Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D4A/819698FC05D511EE93F91C15C4F9AE02/412D396805DC11EE9827EB33C4F9AE02.roa
File: 412D396805DC11EE9827EB33C4F9AE02.roa (raw, json)
Hash identifier: C9qeBYIuGIBPo3aRiOaUoCkznQFO3STtEW9ecfLBxuo=
Subject key identifier: D5:87:51:40:EE:A7:41:32:A7:7A:52:85:F4:9E:60:A4:2F:B5:F0:03
Certificate issuer: /CN=A91A1D4A/serialNumber=C9E8090060F8AE6370A01B7E1EC1D6E26E4FC01A
Certificate serial: 02
Authority key identifier: C9:E8:09:00:60:F8:AE:63:70:A0:1B:7E:1E:C1:D6:E2:6E:4F:C0:1A
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yegJAGD4rmNwoBt-HsHW4m5PwBo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D4A/819698FC05D511EE93F91C15C4F9AE02/412D396805DC11EE9827EB33C4F9AE02.roa
Signing time: Thu 08 Jun 2023 09:10:04 +0000
ROA not before: Thu 08 Jun 2023 09:10:04 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 151400
IP address blocks: 103.215.180.0/23 maxlen: 24
2401:8e0::/32 maxlen: 40
Validation: Failed, certificate revoked on Fri 09 Jun 2023 05:20:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A1D4A/serialNumber=C9E8090060F8AE6370A01B7E1EC1D6E26E4FC01A
Validity
Not Before: Jun 8 09:10:04 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=64819aec-9463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:6a:8e:b7:78:ee:0c:d0:87:5b:b8:2e:17:ac:
39:fe:24:9c:da:d8:0b:8b:2c:c3:eb:04:a7:7a:2e:
f4:a5:d8:e6:4d:a3:09:8a:1a:7b:90:79:af:08:75:
a7:1d:e4:4c:60:61:36:c9:70:22:5c:43:77:90:07:
33:da:3f:e1:65:78:fb:b0:ca:27:7b:e6:6f:e9:25:
b7:61:92:5f:45:d3:47:80:48:cf:f7:ef:0c:de:b2:
05:9d:20:35:ca:d2:ea:a9:64:59:3a:4d:32:b9:76:
b4:c4:69:f1:fc:73:e0:3c:b6:42:9c:72:8d:8e:d5:
ee:ff:a0:7a:5b:e3:3e:dd:c6:ea:84:6e:52:fe:18:
31:f7:74:f0:17:7c:d9:59:cb:16:a4:6b:1f:5d:9b:
22:af:e5:a5:c3:3e:90:dc:f6:e2:9a:49:ec:cd:58:
59:f9:34:02:41:93:db:59:8d:4b:b6:50:4a:52:41:
f6:83:57:f1:cc:0a:93:0d:f0:dc:6f:f9:35:71:5c:
94:e5:ee:f4:86:69:24:22:ae:bb:c2:fa:04:bb:12:
2d:e7:6f:5a:6f:c5:bc:07:d1:dc:2f:1a:cd:db:d8:
f0:de:13:34:03:c1:f8:20:05:c0:42:b4:43:6c:73:
d0:53:8f:29:09:37:e6:8b:b8:61:77:cc:67:7b:97:
e6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:87:51:40:EE:A7:41:32:A7:7A:52:85:F4:9E:60:A4:2F:B5:F0:03
X509v3 Authority Key Identifier:
keyid:C9:E8:09:00:60:F8:AE:63:70:A0:1B:7E:1E:C1:D6:E2:6E:4F:C0:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A1D4A/819698FC05D511EE93F91C15C4F9AE02/yegJAGD4rmNwoBt-HsHW4m5PwBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yegJAGD4rmNwoBt-HsHW4m5PwBo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D4A/819698FC05D511EE93F91C15C4F9AE02/412D396805DC11EE9827EB33C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.215.180.0/23
