2Ud4Xx9lygq+A+r9aA/cP2Ow/dinI/wEv7qlSx
/atD6Bu6n80WGDznu23qge1PA+yMkFb3oEi70UraFYAPuNecPSJ4qPpwchSkdGpz
KYidyKNSYRZLN1AC2x8X7CZhy98JZJeH6T1qnKOonXpDeUEqnCR78vPQh7A9NIWr
38wV1Ax++TfT4buI3lxgzap8OXHZbPwl3QxaovRKqrLaUrWC2bwU3BXgPRJi8Hm7
N+Hm8relW3EtOjQ=
-----END CERTIFICATE-----
Generated at Wed Mar 6 03:15:33 2024 by rpki-client on console-ams.rpki-client.org