Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/C1BC7028511111EEB1F5CB5BC4F9AE02.roa
File: C1BC7028511111EEB1F5CB5BC4F9AE02.roa (raw, json)
Hash identifier: sFZnrJ5UmI472S3AzfDp2PbbIYx7O3FFKiEpE2/8pT4=
Subject key identifier: EE:5C:9A:4D:10:C6:1A:5F:E8:D9:BE:60:58:6A:07:B7:8F:EC:81:3B
Certificate issuer: /CN=A91991D3/serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17
Certificate serial: 2E
Authority key identifier: 19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17
Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/C1BC7028511111EEB1F5CB5BC4F9AE02.roa
Signing time: Tue 31 Oct 2023 04:55:11 +0000
ROA not before: Tue 31 Oct 2023 04:55:11 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 21859
IP address blocks: 185.254.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 26 May 2024 02:33:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46 (0x2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91991D3/serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17
Validity
Not Before: Oct 31 04:55:11 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=654088af-48a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8e:bb:37:62:0c:53:f8:68:7a:5f:82:5b:bc:
03:a2:17:f0:91:12:9f:2f:04:db:de:fb:d7:4c:74:
54:6c:c8:75:a1:74:0e:17:f1:c8:ad:d9:5c:99:1e:
27:de:8d:11:99:26:db:52:86:74:61:0f:3d:ed:88:
72:d1:bc:b6:16:ff:fd:0b:b9:e4:d1:10:bf:27:92:
b6:be:dd:2a:8c:f1:56:e5:11:68:56:5c:22:e9:c0:
46:79:5b:94:6a:2a:61:79:35:60:45:4b:0e:c7:1d:
4d:3c:6a:d2:ce:18:6c:d3:1d:6d:ed:29:8f:78:2f:
97:7c:00:d4:b4:15:0d:97:7c:13:b5:c1:6e:58:ce:
97:6f:0f:d0:51:0c:f0:d6:09:44:5e:38:35:cc:94:
4e:5d:4b:81:f2:f4:f1:de:81:65:ac:d0:9f:e6:f1:
20:cf:ae:2a:e1:55:2b:55:62:c3:36:94:55:64:c5:
2b:34:10:9c:05:9f:41:ab:0b:0d:07:10:e1:5d:a2:
38:db:1b:7a:d1:f1:85:be:32:c3:14:50:53:37:bc:
c4:bb:2d:08:92:47:79:34:08:c1:15:4b:74:8f:b4:
13:48:b7:be:61:87:c4:e2:b0:69:ff:2e:5f:ee:f7:
6d:bd:33:d5:94:fc:82:84:03:14:59:de:62:d1:e7:
88:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:5C:9A:4D:10:C6:1A:5F:E8:D9:BE:60:58:6A:07:B7:8F:EC:81:3B
X509v3 Authority Key Identifier:
keyid:19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/C1BC7028511111EEB1F5CB5BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
185.254.241.0/24
Signature Algorithm: sha256WithRSAEncryption
74:9c:4e:51:83:66:31:e3:d9:21:54:ae:93:c2:da:c8:a4:f7:
6d:72:b0:b8:f4:4b:18:ef:2e:ed:61:b1:69:66:11:b9:34:c8:
ce:65:49:6e:32:bf:65:f2:70:2a:98:b6:ba:a0:e5:77:4c:25:
c0:6e:e6:03:35:98:f5:74:2f:8e:52:e5:c7:f9:8e:b7:5a:f7:
ef:87:7d:4a:16:e3:dd:69:6c:b1:0a:1f:62:ab:3d:2b:87:22:
7c:34:59:80:dc:ad:9f:32:4b:87:fc:be:bb:bd:70:1e:59:45:
78:e0:bf:8e:9f:a9:0b:17:29:9f:a5:9e:1d:b2:5d:2b:5b:e4:
32:5f:c4:6c:9a:98:32:14:5c:8a:a3:ee:1e:ab:9d:f0:88:c8:
cf:1c:cf:b0:c6:ba:39:26:0e:f2:64:72:db:65:78:22:1a:dd:
ee:95:3b:2e:0b:f9:ec:b1:36:21:1c:52:0d:08:63:49:32:37:
41:a2:03:91:cf:76:ed:d0:4c:75:d8:28:c6:7a:28:3a:e1:66:
12:57:c3:74:42:d5:b8:73:7f:ed:de:bd:cb:23:36:19:99:f0:
55:5f:36:c3:13:17:e3:c3:28:a7:a6:cc:8d:a3:53:57:21:32:
a8:d4:ec:74:ad:8d:79:e9:af:d2:37:10:cc:6d:e9:34:5b:1c:
17:0e:1a:ee
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5
OTFEMzExMC8GA1UEBRMoMTk1ODEzMzhBOUQ2M0Q5NUE5NkQxNzExNjIzRTJGNjYw
RUIwRkIxNzAeFw0yMzEwMzEwNDU1MTFaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV
BAMTDTY1NDA4OGFmLTQ4YTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDYjrs3YgxT+Gh6X4JbvAOiF/CREp8vBNve+9dMdFRsyHWhdA4X8cit2VyZHife
jRGZJttShnRhDz3tiHLRvLYW//0LueTREL8nkra+3SqM8VblEWhWXCLpwEZ5W5Rq
KmF5NWBFSw7HHU08atLOGGzTHW3tKY94L5d8ANS0FQ2XfBO1wW5YzpdvD9BRDPDW
CUReODXMlE5dS4Hy9PHegWWs0J/m8SDPrirhVStVYsM2lFVkxSs0EJwFn0GrCw0H
EOFdojjbG3rR8YW+MsMUUFM3vMS7LQiSR3k0CMEVS3SPtBNIt75hh8TisGn/Ll/u
9229M9WU/IKEAxRZ3mLR54gpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU7lyaTRDG
Gl/o2b5gWGoHt4/sgTswHwYDVR0jBBgwFoAUGVgTOKnWPZWpbRcRYj4vZg6w+xcw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5MUQzLzYyOUU4QjIwM0Iy
MzExRUVBNDNCMDIxOUM0RjlBRTAyL0dWZ1RPS25XUFpXcGJSY1JZajR2Wmc2dy14
Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG
RDFGRjIvR1ZnVE9LbldQWldwYlJjUllqNHZaZzZ3LXhjLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5
OTFEMy82MjlFOEIyMDNCMjMxMUVFQTQzQjAyMTlDNEY5QUUwMi9DMUJDNzAyODUx
MTExMUVFQjFGNUNCNUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEALn+8TANBgkqhkiG9w0BAQsFAAOCAQEAdJxOUYNmMePZIVSu
k8LayKT3bXKwuPRLGO8u7WGxaWYRuTTIzmVJbjK/ZfJwKpi2uqDld0wlwG7mAzWY
9XQvjlLlx/mOt1r374d9Shbj3WlssQofYqs9K4cifDRZgNytnzJLh/y+u71wHllF
eOC/jp+pCxcpn6WeHbJdK1vkMl/EbJqYMhRciqPuHqud8IjIzxzPsMa6OSYO8mRy
22V4Ihrd7pU7Lgv57LE2IRxSDQhjSTI3QaIDkc927dBMddgoxnooOuFmElfDdELV
uHN/7d69yyM2GZnwVV82wxMX48Mop6bMjaNTVyEyqNTsdK2Neemv0jcQzG3pNFsc
Fw4a7g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:34 2024 by rpki-client on console-fra.rpki-client.org