Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/940E9F524A6B11EB9F7A5259C4F9AE02.roa
File: 940E9F524A6B11EB9F7A5259C4F9AE02.roa (raw, json)
Hash identifier: v+9abznHPBxKII1e0BCLuKLxcDh3SM//+1ubVf97Rmc=
Subject key identifier: 77:39:D3:6F:72:17:3F:E9:55:C8:E9:FC:4F:5D:8D:AB:87:02:FD:95
Certificate issuer: /CN=A918E319/serialNumber=6CFD56A77EAD9E159BCB18EB6DE862735091B54A
Certificate serial: 18A5
Authority key identifier: 6C:FD:56:A7:7E:AD:9E:15:9B:CB:18:EB:6D:E8:62:73:50:91:B5:4A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bP1Wp36tnhWbyxjrbehic1CRtUo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/940E9F524A6B11EB9F7A5259C4F9AE02.roa
Signing time: Sat 20 Jul 2024 17:04:15 +0000
ROA not before: Sat 20 Jul 2024 17:04:15 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 9260
IP address blocks: 103.70.250.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 27 Jul 2024 06:32:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6309 (0x18a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918E319/serialNumber=6CFD56A77EAD9E159BCB18EB6DE862735091B54A
Validity
Not Before: Jul 20 17:04:15 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=669bee0e-ca7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:36:a4:63:fb:1f:73:14:c9:84:9d:b1:68:17:
2a:7a:e0:57:98:76:ae:11:07:a4:34:a4:23:62:93:
87:61:75:8b:40:a4:f0:77:0b:48:08:4b:b6:80:e7:
96:b9:61:6d:35:ae:84:0b:33:cb:ea:c6:99:ea:d3:
d8:02:d8:fd:88:99:55:41:46:11:bc:76:bd:5b:96:
ce:08:2d:ba:52:40:73:2e:22:c5:6d:bb:e5:06:f1:
b4:df:42:2c:39:48:c6:97:01:de:9b:e7:61:1f:15:
5a:ac:8f:da:d1:d6:ce:f2:02:90:ea:85:51:39:96:
e7:0f:c9:5b:cf:3a:bf:10:fd:02:ac:0d:fe:0e:83:
b1:77:cc:58:fe:14:06:a5:79:b4:15:e9:d0:83:0d:
50:b7:7e:b5:0d:36:f5:e7:ee:4a:4b:6e:25:e2:60:
a0:99:e4:13:60:8f:2f:6f:d4:f7:69:0c:19:3c:26:
39:0f:55:7d:c1:70:4f:11:1f:eb:25:6a:37:66:43:
dc:c6:b3:16:cb:f1:fa:6b:6f:f1:7f:7c:70:ed:bc:
45:7d:45:db:65:29:c9:1f:5f:bb:f0:8c:d3:67:6b:
55:01:6b:a4:a0:f5:e3:8d:10:71:aa:f1:81:be:35:
a8:63:2c:70:60:b2:a0:d4:63:0b:c7:c3:02:07:0a:
f6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:39:D3:6F:72:17:3F:E9:55:C8:E9:FC:4F:5D:8D:AB:87:02:FD:95
X509v3 Authority Key Identifier:
keyid:6C:FD:56:A7:7E:AD:9E:15:9B:CB:18:EB:6D:E8:62:73:50:91:B5:4A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bP1Wp36tnhWbyxjrbehic1CRtUo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/940E9F524A6B11EB9F7A5259C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.70.250.0/23
Signature Algorithm: sha256WithRSAEncryption
