Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/3E2918989DF911EF971AD149C4F9AE02.roa
File: 3E2918989DF911EF971AD149C4F9AE02.roa (raw, json)
Hash identifier: 0Y6WFl0vBhP/j0mX7VkXE42hQrDbjuliNyVrb5iSRkk=
Subject key identifier: 76:0A:96:1C:A9:49:C8:B6:73:57:6A:08:C8:5D:C1:F1:60:42:7C:C6
Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A
Certificate serial: 1CB1
Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/3E2918989DF911EF971AD149C4F9AE02.roa
Signing time: Fri 08 Nov 2024 17:45:29 +0000
ROA not before: Fri 08 Nov 2024 17:45:29 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 43260
IP address blocks: 111.119.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Nov 2024 12:09:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7345 (0x1cb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A
Validity
Not Before: Nov 8 17:45:29 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=672e4e38-4264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0e:67:7c:bc:4b:2c:fe:e2:55:c7:47:e5:49:
c1:cd:d1:ca:11:74:af:43:b6:d6:cb:b2:a4:ee:b6:
c6:d5:27:0c:54:e8:76:80:71:c3:9a:49:5b:a5:61:
7f:73:b6:d6:a4:66:90:06:8f:58:55:a7:30:33:fc:
54:ff:f0:74:d1:41:f7:a3:c5:6b:0f:22:8d:b6:58:
fa:6d:cc:ff:86:97:44:24:74:41:11:50:1a:57:b1:
55:67:a9:f1:58:05:02:18:85:96:a4:26:25:a9:52:
3c:08:d4:17:64:a1:d9:f8:a7:52:99:51:97:57:9f:
da:70:83:5f:64:68:e5:48:df:4b:d4:82:53:3e:ac:
b8:a7:5f:db:43:57:1e:8f:86:54:b4:1e:a4:62:98:
89:9f:04:b2:b1:b5:24:f5:bc:df:51:88:4f:35:cb:
43:43:4d:18:b4:77:35:34:37:11:0a:e3:23:13:a3:
42:2d:16:51:09:4e:12:96:8e:ee:eb:18:54:25:5d:
cc:dc:49:81:8f:1f:fe:a7:45:1e:ce:90:2f:fc:1a:
7a:29:30:cf:61:b9:63:57:b6:2b:72:88:89:d9:5b:
8a:9a:66:e8:49:12:de:a4:8e:26:54:d1:ca:13:05:
48:98:5d:8f:7a:7e:b6:97:a9:95:a9:a8:f2:74:84:
75:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:0A:96:1C:A9:49:C8:B6:73:57:6A:08:C8:5D:C1:F1:60:42:7C:C6
X509v3 Authority Key Identifier:
keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/3E2918989DF911EF971AD149C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
111.119.165.0/24
Signature Algorithm: sha256WithRSAEncryption
16:55:7c:8c:54:fe:73:c0:99:79:15:03:07:f1:ce:3e:c8:62:
7a:6e:c6:e9:e4:af:4c:3e:e3:72:96:1e:5c:38:ad:42:1e:1d:
5f:27:d8:5f:63:27:17:6c:ae:4a:59:b0:2d:b9:27:0b:f2:b6:
88:b3:d4:8c:08:49:8c:de:b5:3f:8d:7e:2e:fe:a9:c4:65:81:
1d:91:f8:c9:cd:c6:1c:e9:d7:4b:d2:d3:6f:03:2c:9f:f7:24:
c7:62:65:42:81:fc:e0:ab:ad:70:ae:90:70:45:c4:d4:1f:a7:
10:7f:d8:48:0c:58:02:72:48:1b:de:35:70:67:4b:ef:65:04:
6b:b4:27:3e:3d:11:bc:53:a0:92:ca:82:c3:4a:00:e5:5c:47:
4e:b9:e3:c9:64:46:6f:70:51:a6:a5:78:85:9c:c7:1a:6d:e9:
d4:fe:81:27:ee:3d:34:4d:3a:9a:69:55:7c:21:99:30:3b:11:
08:d2:ae:43:da:7f:5a:f1:8d:17:04:31:7c:a0:7e:a0:a3:26:
fe:57:9d:00:27:94:99:f9:e9:53:69:94:cf:01:7d:1c:16:fe:
5f:ca:11:d2:1e:8c:a5:78:ff:7c:40:0e:91:22:06:9b:fc:2a:
f7:ae:7d:e1:6d:33:39:55:2d:12:d3:72:57:c5:81:d9:b1:fa:
90:75:ad:c0
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICHLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB
ODEzOTYwM0EwHhcNMjQxMTA4MTc0NTI5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzJlNGUzOC00MjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAmw5nfLxLLP7iVcdH5UnBzdHKEXSvQ7bWy7Kk7rbG1ScMVOh2gHHDmklbpWF/
c7bWpGaQBo9YVacwM/xU//B00UH3o8VrDyKNtlj6bcz/hpdEJHRBEVAaV7FVZ6nx
WAUCGIWWpCYlqVI8CNQXZKHZ+KdSmVGXV5/acINfZGjlSN9L1IJTPqy4p1/bQ1ce
j4ZUtB6kYpiJnwSysbUk9bzfUYhPNctDQ00YtHc1NDcRCuMjE6NCLRZRCU4Slo7u
6xhUJV3M3EmBjx/+p0UezpAv/Bp6KTDPYbljV7YrcoiJ2VuKmmboSRLepI4mVNHK
EwVImF2Pen62l6mVqajydIR1MQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHYKlhyp
Sci2c1dqCMhdwfFgQnzGMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx
RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ
RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
N0E4NEEvMTgwNTE5MUFFMUVGMTFFNjlEMzY1MDFCQzRGOUFFMDIvM0UyOTE4OTg5
REY5MTFFRjk3MUFEMTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABvd6UwDQYJKoZIhvcNAQELBQADggEBABZVfIxU/nPAmXkV
Awfxzj7IYnpuxunkr0w+43KWHlw4rUIeHV8n2F9jJxdsrkpZsC25Jwvytoiz1IwI
SYzetT+Nfi7+qcRlgR2R+MnNxhzp10vS028DLJ/3JMdiZUKB/OCrrXCukHBFxNQf
pxB/2EgMWAJySBveNXBnS+9lBGu0Jz49EbxToJLKgsNKAOVcR06548lkRm9wUaal
eIWcxxpt6dT+gSfuPTRNOpppVXwhmTA7EQjSrkPaf1rxjRcEMXygfqCjJv5XnQAn
lJn56VNplM8BfRwW/l/KEdIejKV4/3xADpEiBpv8KveufeFtMzlVLRLTclfFgdmx
+pB1rcA=
-----END CERTIFICATE-----
Generated at Wed Nov 13 16:39:58 2024 by rpki-client on console-ams.rpki-client.org