Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915ADC4/61415F58A9F711EE8EB48D22C4F9AE02/161192C4E23111EE8F072024C4F9AE02.roa
File: 161192C4E23111EE8F072024C4F9AE02.roa (raw, json)
Hash identifier: +oAl0PBkJPAPW54IFzZtyAogB0+TycFK+q+3xpWfYCg=
Subject key identifier: 2B:8A:55:CB:8C:2D:D6:19:BD:E0:F6:FB:6A:9D:3D:43:79:D7:CC:6B
Certificate issuer: /CN=A915ADC4/serialNumber=1DD1CBBC5DF5BDFABBB3ADAF12B00256B7F18D12
Certificate serial: 3F
Authority key identifier: 1D:D1:CB:BC:5D:F5:BD:FA:BB:B3:AD:AF:12:B0:02:56:B7:F1:8D:12
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdHLvF31vfq7s62vErACVrfxjRI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915ADC4/61415F58A9F711EE8EB48D22C4F9AE02/161192C4E23111EE8F072024C4F9AE02.roa
Signing time: Thu 14 Mar 2024 18:40:17 +0000
ROA not before: Thu 14 Mar 2024 18:40:17 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 152300
IP address blocks: 2401:72a0::/32 maxlen: 40
2402:ca40::/32 maxlen: 40
Validation: Failed, certificate revoked on Sun 24 Mar 2024 10:14:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63 (0x3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915ADC4/serialNumber=1DD1CBBC5DF5BDFABBB3ADAF12B00256B7F18D12
Validity
Not Before: Mar 14 18:40:17 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=65f34491-0450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4e:10:e1:cf:dc:d7:b4:23:c5:3c:b3:a6:0e:
fc:d7:7e:7c:78:fb:f8:bb:53:aa:64:b8:44:f9:77:
ff:0b:5c:1a:a7:4c:59:3b:87:66:be:d2:c4:b9:42:
0b:fc:35:ea:c9:22:87:11:9d:a0:e2:01:04:1d:bc:
75:9b:92:ca:f6:2b:85:bd:97:a6:59:45:eb:a4:72:
c2:0e:d9:a1:fe:8a:87:29:3f:db:b0:3b:93:cd:98:
ee:8e:0f:6e:60:c9:9f:05:0f:cf:24:f5:9e:1d:56:
98:bf:4c:ef:48:e7:38:8b:58:91:44:33:59:86:17:
30:cf:9b:8d:fb:c1:d6:98:1a:ff:1f:93:e6:00:0e:
0b:88:cc:22:37:c8:ce:15:20:50:5a:99:bd:f4:de:
25:53:e5:cf:3f:b6:39:e0:79:bb:d9:12:78:97:2d:
cc:61:b4:17:11:ee:af:19:4d:13:5d:a1:3d:1d:44:
0b:14:8c:19:32:90:44:1a:34:49:e7:73:b2:db:63:
88:f1:6c:8f:5f:17:fa:87:eb:82:70:a0:e1:80:75:
05:f7:59:f4:06:46:56:dd:41:7f:43:21:c4:a9:7c:
ee:0d:06:06:27:75:88:df:8c:ef:88:41:16:c6:17:
ec:3d:25:74:a4:98:92:b2:7c:b9:c6:29:56:39:b4:
23:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:8A:55:CB:8C:2D:D6:19:BD:E0:F6:FB:6A:9D:3D:43:79:D7:CC:6B
X509v3 Authority Key Identifier:
keyid:1D:D1:CB:BC:5D:F5:BD:FA:BB:B3:AD:AF:12:B0:02:56:B7:F1:8D:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915ADC4/61415F58A9F711EE8EB48D22C4F9AE02/HdHLvF31vfq7s62vErACVrfxjRI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HdHLvF31vfq7s62vErACVrfxjRI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915ADC4/61415F58A9F711EE8EB48D22C4F9AE02/161192C4E23111EE8F072024C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:72a0::/32