33:09:0c:3e:94:60:fa:7e:9e:a7:47:a4:5e:8d:73:84:04:ff:
5a:13:99:aa:f1:fa:3b:2b:62:eb:f8:9f:ba:04:1d:a4:84:01:
9b:d4:b7:dd:3a:5a:a3:32:c7:9e:cd:71:04:10:02:d8:94:5c:
a5:d3:04:8e:7a:f9:c1:cb:fe:8e:f8:fa:33:4f:19:6c:97:d1:
05:27:c0:c5:5a:ca:a0:27:2a:61:33:7c:3e:ec:05:46:0e:a0:
7b:02:74:ec:d7:f5:98:1a:76:a3:8b:46:15:c0:f8:ca:7c:15:
e2:60:c5:4e:b7:0b:9d:25:df:36:17:05:57:71:e3:48:84:df:
b9:96:54:95:46:5d:00:91:af:dc:87:8c:b1:66:50:b6:d8:2e:
38:d9:fe:9e:8a:6b:10:f1:dc:70:46:7b:a3:3d:e1:c5:0f:c3:
05:7e:ab:6a:c2:2d:e6:4f:1e:91:0a:cc:c9:d1:ca:93:1f:b9:
29:2b:31:5a:b2:bd:fa:c1:ec:28:02:3c:f5:d1:83:67:d7:fb:
22:d1:49:b9:a9:44:4c:0e:96:b0:b7:98:d1:a4:6c:7f:d4:c4:
ea:65:d3:1b:f5:7f:33:8c:24:62:00:5e:2f:15:64:86:71:b0:
31:a7:83:c8:0e:e9:1b:e1:ff:35:0c:d6:b8:cd:4a:81:43:76:
54:b4:2e:d7
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICGKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEUzMTkxMTAvBgNVBAUTKDZDRkQ1NkE3N0VBRDlFMTU5QkNCMThFQjZERTg2Mjcz
NTA5MUI1NEEwHhcNMjQwNzIwMTcwNDE1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjliZWUwZS1jYTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEApTakY/sfcxTJhJ2xaBcqeuBXmHauEQekNKQjYpOHYXWLQKTwdwtICEu2gOeW
uWFtNa6ECzPL6saZ6tPYAtj9iJlVQUYRvHa9W5bOCC26UkBzLiLFbbvlBvG030Is
OUjGlwHem+dhHxVarI/a0dbO8gKQ6oVROZbnD8lbzzq/EP0CrA3+DoOxd8xY/hQG
pXm0FenQgw1Qt361DTb15+5KS24l4mCgmeQTYI8vb9T3aQwZPCY5D1V9wXBPER/r
JWo3ZkPcxrMWy/H6a2/xf3xw7bxFfUXbZSnJH1+78IzTZ2tVAWukoPXjjRBxqvGB
vjWoYyxwYLKg1GMLx8MCBwr2ZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHc5029y
Fz/pVcjp/E9djauHAv2VMB8GA1UdIwQYMBaAFGz9Vqd+rZ4Vm8sY623oYnNQkbVK
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTMxOS84NjhERDY1NjhD
MjYxMUU3QkMwNkM0NEVDNEY5QUUwMi9iUDFXcDM2dG5oV2J5eGpyYmVoaWMxQ1J0
VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2JQMVdwMzZ0bmhXYnl4anJiZWhpYzFDUnRVby5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEUzMTkvODY4REQ2NTY4QzI2MTFFN0JDMDZDNDRFQzRGOUFFMDIvOTQwRTlGNTI0
QTZCMTFFQjlGN0E1MjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnRvowDQYJKoZIhvcNAQELBQADggEBADMJDD6UYPp+nqdH
pF6Nc4QE/1oTmarx+jsrYuv4n7oEHaSEAZvUt906WqMyx57NcQQQAtiUXKXTBI56
+cHL/o74+jNPGWyX0QUnwMVayqAnKmEzfD7sBUYOoHsCdOzX9ZgadqOLRhXA+Mp8
FeJgxU63C50l3zYXBVdx40iE37mWVJVGXQCRr9yHjLFmULbYLjjZ/p6KaxDx3HBG
e6M94cUPwwV+q2rCLeZPHpEKzMnRypMfuSkrMVqyvfrB7CgCPPXRg2fX+yLRSbmp
REwOlrC3mNGkbH/UxOpl0xv1fzOMJGIAXi8VZIZxsDGng8gO6Rvh/zUM1rjNSoFD
dlS0Ltc=
-----END CERTIFICATE-----
Generated at Sat Jul 27 08:30:47 2024 by rpki-client on console-fra.rpki-client.org