Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/C777F3F0696911EE97FB241FC4F9AE02.roa
File: C777F3F0696911EE97FB241FC4F9AE02.roa (raw, json)
Hash identifier: +3WMK3bXkpWHceowcRphIrkx2AsVPdMnHnJZHa8sOmw=
Subject key identifier: 14:19:A8:BB:A7:FB:97:9B:6A:64:62:D6:A8:95:F2:E5:FB:5B:6A:B8
Certificate issuer: /CN=A91A27AB/serialNumber=59D588125A716698738D1D1E9E6D8A68D7409B27
Certificate serial: 3A
Authority key identifier: 59:D5:88:12:5A:71:66:98:73:8D:1D:1E:9E:6D:8A:68:D7:40:9B:27
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdWIElpxZphzjR0enm2KaNdAmyc.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/C777F3F0696911EE97FB241FC4F9AE02.roa
Signing time: Fri 13 Oct 2023 01:42:33 +0000
ROA not before: Fri 13 Oct 2023 01:42:33 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 147186
IP address blocks: 103.99.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Apr 2024 04:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58 (0x3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A27AB/serialNumber=59D588125A716698738D1D1E9E6D8A68D7409B27
Validity
Not Before: Oct 13 01:42:33 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=6528a089-d634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f6:64:62:6a:31:3a:90:0d:61:02:4c:aa:3c:
db:5e:46:a5:50:78:07:cc:c0:29:94:c9:ca:49:a7:
43:57:1e:03:67:c9:8c:fc:85:08:a5:cf:cc:7b:e4:
5b:02:65:40:02:be:45:06:3e:bd:cd:0b:9e:6d:cc:
e9:ea:b0:4f:06:ec:f2:3a:59:cb:c6:07:2d:26:2b:
fc:c0:0d:d6:5f:e2:90:f9:13:7c:47:cd:14:0b:ba:
4c:66:2f:be:ea:a7:ba:1d:0b:53:e0:e1:09:6c:80:
83:45:f6:43:4c:11:73:fc:33:1b:e6:6f:56:ba:4e:
1b:e7:8f:a5:0d:19:58:08:fc:00:25:15:5d:fb:d5:
14:cf:bc:16:69:4b:09:88:9c:cf:8c:80:1a:8c:29:
38:62:45:d3:02:29:de:49:46:89:ec:42:04:61:5d:
d1:b4:93:d5:52:3a:33:42:c3:1e:67:74:42:39:64:
66:ff:5d:99:cb:b0:97:af:ee:e3:9a:7d:81:21:9f:
dd:4c:5e:a5:89:f9:40:17:21:0c:55:c4:c4:9e:66:
c8:09:da:4e:5b:fa:e9:c2:3a:8d:31:c5:f3:f4:7d:
f5:7b:40:aa:af:33:54:9c:2e:bf:70:6d:eb:15:96:
72:e9:12:ed:00:f5:9f:a6:54:2f:07:a3:1c:05:1f:
65:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:19:A8:BB:A7:FB:97:9B:6A:64:62:D6:A8:95:F2:E5:FB:5B:6A:B8
X509v3 Authority Key Identifier:
keyid:59:D5:88:12:5A:71:66:98:73:8D:1D:1E:9E:6D:8A:68:D7:40:9B:27
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/WdWIElpxZphzjR0enm2KaNdAmyc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdWIElpxZphzjR0enm2KaNdAmyc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/C777F3F0696911EE97FB241FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.53.0/24
