Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/45B4466AFE7F11EEADB89215C4F9AE02.roa
File: 45B4466AFE7F11EEADB89215C4F9AE02.roa (raw, json)
Hash identifier: JW221SdR0OgfqbHYXSY52jDrerqJ9Os9G5oX3VBUzJ4=
Subject key identifier: DA:74:4C:2A:FC:55:96:3E:2C:31:68:D6:17:68:1A:18:33:50:2A:DB
Certificate issuer: /CN=A915B8D0/serialNumber=254EAF6490754F507DB81CE90DDB629B622F4660
Certificate serial: 14
Authority key identifier: 25:4E:AF:64:90:75:4F:50:7D:B8:1C:E9:0D:DB:62:9B:62:2F:46:60
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JU6vZJB1T1B9uBzpDdtim2IvRmA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/45B4466AFE7F11EEADB89215C4F9AE02.roa
Signing time: Fri 19 Apr 2024 19:01:49 +0000
ROA not before: Fri 19 Apr 2024 19:01:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 203.26.150.0/24 maxlen: 24
203.26.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jun 2024 21:11:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20 (0x14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915B8D0/serialNumber=254EAF6490754F507DB81CE90DDB629B622F4660
Validity
Not Before: Apr 19 19:01:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6622bf9c-b2b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:18:56:c4:8a:16:26:b7:48:b5:c1:19:4b:b5:
1c:a8:0b:6f:df:49:1b:6b:29:9e:a1:3f:96:06:15:
9d:e2:22:23:83:ba:21:2e:ed:38:cd:5e:fd:7c:87:
14:40:76:0d:99:c9:6a:fc:90:67:c5:2d:b1:52:ae:
42:a3:ca:13:af:e5:2a:e6:a5:9d:d2:dd:0a:e6:c5:
f7:5f:72:d0:f4:ac:27:12:33:94:a4:8b:d9:be:b6:
9c:fb:41:c9:9e:e0:1c:36:aa:dc:c8:7f:95:0e:7f:
10:03:f2:70:95:6e:69:80:7d:61:62:8f:f1:a0:1e:
6e:55:f0:7f:36:4b:62:bb:36:e8:92:08:e3:04:8f:
6a:bb:ee:fd:69:d2:c1:0c:e5:01:d9:d2:3b:98:25:
49:70:ed:c6:e8:39:80:c7:60:b5:f3:0b:a7:6c:84:
5a:1e:6c:75:1b:a8:d2:10:53:b8:b7:23:a6:31:ca:
92:e1:bc:f4:78:f9:a8:4c:01:d9:c6:88:1e:a2:21:
ed:f0:26:18:e4:8d:1c:1f:6f:6b:e6:a8:66:1e:4b:
0d:ce:6d:37:b9:ae:12:0d:ef:81:33:95:0c:2a:fc:
35:01:9d:e7:bc:9a:35:66:42:91:e1:20:be:66:6c:
ce:71:3e:00:d5:4b:8d:26:93:20:02:99:f9:ea:45:
fb:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:74:4C:2A:FC:55:96:3E:2C:31:68:D6:17:68:1A:18:33:50:2A:DB
X509v3 Authority Key Identifier:
keyid:25:4E:AF:64:90:75:4F:50:7D:B8:1C:E9:0D:DB:62:9B:62:2F:46:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/JU6vZJB1T1B9uBzpDdtim2IvRmA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JU6vZJB1T1B9uBzpDdtim2IvRmA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/45B4466AFE7F11EEADB89215C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.26.150.0/23
