Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0E094B5481F511EEB8E3DC23C4F9AE02.roa
File: 0E094B5481F511EEB8E3DC23C4F9AE02.roa (raw, json)
Hash identifier: vZTRI16ZKrMoLrsNEPSvY8390fooAn/FoEGs9JXcDYc=
Subject key identifier: 4A:2C:25:BC:49:C3:6D:90:62:D1:28:42:FF:C6:C6:5F:94:64:3D:9F
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 7D76
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0E094B5481F511EEB8E3DC23C4F9AE02.roa
Signing time: Mon 13 Nov 2023 07:20:00 +0000
ROA not before: Mon 13 Nov 2023 07:20:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136364
IP address blocks: 103.165.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Feb 2024 11:06:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32118 (0x7d76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Nov 13 07:20:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6551ce20-1d6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:62:c2:56:07:b1:2f:b9:69:69:de:62:89:f7:
33:bf:b7:94:fa:c5:38:a1:f5:24:01:93:8a:b6:cb:
b0:22:10:6f:d0:42:a0:52:c0:c7:f5:de:08:f1:32:
be:17:3f:a4:29:7f:d4:dd:2f:22:51:2f:cf:05:26:
e3:1b:c3:8e:cb:cf:26:a2:a6:4d:54:1f:68:ee:74:
3b:bf:44:0e:fd:2b:76:bb:1c:bd:53:8c:00:e5:7e:
b8:a5:9a:95:cd:8c:83:d6:1d:67:fc:c2:2e:cc:cd:
59:bf:78:b2:a4:6c:4f:9f:34:19:b9:3b:6d:6e:26:
a8:c9:cd:80:eb:b1:09:c8:c6:2f:d9:3a:d5:89:6a:
ff:11:28:90:15:f1:54:32:b9:db:02:9e:f0:f5:93:
d9:0a:d5:01:50:8c:d0:f5:a8:b0:19:70:0c:1a:d7:
f5:41:c2:d9:6e:ca:17:0e:76:e0:83:21:d9:2c:a6:
5f:9b:c1:37:cb:83:9d:9b:dc:6d:e4:d1:02:43:4c:
0d:04:24:67:1e:1a:b4:7b:13:79:1a:55:9e:07:3c:
d6:63:5d:2d:47:16:36:7e:48:52:6f:70:5e:29:eb:
f6:9f:e0:cf:53:7d:b3:d7:e5:dc:7a:bd:82:fc:a6:
30:ed:49:3e:4a:6d:a0:0e:62:53:aa:95:da:12:c0:
ab:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:2C:25:BC:49:C3:6D:90:62:D1:28:42:FF:C6:C6:5F:94:64:3D:9F
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0E094B5481F511EEB8E3DC23C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.165.94.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:06:9e:16:c3:28:94:c3:55:e0:d0:5c:8c:d3:26:2b:3b:26:
ca:ea:90:3a:25:c0:53:dd:56:6d:96:59:be:a5:f0:b8:ef:9a:
d8:11:1a:77:17:77:6d:e0:e4:43:c1:d3:f6:44:0d:7b:09:27:
a2:be:e8:3f:81:48:9e:5b:e2:c4:9d:e8:96:f9:01:83:67:df:
c5:c1:9f:a1:c8:79:5c:43:3b:de:03:b2:61:96:37:df:1f:8d:
c8:fb:c7:3c:88:35:84:ad:ba:f7:b9:dc:ef:68:a5:b6:5a:da:
dc:17:78:bc:3f:ca:ec:28:8b:75:41:65:e7:e0:29:12:4f:7a:
82:be:c7:a8:85:4b:ae:0b:84:de:76:65:ae:dc:be:24:a0:05:
c7:ba:5e:14:a0:08:58:a6:65:d7:72:22:97:62:3e:1f:eb:61:
b3:0a:a5:0e:11:5f:92:cf:6e:59:dc:26:ed:a0:23:bf:65:16:
a8:ed:80:46:8d:32:b4:53:52:da:bb:64:d3:3b:7d:51:b3:f0:
35:39:f8:f0:e7:e0:ec:b9:51:1f:ed:1a:3f:ba:66:74:c8:c1:
bd:af:70:67:54:9d:bf:f8:17:65:bb:ab:0d:d1:00:60:b4:a1:
46:91:80:7e:65:ca:0c:40:86:79:20:cc:f8:99:2a:96:e7:bb:
03:f6:d9:60
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICfXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz
RTNBQkM4MjMwHhcNMjMxMTEzMDcyMDAwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTUxY2UyMC0xZDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA3WLCVgexL7lpad5iifczv7eU+sU4ofUkAZOKtsuwIhBv0EKgUsDH9d4I8TK+
Fz+kKX/U3S8iUS/PBSbjG8OOy88moqZNVB9o7nQ7v0QO/St2uxy9U4wA5X64pZqV
zYyD1h1n/MIuzM1Zv3iypGxPnzQZuTttbiaoyc2A67EJyMYv2TrViWr/ESiQFfFU
MrnbAp7w9ZPZCtUBUIzQ9aiwGXAMGtf1QcLZbsoXDnbggyHZLKZfm8E3y4Odm9xt
5NECQ0wNBCRnHhq0exN5GlWeBzzWY10tRxY2fkhSb3BeKev2n+DPU32z1+Xcer2C
/KYw7Uk+Sm2gDmJTqpXaEsCrVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEosJbxJ
w22QYtEoQv/Gxl+UZD2fMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw
RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5
Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMEUwOTRCNTQ4
MUY1MTFFRUI4RTNEQzIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnpV4wDQYJKoZIhvcNAQELBQADggEBAKUGnhbDKJTDVeDQ
XIzTJis7JsrqkDolwFPdVm2WWb6l8LjvmtgRGncXd23g5EPB0/ZEDXsJJ6K+6D+B
SJ5b4sSd6Jb5AYNn38XBn6HIeVxDO94DsmGWN98fjcj7xzyINYStuve53O9opbZa
2twXeLw/yuwoi3VBZefgKRJPeoK+x6iFS64LhN52Za7cviSgBce6XhSgCFimZddy
IpdiPh/rYbMKpQ4RX5LPblncJu2gI79lFqjtgEaNMrRTUtq7ZNM7fVGz8DU5+PDn
4Oy5UR/tGj+6ZnTIwb2vcGdUnb/4F2W7qw3RAGC0oUaRgH5lygxAhnkgzPiZKpbn
uwP22WA=
-----END CERTIFICATE-----
Generated at Fri Feb 9 15:35:09 2024 by rpki-client on console-fra.rpki-client.org