Signature Algorithm: sha256WithRSAEncryption
58:96:fa:d1:cc:b6:29:8f:68:e0:50:44:63:92:80:e7:6d:9c:
f0:6a:2b:fe:5f:0b:47:55:8e:36:dd:24:8a:61:9b:05:30:32:
a7:c3:61:e8:bd:67:a8:d5:52:b8:9f:a1:eb:5d:57:4c:d1:f9:
fd:3c:d6:29:ae:21:ac:71:3e:82:4e:ce:b2:c8:d0:8c:a2:f0:
f9:af:0a:7a:db:9c:b1:5a:18:68:39:72:7f:fc:d0:fd:43:a0:
b2:a0:b1:cb:d3:04:0c:af:55:65:0e:df:e4:74:d5:dc:e1:09:
49:45:a5:f5:2c:02:08:22:9a:e3:bd:36:5d:05:94:03:3d:d3:
e4:20:df:50:d8:c2:4b:63:b9:83:5e:de:82:d5:23:91:ad:3a:
6a:ae:fe:73:a7:8a:22:8c:c2:ad:e8:cf:0f:6c:a3:cb:18:c9:
4b:ce:46:1f:4d:74:ab:40:69:fa:7c:07:7a:14:4e:a1:02:4c:
1f:4f:9c:69:15:44:fe:16:19:82:56:cb:cb:8b:4f:c2:f1:7a:
e5:52:ac:f7:c3:1d:3d:08:a6:e1:b7:41:3b:78:9f:58:4c:51:
8c:a7:b5:25:66:c4:ca:ff:a9:ab:30:46:55:41:32:d9:f5:37:
2e:ea:a7:08:88:a8:06:d9:5f:cd:c8:89:e2:b3:ee:5d:96:ac:
f2:75:f6:e5
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB
MjdBQjExMC8GA1UEBRMoNTlENTg4MTI1QTcxNjY5ODczOEQxRDFFOUU2RDhBNjhE
NzQwOUIyNzAeFw0yMzEwMTMwMTQyMzNaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY1MjhhMDg5LWQ2MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDE9mRiajE6kA1hAkyqPNteRqVQeAfMwCmUycpJp0NXHgNnyYz8hQilz8x75FsC
ZUACvkUGPr3NC55tzOnqsE8G7PI6WcvGBy0mK/zADdZf4pD5E3xHzRQLukxmL77q
p7odC1Pg4QlsgINF9kNMEXP8Mxvmb1a6Thvnj6UNGVgI/AAlFV371RTPvBZpSwmI
nM+MgBqMKThiRdMCKd5JRonsQgRhXdG0k9VSOjNCwx5ndEI5ZGb/XZnLsJev7uOa
fYEhn91MXqWJ+UAXIQxVxMSeZsgJ2k5b+unCOo0xxfP0ffV7QKqvM1ScLr9wbesV
lnLpEu0A9Z+mVC8HoxwFH2XLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUFBmou6f7
l5tqZGLWqJXy5ftbargwHwYDVR0jBBgwFoAUWdWIElpxZphzjR0enm2KaNdAmycw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyN0FCLzZGNkU5ODI4MzEw
RTExRUU4ODlGRjAzRkM0RjlBRTAyL1dkV0lFbHB4WnBoempSMGVubTJLYU5kQW15
Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvV2RXSUVscHhacGh6alIwZW5tMkthTmRBbXljLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB
MjdBQi82RjZFOTgyODMxMEUxMUVFODg5RkYwM0ZDNEY5QUUwMi9DNzc3RjNGMDY5
NjkxMUVFOTdGQjI0MUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAGdjNTANBgkqhkiG9w0BAQsFAAOCAQEAWJb60cy2KY9o4FBE
Y5KA522c8Gor/l8LR1WONt0kimGbBTAyp8Nh6L1nqNVSuJ+h611XTNH5/TzWKa4h
rHE+gk7OssjQjKLw+a8KetucsVoYaDlyf/zQ/UOgsqCxy9MEDK9VZQ7f5HTV3OEJ
SUWl9SwCCCKa4702XQWUAz3T5CDfUNjCS2O5g17egtUjka06aq7+c6eKIozCrejP
D2yjyxjJS85GH010q0Bp+nwHehROoQJMH0+caRVE/hYZglbLy4tPwvF65VKs98Md
PQim4bdBO3ifWExRjKe1JWbEyv+pqzBGVUEy2fU3LuqnCIioBtlfzciJ4rPuXZas
8nX25Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:53 2024 by rpki-client on console-ams.rpki-client.org