Signature Algorithm: sha256WithRSAEncryption
cb:f4:23:93:10:57:80:03:35:61:94:bd:e8:17:a3:17:95:e9:
42:42:84:e0:9e:b8:04:5b:c2:8f:d9:e5:86:ea:25:d7:23:c9:
dc:59:94:9e:7c:67:e4:29:77:e0:86:e6:96:4c:48:55:c8:aa:
a0:ba:e6:1d:d8:7a:2e:85:89:2b:3c:24:ce:c5:97:04:7b:91:
21:4e:c5:4b:fb:0f:72:07:a2:9a:4f:af:c6:29:fa:7e:24:38:
c6:7a:d4:cd:27:eb:fb:ea:c9:03:2c:22:bf:fa:9c:53:fb:9e:
96:18:4d:b0:03:e5:c5:ca:50:7b:4a:3e:c0:f5:24:4e:fe:2b:
74:33:26:5f:1d:8d:a8:7c:6c:a2:02:ba:03:28:6f:52:ef:88:
be:20:cf:3f:a4:f8:dd:2b:6f:e7:1e:03:ac:6f:5e:0b:fc:cc:
2b:c0:54:33:44:85:ae:59:c6:6f:bc:f3:93:99:12:99:67:17:
0b:ec:ba:5f:3d:a6:5f:d4:e9:04:76:3e:c2:df:5d:62:04:29:
78:ed:09:93:ee:21:0f:ed:cd:30:cf:6d:2f:f2:92:57:06:78:
65:37:d8:76:6b:ca:a6:53:d5:12:aa:4f:99:6b:2e:e0:5e:b8:
b8:68:97:db:a3:f9:bc:68:86:5f:e9:75:3b:0b:36:af:b5:bb:
72:2c:f4:72
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1
QjhEMDExMC8GA1UEBRMoMjU0RUFGNjQ5MDc1NEY1MDdEQjgxQ0U5MEREQjYyOUI2
MjJGNDY2MDAeFw0yNDA0MTkxOTAxNDlaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY2MjJiZjljLWIyYjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC1GFbEihYmt0i1wRlLtRyoC2/fSRtrKZ6hP5YGFZ3iIiODuiEu7TjNXv18hxRA
dg2ZyWr8kGfFLbFSrkKjyhOv5SrmpZ3S3QrmxfdfctD0rCcSM5Ski9m+tpz7Qcme
4Bw2qtzIf5UOfxAD8nCVbmmAfWFij/GgHm5V8H82S2K7NuiSCOMEj2q77v1p0sEM
5QHZ0juYJUlw7cboOYDHYLXzC6dshFoebHUbqNIQU7i3I6YxypLhvPR4+ahMAdnG
iB6iIe3wJhjkjRwfb2vmqGYeSw3ObTe5rhIN74EzlQwq/DUBnee8mjVmQpHhIL5m
bM5xPgDVS40mkyACmfnqRfvZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU2nRMKvxV
lj4sMWjWF2gaGDNQKtswHwYDVR0jBBgwFoAUJU6vZJB1T1B9uBzpDdtim2IvRmAw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVCOEQwLzQxRTJCRTI4RUI2
RTExRUU4M0UzQUU1MUM0RjlBRTAyL0pVNnZaSkIxVDFCOXVCenBEZHRpbTJJdlJt
QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvSlU2dlpKQjFUMUI5dUJ6cERkdGltMkl2Um1BLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
QjhEMC80MUUyQkUyOEVCNkUxMUVFODNFM0FFNTFDNEY5QUUwMi80NUI0NDY2QUZF
N0YxMUVFQURCODkyMTVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAcsaljANBgkqhkiG9w0BAQsFAAOCAQEAy/QjkxBXgAM1YZS9
6BejF5XpQkKE4J64BFvCj9nlhuol1yPJ3FmUnnxn5Cl34IbmlkxIVciqoLrmHdh6
LoWJKzwkzsWXBHuRIU7FS/sPcgeimk+vxin6fiQ4xnrUzSfr++rJAywiv/qcU/ue
lhhNsAPlxcpQe0o+wPUkTv4rdDMmXx2NqHxsogK6AyhvUu+IviDPP6T43Stv5x4D
rG9eC/zMK8BUM0SFrlnGb7zzk5kSmWcXC+y6Xz2mX9TpBHY+wt9dYgQpeO0Jk+4h
D+3NMM9tL/KSVwZ4ZTfYdmvKplPVEqpPmWsu4F64uGiX26P5vGiGX+l1Ows2r7W7
ciz0cg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-ams.rpki-client.org