Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/272E95469BDD11EAA977C354C4F9AE02.roa
File:                     272E95469BDD11EAA977C354C4F9AE02.roa (raw, json)
Hash identifier:          pX90Bi9L86T2QPWDnLl4En4zB6ZmM52b9FOWQh47a0A=
Subject key identifier:   45:CA:32:D7:EB:28:9D:E7:73:62:13:03:BD:1E:CB:B2:BA:88:DE:C4
Certificate issuer:       /CN=A919AB89/serialNumber=947EFD1BF6F93A98DFEBC153DAB0DA77CC4028C7
Certificate serial:       0820
Authority key identifier: 94:7E:FD:1B:F6:F9:3A:98:DF:EB:C1:53:DA:B0:DA:77:CC:40:28:C7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lH79G_b5Opjf68FT2rDad8xAKMc.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/272E95469BDD11EAA977C354C4F9AE02.roa
Signing time:             Thu 28 Sep 2023 21:18:27 +0000
ROA not before:           Thu 28 Sep 2023 21:18:27 +0000
ROA not after:            Sun 01 Dec 2024 00:00:00 +0000
asID:                     24226
IP address blocks:        202.160.115.0/24 maxlen: 24
                          202.160.117.0/24 maxlen: 24
                          202.160.119.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 20 Aug 2024 02:17:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2080 (0x820)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A919AB89/serialNumber=947EFD1BF6F93A98DFEBC153DAB0DA77CC4028C7
        Validity
            Not Before: Sep 28 21:18:27 2023 GMT
            Not After : Dec  1 00:00:00 2024 GMT
        Subject: CN=6515eda3-a8d1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:b0:07:5d:cc:d9:03:d7:aa:3e:2e:fc:9a:e5:
                    a9:47:92:8d:3d:c1:f8:6e:7d:fe:3b:a3:0e:35:68:
                    1c:fb:57:6c:e8:9e:75:19:9b:e3:dd:9d:36:70:3e:
                    c8:0d:ed:7e:53:38:d5:38:23:b8:98:be:9d:1c:8b:
                    f4:aa:b4:27:e3:fc:81:f8:e0:20:80:b9:ff:7a:26:
                    f8:53:c8:29:4a:a0:ee:47:69:83:ed:fe:7a:77:bd:
                    50:f7:93:39:8b:ee:71:c2:2c:28:bc:87:a5:28:74:
                    7e:28:71:f5:e3:ce:96:07:6d:3f:8b:31:df:bd:03:
                    e0:56:22:8e:8e:40:18:e4:d7:88:12:7f:b3:c8:45:
                    36:9b:33:2b:36:6c:a9:c2:1a:5d:7d:6f:c3:e7:8e:
                    18:fa:42:7d:14:15:e7:85:3b:af:f5:52:ba:32:31:
                    d9:8b:65:d3:6d:a9:e7:60:fd:d7:49:d2:b8:22:2e:
                    ba:0b:c6:a2:17:d0:4d:1a:9d:1d:36:2e:a7:d9:f0:
                    a3:a4:bc:e4:00:4c:27:52:b1:7e:e9:87:05:a3:9c:
                    5b:86:d9:38:a7:00:72:9c:3a:d0:e1:da:dd:fc:fe:
                    a4:d2:b9:5a:27:42:2d:6f:65:f7:bd:82:e5:80:d1:
                    8d:f4:39:3e:69:69:69:52:c0:cd:a0:e0:cd:ed:e3:
                    0e:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:CA:32:D7:EB:28:9D:E7:73:62:13:03:BD:1E:CB:B2:BA:88:DE:C4
            X509v3 Authority Key Identifier:
                keyid:94:7E:FD:1B:F6:F9:3A:98:DF:EB:C1:53:DA:B0:DA:77:CC:40:28:C7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/lH79G_b5Opjf68FT2rDad8xAKMc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lH79G_b5Opjf68FT2rDad8xAKMc.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AB89/CE06A9EC9BDA11EA82336A50C4F9AE02/272E95469BDD11EAA977C354C4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  202.160.115.0/24
                  202.160.117.0/24
                  202.160.119.0/24

    Signature Algorithm: sha256WithRSAEncryption
         31:55:dc:c2:20:f5:bc:9a:32:6f:58:87:06:f5:e9:86:93:93:
         ee:a6:f9:0d:15:11:0c:28:92:bf:08:a1:27:11:07:3c:5a:6b:
         b2:ea:82:16:b4:c1:56:89:b2:49:21:ce:a8:4e:c7:1a:1f:b6:
         cc:4d:11:8e:23:d1:08:46:ca:de:4a:c9:f9:9b:92:b4:31:e1:
         83:35:ff:77:1d:e9:a9:12:12:6d:bb:c0:02:2b:3e:f7:66:f6:
         0b:a4:bb:1c:9a:c9:a6:e5:d2:1d:b0:31:9c:39:de:22:44:82:
         39:a6:ae:c3:97:19:69:ae:89:ff:0c:2e:43:49:ff:e4:92:73:
         b4:c6:f5:30:50:55:17:66:7f:55:73:07:8f:b5:4d:9a:e6:3d:
         f5:9b:8b:75:86:87:6a:c4:37:4c:5e:37:e2:48:bd:7a:f6:3c:
         c5:dd:d2:71:8f:84:85:73:27:42:21:6b:54:58:9d:3e:15:5d:
         29:6f:d1:5c:b7:c9:7a:02:67:12:8d:ba:f7:01:d7:49:42:ad:
         20:dc:f6:99:f5:1b:59:49:07:26:19:8f:f9:de:a4:3b:a5:eb:
         a8:0a:b3:bd:b6:f5:0a:7a:df:e9:70:bf:14:1f:cc:b5:17:fc:
         97:d8:76:fe:d1:91:69:a7:2b:45:d1:17:dc:8e:66:c4:82:16:
         21:f4:67:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 20 06:00:10 2024 by rpki-client on console-ams.rpki-client.org