2402:ca40::/32
Signature Algorithm: sha256WithRSAEncryption
13:16:41:44:cf:34:bc:25:58:8b:ed:15:4a:12:b2:b3:b3:83:
86:8b:2c:58:bc:a8:a9:19:d3:72:32:b1:3e:bd:74:0d:17:0f:
75:ca:95:b9:c4:5b:0f:f5:02:9c:ab:4b:87:9d:2a:28:e7:1c:
b3:5a:af:d7:78:54:95:d5:a3:8f:2e:2c:98:59:45:4d:3b:01:
23:ed:69:28:50:12:db:4c:6f:03:fa:79:a1:9a:8b:fb:c1:44:
1b:ff:51:9a:c1:db:87:fb:2c:e7:7c:88:cf:87:8d:e9:2d:a5:
bb:0d:31:ec:f8:97:b3:e0:18:b1:53:4a:a5:c3:6e:77:fb:f8:
25:9a:78:16:3c:1b:fd:b0:17:eb:d4:31:bb:13:dd:6a:97:8c:
ad:87:df:2e:45:bb:ef:5d:42:06:26:43:82:be:a8:4a:88:5f:
93:fb:3b:95:87:40:2a:cb:21:9c:eb:ad:13:33:fa:ff:39:1b:
0d:0f:c6:b0:79:3b:9b:ba:ce:69:8e:eb:d2:bf:ac:4c:45:a8:
da:fd:0d:46:d5:3b:a5:fe:a2:83:b1:83:87:e0:d9:73:e4:6d:
5d:e1:e3:6a:82:97:11:f6:6f:83:f7:d0:09:0d:4f:59:b6:30:
a8:0f:2e:da:ed:6b:b6:01:50:6a:53:d5:b0:52:07:5f:93:83:
bc:73:e7:e8
-----BEGIN CERTIFICATE-----
MIIFeDCCBGCgAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1
QURDNDExMC8GA1UEBRMoMUREMUNCQkM1REY1QkRGQUJCQjNBREFGMTJCMDAyNTZC
N0YxOEQxMjAeFw0yNDAzMTQxODQwMTdaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY1ZjM0NDkxLTA0NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCzThDhz9zXtCPFPLOmDvzXfnx4+/i7U6pkuET5d/8LXBqnTFk7h2a+0sS5Qgv8
NerJIocRnaDiAQQdvHWbksr2K4W9l6ZZReukcsIO2aH+iocpP9uwO5PNmO6OD25g
yZ8FD88k9Z4dVpi/TO9I5ziLWJFEM1mGFzDPm437wdaYGv8fk+YADguIzCI3yM4V
IFBamb303iVT5c8/tjngebvZEniXLcxhtBcR7q8ZTRNdoT0dRAsUjBkykEQaNEnn
c7LbY4jxbI9fF/qH64JwoOGAdQX3WfQGRlbdQX9DIcSpfO4NBgYndYjfjO+IQRbG
F+w9JXSkmJKyfLnGKVY5tCNFAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUK4pVy4wt
1hm94Pb7ap09Q3nXzGswHwYDVR0jBBgwFoAUHdHLvF31vfq7s62vErACVrfxjRIw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBREM0LzYxNDE1RjU4QTlG
NzExRUU4RUI0OEQyMkM0RjlBRTAyL0hkSEx2RjMxdmZxN3M2MnZFckFDVnJmeGpS
SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvSGRITHZGMzF2ZnE3czYydkVyQUNWcmZ4alJJLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
QURDNC82MTQxNUY1OEE5RjcxMUVFOEVCNDhEMjJDNEY5QUUwMi8xNjExOTJDNEUy
MzExMUVFOEYwNzIwMjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY
MBYwFAQCAAIwDgMFACQBcqADBQAkAspAMA0GCSqGSIb3DQEBCwUAA4IBAQATFkFE
zzS8JViL7RVKErKzs4OGiyxYvKipGdNyMrE+vXQNFw91ypW5xFsP9QKcq0uHnSoo
5xyzWq/XeFSV1aOPLiyYWUVNOwEj7WkoUBLbTG8D+nmhmov7wUQb/1GawduH+yzn
fIjPh43pLaW7DTHs+Jez4BixU0qlw253+/glmngWPBv9sBfr1DG7E91ql4yth98u
RbvvXUIGJkOCvqhKiF+T+zuVh0AqyyGc660TM/r/ORsND8aweTubus5pjuvSv6xM
Raja/Q1G1Tul/qKDsYOH4Nlz5G1d4eNqgpcR9m+D99AJDU9ZtjCoDy7a7Wu2AVBq
U9WwUgdfk4O8c+fo
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:08 2024 by rpki-client on console-fra.rpki-client.org