IPv6:
2401:8e0::/32
Signature Algorithm: sha256WithRSAEncryption
7a:d9:bc:b7:59:40:09:43:38:ea:b3:00:8f:b2:90:c7:0c:58:
9f:0a:2c:ed:f6:0c:e1:af:45:46:38:b5:50:e9:fa:38:52:a2:
ee:80:4b:c5:41:6c:73:d5:a9:b2:e4:6f:92:26:3f:98:ca:e6:
55:1d:5c:63:77:f9:a1:0a:96:c0:90:b6:6c:48:46:6c:82:5b:
92:3b:d6:6c:7a:d1:84:66:14:10:b2:52:ab:b8:6d:cc:06:15:
ef:78:72:20:21:f6:ab:b5:68:00:58:4e:22:7f:42:41:52:57:
9e:30:dc:13:88:36:9e:93:0d:fa:f4:d3:95:e7:29:6b:0c:10:
de:b7:f3:88:a3:e4:75:e7:b0:a9:4b:f2:d8:fb:13:95:22:3f:
37:6a:21:e8:2a:dc:a7:c8:f5:e1:65:bf:87:94:1e:5d:9a:01:
ac:43:6e:53:76:0b:0e:39:fe:1a:88:12:f0:ab:7f:ac:ad:a8:
64:16:c3:f3:57:36:07:cf:67:88:96:81:4f:2b:d6:33:19:e6:
b8:6e:ee:4c:3e:ae:48:9c:9b:2d:b7:95:55:d0:9a:12:c8:3d:
f5:85:1d:14:07:fb:c1:d8:36:63:00:24:cb:f4:c8:83:1b:83:
cd:0c:a9:24:06:d9:5d:55:f1:66:c8:77:a5:f3:7f:89:ea:ba:
e6:d0:be:7a
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB
MUQ0QTExMC8GA1UEBRMoQzlFODA5MDA2MEY4QUU2MzcwQTAxQjdFMUVDMUQ2RTI2
RTRGQzAxQTAeFw0yMzA2MDgwOTEwMDRaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV
BAMTDTY0ODE5YWVjLTk0NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDwao63eO4M0IdbuC4XrDn+JJza2AuLLMPrBKd6LvSl2OZNowmKGnuQea8Idacd
5ExgYTbJcCJcQ3eQBzPaP+FlePuwyid75m/pJbdhkl9F00eASM/37wzesgWdIDXK
0uqpZFk6TTK5drTEafH8c+A8tkKcco2O1e7/oHpb4z7dxuqEblL+GDH3dPAXfNlZ
yxakax9dmyKv5aXDPpDc9uKaSezNWFn5NAJBk9tZjUu2UEpSQfaDV/HMCpMN8Nxv
+TVxXJTl7vSGaSQirrvC+gS7Ei3nb1pvxbwH0dwvGs3b2PDeEzQDwfggBcBCtENs
c9BTjykJN+aLuGF3zGd7l+b3AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQU1YdRQO6n
QTKnelKF9J5gpC+18AMwHwYDVR0jBBgwFoAUyegJAGD4rmNwoBt+HsHW4m5PwBow
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExRDRBLzgxOTY5OEZDMDVE
NTExRUU5M0Y5MUMxNUM0RjlBRTAyL3llZ0pBR0Q0cm1Od29CdC1Ic0hXNG01UHdC
by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIveWVnSkFHRDRybU53b0J0LUhzSFc0bTVQd0JvLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
MUQ0QS84MTk2OThGQzA1RDUxMUVFOTNGOTFDMTVDNEY5QUUwMi80MTJEMzk2ODA1
REMxMUVFOTgyN0VCMzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf
MB0wDAQCAAEwBgMEAWfXtDANBAIAAjAHAwUAJAEI4DANBgkqhkiG9w0BAQsFAAOC
AQEAetm8t1lACUM46rMAj7KQxwxYnwos7fYM4a9FRji1UOn6OFKi7oBLxUFsc9Wp
suRvkiY/mMrmVR1cY3f5oQqWwJC2bEhGbIJbkjvWbHrRhGYUELJSq7htzAYV73hy
ICH2q7VoAFhOIn9CQVJXnjDcE4g2npMN+vTTlecpawwQ3rfziKPkdeewqUvy2PsT
lSI/N2oh6Crcp8j14WW/h5QeXZoBrENuU3YLDjn+GogS8Kt/rK2oZBbD81c2B89n
iJaBTyvWMxnmuG7uTD6uSJybLbeVVdCaEsg99YUdFAf7wdg2YwAky/TIgxuDzQyp
JAbZXVXxZsh3pfN/ieq65tC+eg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:53 2024 by rpki-client on console-ams.rpki-client.org