Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/31DE023E790211EC9EE24885C4F9AE02.roa
File: 31DE023E790211EC9EE24885C4F9AE02.roa (raw, json)
Hash identifier: /5scwDIT/DFqKKqWxJkCE9Nl2VN5rXBQYKOiiD6MfUA=
Subject key identifier: 0A:B7:6C:26:80:7C:95:2E:91:9E:17:FE:C5:A1:A8:F7:EB:69:C2:93
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 7026
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/31DE023E790211EC9EE24885C4F9AE02.roa
Signing time: Wed 10 May 2023 16:42:11 +0000
ROA not before: Wed 10 May 2023 16:42:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 149198
IP address blocks: 103.177.154.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28710 (0x7026)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 10 16:42:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=645bc963-729e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:59:9f:c9:57:ca:6e:67:69:0d:38:b9:ec:ec:
53:76:35:73:d9:51:2d:12:d2:30:79:04:76:1d:82:
af:bc:78:68:e1:5a:44:66:bd:7a:ba:d1:b4:a2:cd:
a7:b5:78:02:eb:2f:46:b6:75:f1:7b:41:7c:66:ef:
e4:c3:dd:b4:72:15:2c:ab:bf:0d:7d:78:fa:95:20:
8f:1d:e3:aa:ff:5f:ab:2e:33:bf:60:3b:06:e9:b4:
0e:9d:b3:85:37:be:4e:e9:04:c4:e2:96:d3:c8:0b:
3b:82:69:cb:a6:5f:44:c9:a3:7f:dd:5d:7f:e1:29:
1d:a4:10:40:21:1d:fc:c1:90:ea:ea:36:c4:8b:ca:
2e:96:14:ed:2f:cf:3c:08:92:c4:06:27:d3:6a:25:
62:e5:9f:58:60:4d:37:6e:31:e0:f1:3a:dc:41:a8:
e8:ea:f8:3a:1c:31:52:fc:93:0a:9e:20:d1:9d:33:
93:b9:0d:5c:db:c9:dc:78:e6:cd:5a:56:42:c8:e8:
3b:20:a6:8d:b2:2d:28:2a:f5:d1:5b:7c:51:b2:69:
8d:e7:0c:c7:a8:a0:15:2e:5d:27:c5:d4:e6:3f:77:
1b:e9:64:9e:87:38:85:93:29:f9:fd:8a:c3:d5:59:
d7:b4:c2:42:3a:b3:a9:65:85:ee:56:a1:c6:df:47:
7f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:B7:6C:26:80:7C:95:2E:91:9E:17:FE:C5:A1:A8:F7:EB:69:C2:93
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/31DE023E790211EC9EE24885C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.177.154.0/23
Signature Algorithm: sha256WithRSAEncryption
23:36:4e:d8:79:df:d9:f1:60:48:ef:5c:58:ea:d2:d4:56:80:
76:51:e3:eb:98:e0:8f:cc:9f:2b:2f:65:0e:a8:42:7b:10:77:
54:cb:9e:e6:40:45:1e:f8:90:06:ad:48:75:8f:54:d0:aa:c8:
f4:ce:ee:30:e8:05:1c:ff:37:67:34:3e:b2:d3:fe:57:64:01:
24:d6:87:70:fd:fb:6a:f0:42:a9:ac:f5:08:6b:f8:69:7d:56:
3d:bf:e0:d2:3a:21:7f:97:99:9e:4d:8b:1d:77:56:83:bf:be:
87:6d:64:2d:5d:c7:6a:c1:bb:cf:ce:14:3b:c7:8c:ab:a3:13:
6e:9b:ae:a3:45:e3:1e:17:8b:24:59:cb:20:85:86:ff:ab:b8:
0e:da:b5:82:17:45:6b:3c:e7:36:e6:00:42:d0:b7:4f:4d:a2:
3c:ca:e7:aa:87:0c:e1:84:05:ba:9e:4d:d6:e1:0a:8f:b8:3f:
02:b9:08:79:b3:da:f9:e0:6b:46:2c:ea:42:65:0a:ea:32:46:
73:39:fe:36:53:eb:e7:d2:f4:ae:1c:79:fc:4b:85:81:94:bc:
d9:b5:0e:90:5a:f0:86:21:37:2c:88:7c:c0:a1:75:57:f1:4a:
28:16:6b:41:f9:0f:26:df:1b:c5:03:dd:3d:6e:bc:25:58:02:
8a:3b:f9:33
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICcCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz
RTNBQkM4MjMwHhcNMjMwNTEwMTY0MjExWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDViYzk2My03MjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAslmfyVfKbmdpDTi57OxTdjVz2VEtEtIweQR2HYKvvHho4VpEZr16utG0os2n
tXgC6y9GtnXxe0F8Zu/kw920chUsq78NfXj6lSCPHeOq/1+rLjO/YDsG6bQOnbOF
N75O6QTE4pbTyAs7gmnLpl9EyaN/3V1/4SkdpBBAIR38wZDq6jbEi8oulhTtL888
CJLEBifTaiVi5Z9YYE03bjHg8TrcQajo6vg6HDFS/JMKniDRnTOTuQ1c28nceObN
WlZCyOg7IKaNsi0oKvXRW3xRsmmN5wzHqKAVLl0nxdTmP3cb6WSehziFkyn5/YrD
1VnXtMJCOrOpZYXuVqHG30d/zwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAq3bCaA
fJUukZ4X/sWhqPfracKTMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw
RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5
Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMzFERTAyM0U3
OTAyMTFFQzlFRTI0ODg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnsZowDQYJKoZIhvcNAQELBQADggEBACM2Tth539nxYEjv
XFjq0tRWgHZR4+uY4I/MnysvZQ6oQnsQd1TLnuZARR74kAatSHWPVNCqyPTO7jDo
BRz/N2c0PrLT/ldkASTWh3D9+2rwQqms9Qhr+Gl9Vj2/4NI6IX+XmZ5Nix13VoO/
vodtZC1dx2rBu8/OFDvHjKujE26brqNF4x4XiyRZyyCFhv+ruA7atYIXRWs85zbm
AELQt09NojzK56qHDOGEBbqeTdbhCo+4PwK5CHmz2vnga0Ys6kJlCuoyRnM5/jZT
6+fS9K4cefxLhYGUvNm1DpBa8IYhNyyIfMChdVfxSigWa0H5DybfG8UD3T1uvCVY
Aoo7+TM=
-----END CERTIFICATE-----
Generated at Mon Nov 6 11:05:14 2023 by rpki-client on console-fra.rpki-client.org