Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/632244CEF94C11EDBB552547C4F9AE02.roa
File: 632244CEF94C11EDBB552547C4F9AE02.roa (raw, json)
Hash identifier: G5rqLL2PnSGO+Eb6J1p1a1MlCi4P1LWBmmY4/t/TADw=
Subject key identifier: DF:68:13:B5:47:AE:95:0D:5F:58:30:0F:4B:47:03:95:82:07:BE:F1
Certificate issuer: /CN=A9151A79/serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C
Certificate serial: 02
Authority key identifier: 05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/632244CEF94C11EDBB552547C4F9AE02.roa
Signing time: Tue 23 May 2023 09:30:00 +0000
ROA not before: Tue 23 May 2023 09:30:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 133542
IP address blocks: 103.114.254.0/24 maxlen: 24
103.114.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 19:37:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9151A79/serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C
Validity
Not Before: May 23 09:30:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=646c8797-e8e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e9:c5:39:af:5c:f0:bd:ef:92:39:1e:d8:cf:
e5:9b:92:99:8e:f8:78:98:bd:1b:2b:c9:ba:56:48:
f1:d5:ea:8b:c2:30:38:51:2a:c6:f9:63:cb:71:3b:
74:61:ef:19:e9:b4:5e:07:aa:9e:e2:53:cf:83:be:
4f:81:f4:99:e4:c6:88:8f:b7:e4:f0:ae:5c:d9:d9:
6d:d7:c8:2c:04:8a:68:5f:71:08:7d:94:b0:d3:d5:
07:7c:30:af:9e:ad:9c:89:ff:4c:06:03:48:20:4d:
96:57:ff:0c:88:96:f8:24:8e:62:c7:70:0d:13:88:
18:f9:d5:57:6d:ff:fc:b0:9b:c9:ef:b7:9c:9b:a3:
26:cf:bc:7b:7d:6c:05:3e:15:5a:7f:e5:7c:13:6e:
b0:b6:48:b1:4a:03:a2:a0:cd:92:93:86:17:7c:a2:
8d:b6:7a:94:d3:e4:57:67:3f:4c:39:fe:5d:9e:60:
68:4b:3f:de:5a:39:d7:cd:eb:ea:83:bc:97:6e:e2:
94:7e:f4:e4:c6:c0:85:32:5c:a8:b1:6b:b3:54:92:
59:b3:be:ac:8e:53:d2:df:33:5d:6c:c6:68:c9:3f:
4a:45:01:1b:5f:e8:69:a1:3f:4b:e3:7f:77:cb:73:
c9:99:3a:07:a6:24:4a:db:5b:5e:ba:53:3d:dc:f5:
a5:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:68:13:B5:47:AE:95:0D:5F:58:30:0F:4B:47:03:95:82:07:BE:F1
X509v3 Authority Key Identifier:
keyid:05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/632244CEF94C11EDBB552547C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.114.254.0/23
Signature Algorithm: sha256WithRSAEncryption
61:02:c7:c2:80:34:d3:3a:53:d0:fc:c3:53:c1:0a:5b:0d:b7:
e9:cb:2f:9b:f3:c5:19:70:0f:8a:d3:2f:c7:3d:78:5d:8c:95:
9b:9f:42:d6:26:f0:58:45:1c:c4:bc:c3:f7:50:16:00:07:ea:
6f:7b:56:84:29:cf:4e:b5:9b:69:66:0d:d7:41:48:0c:ad:43:
b3:81:ed:11:55:f0:39:c7:83:e1:50:e7:2c:e9:3d:3b:c4:51:
93:e6:79:55:ad:39:20:82:23:4d:16:7f:90:b4:1c:4c:fa:b5:
46:75:11:2e:50:64:e8:41:bb:35:66:39:ab:b6:c4:3c:c8:2a:
e0:56:ec:4d:81:f9:3e:22:ac:e6:a0:7e:b2:70:a9:3d:c0:fe:
a6:47:b4:d6:59:67:54:f3:5c:f5:80:aa:37:ee:94:12:a7:ca:
a3:8d:65:79:d1:c0:e9:1a:0f:67:80:6b:3c:7b:35:22:88:f5:
bc:c8:64:84:90:1d:f9:d0:2a:1d:d6:f9:ec:de:9f:07:a0:0c:
f4:03:5d:fb:11:09:84:7c:ec:f5:80:d3:e6:06:28:8d:c3:a8:
b2:a5:91:da:86:90:9b:de:1d:bc:fb:94:89:01:dd:10:81:6f:
22:0a:1f:86:b0:ab:2a:05:a9:44:ba:bb:fd:eb:84:7a:5a:08:
ef:6e:2e:4e
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1
MUE3OTExMC8GA1UEBRMoMDUyOTg1RjJCRTI4Qzc5RTc0RUZGNERCNEM3MTQyMjg0
NTQ3NzM1QzAeFw0yMzA1MjMwOTMwMDBaFw0yNDA3MDEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY0NmM4Nzk3LWU4ZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCX6cU5r1zwve+SOR7Yz+WbkpmO+HiYvRsrybpWSPHV6ovCMDhRKsb5Y8txO3Rh
7xnptF4Hqp7iU8+Dvk+B9JnkxoiPt+TwrlzZ2W3XyCwEimhfcQh9lLDT1Qd8MK+e
rZyJ/0wGA0ggTZZX/wyIlvgkjmLHcA0TiBj51Vdt//ywm8nvt5yboybPvHt9bAU+
FVp/5XwTbrC2SLFKA6KgzZKThhd8oo22epTT5FdnP0w5/l2eYGhLP95aOdfN6+qD
vJdu4pR+9OTGwIUyXKixa7NUklmzvqyOU9LfM11sxmjJP0pFARtf6GmhP0vjf3fL
c8mZOgemJErbW166Uz3c9aXZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU32gTtUeu
lQ1fWDAPS0cDlYIHvvEwHwYDVR0jBBgwFoAUBSmF8r4ox5507/TbTHFCKEVHc1ww
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUxQTc5L0Q0Q0ExNUMwRjk0
NzExRUQ4OEMxODc0NkM0RjlBRTAyL0JTbUY4cjRveDU1MDdfVGJUSEZDS0VWSGMx
dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvQlNtRjhyNG94NTUwN19UYlRIRkNLRVZIYzF3LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
MUE3OS9ENENBMTVDMEY5NDcxMUVEODhDMTg3NDZDNEY5QUUwMi82MzIyNDRDRUY5
NEMxMUVEQkI1NTI1NDdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAWdy/jANBgkqhkiG9w0BAQsFAAOCAQEAYQLHwoA00zpT0PzD
U8EKWw236csvm/PFGXAPitMvxz14XYyVm59C1ibwWEUcxLzD91AWAAfqb3tWhCnP
TrWbaWYN10FIDK1Ds4HtEVXwOceD4VDnLOk9O8RRk+Z5Va05IIIjTRZ/kLQcTPq1
RnURLlBk6EG7NWY5q7bEPMgq4FbsTYH5PiKs5qB+snCpPcD+pke01llnVPNc9YCq
N+6UEqfKo41ledHA6RoPZ4BrPHs1Ioj1vMhkhJAd+dAqHdb57N6fB6AM9ANd+xEJ
hHzs9YDT5gYojcOosqWR2oaQm94dvPuUiQHdEIFvIgofhrCrKgWpRLq7/euEeloI
724uTg==
-----END CERTIFICATE-----
Generated at Wed Apr 3 23:09:28 2024 by rpki-client on console-fra.rpki-client.org