Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/357AE578ACFB11EDA84F9711C4F9AE02.roa
File: 357AE578ACFB11EDA84F9711C4F9AE02.roa (raw, json)
Hash identifier: yuB48ztij3OBdx+GOen23whE/mCBxtVIWwhGvDX7z6I=
Subject key identifier: CB:0F:33:5C:0F:E7:4B:86:3F:A1:EA:BB:B4:82:B7:CF:DC:FB:F0:15
Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638
Certificate serial: CA
Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/357AE578ACFB11EDA84F9711C4F9AE02.roa
Signing time: Tue 05 Sep 2023 04:34:51 +0000
ROA not before: Tue 05 Sep 2023 04:34:51 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 6718
IP address blocks: 150.107.224.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 09 Jul 2024 05:17:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 202 (0xca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638
Validity
Not Before: Sep 5 04:34:51 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=64f6afeb-f624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ec:33:cc:9d:2f:db:ee:33:3e:ed:e3:bb:5c:
87:23:46:ac:0a:46:bc:32:b6:a2:1a:7a:b2:7a:88:
6e:2f:d6:7d:57:0d:f7:d0:82:1d:03:e5:da:82:f2:
86:8d:a9:0d:5c:2c:30:a3:09:3a:8c:48:9b:87:c0:
52:63:d3:b6:f5:3b:e1:66:4a:a0:5b:d3:50:be:4e:
d8:df:ca:d8:37:06:4d:a2:71:f2:0f:a3:dd:4a:36:
2c:73:a9:12:b8:df:e3:23:88:18:fd:ed:ca:a7:03:
ed:17:86:77:6b:02:80:8a:a9:39:84:93:dc:ea:94:
36:37:04:97:1c:5c:54:ab:8e:f6:34:50:e5:4b:e2:
cc:7e:fa:8e:d7:0f:88:fa:4a:75:41:43:06:f5:9b:
63:dc:f2:be:b8:74:ed:2b:62:14:bd:21:8f:db:a0:
fc:4a:a6:25:68:6f:35:10:31:fb:b6:7a:cf:86:88:
79:ac:17:71:39:48:72:9a:4b:95:80:6c:f6:ab:e1:
b6:69:fe:7c:12:b5:d8:50:aa:de:4b:7c:c2:70:fe:
fb:e2:e6:02:87:71:a0:51:de:7f:a8:1d:47:30:23:
6d:90:34:f1:70:80:6a:50:b7:76:8d:01:71:09:93:
30:f2:40:fa:cf:3c:f7:c5:2a:1f:19:e9:2a:c1:54:
fb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:0F:33:5C:0F:E7:4B:86:3F:A1:EA:BB:B4:82:B7:CF:DC:FB:F0:15
X509v3 Authority Key Identifier:
keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/357AE578ACFB11EDA84F9711C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
150.107.224.0/23
Signature Algorithm: sha256WithRSAEncryption
78:ae:87:fa:7a:4f:86:69:36:91:d7:83:54:40:b0:5e:ee:04:
71:09:4a:3b:36:8c:f8:ab:75:55:41:af:f1:53:37:7d:12:a4:
7e:44:b1:d9:b5:c1:d0:39:73:ab:2c:df:6d:59:51:b1:f6:8a:
a6:60:5a:4f:d9:19:82:2e:26:0e:e7:0a:fa:89:38:e6:03:55:
fc:a1:14:07:9d:67:0b:17:ba:ed:74:76:9a:88:b7:40:00:53:
3b:df:1c:e0:f9:db:3f:88:4f:40:f3:e8:ed:f9:50:ac:b6:2c:
0c:ec:af:d1:ac:95:bd:23:d2:7c:7a:0b:1c:10:a0:66:68:3d:
cb:a8:b5:ae:bc:75:47:8f:bc:45:da:8e:cf:12:57:4a:29:7c:
94:ad:8b:4d:b6:a2:dd:da:a6:5c:5f:be:98:a3:43:32:b4:fe:
26:d5:51:b5:1d:9b:9c:96:fb:00:3b:2e:ce:94:ce:62:a2:03:
ea:64:3d:23:ae:fe:c2:64:60:b6:13:82:c2:a0:b1:d9:86:3b:
64:2c:79:11:29:18:b0:9b:19:cf:4c:8e:e9:36:1b:ea:bf:32:
11:f4:a5:71:9c:93:24:61:d7:85:a0:26:fb:56:02:83:c3:13:
90:84:fc:bd:ff:7d:b0:1b:1b:d8:60:f8:38:d6:25:03:71:df:
12:c3:9a:3e
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5
Njk4RkU2MzgwHhcNMjMwOTA1MDQzNDUxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NGY2YWZlYi1mNjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxewzzJ0v2+4zPu3ju1yHI0asCka8MraiGnqyeohuL9Z9Vw330IIdA+XagvKG
jakNXCwwowk6jEibh8BSY9O29TvhZkqgW9NQvk7Y38rYNwZNonHyD6PdSjYsc6kS
uN/jI4gY/e3KpwPtF4Z3awKAiqk5hJPc6pQ2NwSXHFxUq472NFDlS+LMfvqO1w+I
+kp1QUMG9Ztj3PK+uHTtK2IUvSGP26D8SqYlaG81EDH7tnrPhoh5rBdxOUhymkuV
gGz2q+G2af58ErXYUKreS3zCcP774uYCh3GgUd5/qB1HMCNtkDTxcIBqULd2jQFx
CZMw8kD6zzz3xSofGekqwVT76QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMsPM1wP
50uGP6Hqu7SCt8/c+/AVMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx
ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1
amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvMzU3QUU1NzhB
Q0ZCMTFFREE4NEY5NzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAGWa+AwDQYJKoZIhvcNAQELBQADggEBAHiuh/p6T4ZpNpHX
g1RAsF7uBHEJSjs2jPirdVVBr/FTN30SpH5Esdm1wdA5c6ss321ZUbH2iqZgWk/Z
GYIuJg7nCvqJOOYDVfyhFAedZwsXuu10dpqIt0AAUzvfHOD52z+IT0Dz6O35UKy2
LAzsr9Gslb0j0nx6CxwQoGZoPcuota68dUePvEXajs8SV0opfJSti022ot3aplxf
vpijQzK0/ibVUbUdm5yW+wA7Ls6UzmKiA+pkPSOu/sJkYLYTgsKgsdmGO2QseREp
GLCbGc9Mjuk2G+q/MhH0pXGckyRh14WgJvtWAoPDE5CE/L3/fbAbG9hg+DjWJQNx
3xLDmj4=
-----END CERTIFICATE-----
Generated at Tue Jul 9 06:22:47 2024 by rpki-client on console-fra.rpki-client.org