Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/47BE563CEA5A11EE92E5221CC4F9AE02.roa
File:                     47BE563CEA5A11EE92E5221CC4F9AE02.roa (raw, json)
Hash identifier:          7x4NakpluCkmWYYDryCnQ1IzpwHgcjNVH6n3LNHtQAs=
Subject key identifier:   46:D8:9E:1D:7C:3B:B1:13:8C:E7:D5:D5:84:04:E2:3F:95:90:73:9B
Certificate issuer:       /CN=A917190F/serialNumber=9D07446EF99F3C57C29C582D6B7ACA4735F4E470
Certificate serial:       072B
Authority key identifier: 9D:07:44:6E:F9:9F:3C:57:C2:9C:58:2D:6B:7A:CA:47:35:F4:E4:70
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQdEbvmfPFfCnFgta3rKRzX05HA.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/47BE563CEA5A11EE92E5221CC4F9AE02.roa
Signing time:             Mon 25 Mar 2024 03:46:37 +0000
ROA not before:           Mon 25 Mar 2024 03:46:37 +0000
ROA not after:            Sun 01 Dec 2024 00:00:00 +0000
asID:                     137547
IP address blocks:        114.134.184.0/22 maxlen: 22

Validation:               Failed, certificate revoked on Mon 09 Sep 2024 16:51:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1835 (0x72b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A917190F/serialNumber=9D07446EF99F3C57C29C582D6B7ACA4735F4E470
        Validity
            Not Before: Mar 25 03:46:37 2024 GMT
            Not After : Dec  1 00:00:00 2024 GMT
        Subject: CN=6600f39c-6e7f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:32:60:c1:0b:35:cb:9c:ea:47:7c:a9:fa:8f:
                    e7:2b:e1:41:52:59:71:9a:b9:6e:9d:91:91:df:1c:
                    fb:5a:5c:aa:cf:2b:e0:40:a0:ca:e7:8a:bc:54:e3:
                    46:10:34:7e:39:dc:bf:79:7f:77:23:f3:54:bb:4e:
                    16:a4:fa:c9:6f:93:94:d1:07:48:90:c0:ec:ad:21:
                    af:7e:f8:7e:5c:75:86:2d:57:8f:0f:8a:ca:a1:82:
                    77:12:5b:30:e3:e2:50:06:30:da:f2:a3:07:83:82:
                    71:ea:e5:13:1a:7a:58:fe:34:06:19:47:ae:4c:9b:
                    8f:31:9e:74:ea:5d:8a:b9:ac:bb:46:0c:fd:0e:63:
                    3e:15:a8:91:f1:29:70:26:b6:0f:a8:2c:e6:79:53:
                    10:b8:8b:d4:b7:b8:72:bc:40:bd:4a:6a:79:1b:42:
                    c5:6a:ac:0a:f9:e5:ec:40:d1:21:f1:54:95:02:6b:
                    41:6e:30:00:50:c2:21:76:f7:d7:79:f4:49:2b:9a:
                    6c:b8:0e:f1:ca:e8:49:b7:3f:96:52:bf:73:16:4f:
                    ec:5d:a1:80:3d:19:48:81:fc:6b:02:35:65:67:5c:
                    0f:25:65:70:23:42:43:01:a3:d9:5c:35:4c:a1:fe:
                    91:4b:83:11:84:ac:74:84:f5:ae:9b:73:4a:44:25:
                    39:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:D8:9E:1D:7C:3B:B1:13:8C:E7:D5:D5:84:04:E2:3F:95:90:73:9B
            X509v3 Authority Key Identifier:
                keyid:9D:07:44:6E:F9:9F:3C:57:C2:9C:58:2D:6B:7A:CA:47:35:F4:E4:70

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/nQdEbvmfPFfCnFgta3rKRzX05HA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nQdEbvmfPFfCnFgta3rKRzX05HA.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917190F/B3CA76C0FA3111EABD249E7AC4F9AE02/47BE563CEA5A11EE92E5221CC4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  114.134.184.0/22

    Signature Algorithm: sha256WithRSAEncryption
         8a:0a:d3:30:43:51:69:ef:dc:fd:65:2c:e4:46:22:02:2b:5c:
         aa:cc:84:b2:df:16:df:c8:af:69:34:ea:35:3d:2c:69:c4:00:
         4a:b0:59:88:82:e3:49:30:13:d4:af:ea:02:47:43:07:54:4e:
         ac:1f:c2:1b:b4:e2:4d:98:fb:07:81:1f:51:ec:7b:6b:c5:8b:
         31:ed:30:3b:9f:1a:6d:cb:7f:73:c2:c0:15:f2:0b:5b:bd:89:
         3b:82:05:24:0d:ee:4e:06:00:fe:31:cc:18:9d:16:90:95:4e:
         b3:1d:ed:b8:17:22:aa:7d:f2:98:55:4f:3c:8e:80:7c:79:2f:
         1f:90:60:40:d6:62:17:3d:66:32:ec:82:79:c2:90:59:7d:ec:
         fb:60:d1:a3:43:6f:6a:b5:3b:62:f2:f8:b5:89:96:59:50:c1:
         43:e7:76:cb:64:a9:4c:4c:a3:3b:98:b6:f7:56:4b:86:e1:c6:
         9b:cd:2d:16:94:a4:c7:80:a6:43:95:43:56:b9:58:74:28:39:
         2e:b4:16:f3:02:15:5e:8f:34:82:c7:f1:e1:6a:9b:f8:c6:b6:
         a1:1a:b6:4e:81:a2:e2:13:4d:1e:df:98:68:91:07:b6:20:72:
         99:71:92:bd:e3:c6:03:c3:8a:8a:2b:96:ea:07:3b:0a:a0:2a:
         bd:08:59:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 20:55:07 2024 by rpki-client on console-ams.rpki-client.org