Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF781/75070A4A96AD11EE9F5F845DC4F9AE02/5DE798DC96AF11EEAEF2B915C4F9AE02.roa
File: 5DE798DC96AF11EEAEF2B915C4F9AE02.roa (raw, json)
Hash identifier: oop7SxKHOWxkh7frpCs9ojR7uXnyJ7elX++alpOaUSo=
Subject key identifier: B9:06:22:E4:92:0E:77:71:8B:70:9F:69:A6:8C:06:11:A8:D2:BB:A5
Certificate issuer: /CN=A91BF781/serialNumber=2769A4FA92297DCB1DF896DAE6373996FD31806E
Certificate serial: 1C
Authority key identifier: 27:69:A4:FA:92:29:7D:CB:1D:F8:96:DA:E6:37:39:96:FD:31:80:6E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2mk-pIpfcsd-Jba5jc5lv0xgG4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BF781/75070A4A96AD11EE9F5F845DC4F9AE02/5DE798DC96AF11EEAEF2B915C4F9AE02.roa
Signing time: Sat 06 Jan 2024 16:25:07 +0000
ROA not before: Sat 06 Jan 2024 16:25:07 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 151483
IP address blocks: 103.230.128.0/24 maxlen: 24
103.230.129.0/24 maxlen: 24
2401:11a0:10::/44 maxlen: 44
2401:11a0:150::/44 maxlen: 48
2401:11a0:1500::/40 maxlen: 40
2401:11a0:d150::/44 maxlen: 44
Validation: Failed, certificate revoked on Thu 25 Jan 2024 07:25:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28 (0x1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BF781/serialNumber=2769A4FA92297DCB1DF896DAE6373996FD31806E
Validity
Not Before: Jan 6 16:25:07 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=65997ee3-f0fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5e:04:92:11:a5:b0:31:1f:32:16:2b:15:d6:
45:c0:74:c2:14:b9:b6:b1:c1:31:a6:db:b3:79:70:
42:09:2d:40:25:49:99:72:e7:c6:05:97:8c:7a:76:
2b:03:61:59:f6:ab:a5:4d:96:06:70:6c:2d:0f:6c:
52:ec:0e:4d:a7:0f:ab:0d:1f:15:07:d9:24:be:08:
1b:58:5f:01:c3:b6:5d:5e:cf:9d:f2:5a:f7:bc:5b:
1a:03:20:43:45:52:45:4b:ec:94:08:df:9d:4a:48:
69:9d:d0:4d:50:78:31:53:e9:15:28:83:59:00:34:
fa:9c:ea:a4:3e:07:ab:f4:c0:8f:b7:9a:44:95:b0:
e7:38:d7:90:5e:e6:b7:7c:bb:83:51:5e:83:0c:7b:
3a:21:f9:ae:e6:52:2c:33:e1:fe:f9:1d:46:69:b9:
58:e8:c2:8a:0b:ef:79:d3:d8:1a:27:2d:98:47:ea:
49:ea:db:11:ae:9c:f6:a2:e9:a2:47:b7:39:63:0e:
7f:b7:26:3e:74:7d:fc:35:24:f0:3a:cf:44:4e:c6:
14:cf:7d:4a:b1:43:cb:55:9d:bb:d3:fc:d8:58:69:
f6:3f:d6:ad:35:8b:5f:7f:fc:35:21:4c:e2:c1:00:
3b:b3:e5:40:d5:1d:69:f3:6b:df:da:40:5a:3a:cb:
3d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:06:22:E4:92:0E:77:71:8B:70:9F:69:A6:8C:06:11:A8:D2:BB:A5
X509v3 Authority Key Identifier:
keyid:27:69:A4:FA:92:29:7D:CB:1D:F8:96:DA:E6:37:39:96:FD:31:80:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BF781/75070A4A96AD11EE9F5F845DC4F9AE02/J2mk-pIpfcsd-Jba5jc5lv0xgG4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2mk-pIpfcsd-Jba5jc5lv0xgG4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF781/75070A4A96AD11EE9F5F845DC4F9AE02/5DE798DC96AF11EEAEF2B915C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.230.128.0/23
IPv6:
2401:11a0:10::/44
2401:11a0:150::/44
2401:11a0:1500::/40
2401:11a0:d150::/44
Signature Algorithm: sha256WithRSAEncryption
63:41:91:0c:79:29:dd:b6:9f:82:a6:b3:73:7e:49:38:db:c1:
04:e2:02:4c:84:fe:81:e3:7e:96:25:15:89:30:68:7b:d7:bf:
e6:0c:08:26:b1:64:73:c6:00:ba:fd:58:82:37:0b:a8:dc:7b:
50:9a:6d:46:15:77:4f:3a:75:5a:66:03:7a:89:0f:4f:eb:5e:
2c:8f:95:46:93:c1:aa:b9:e3:43:d1:56:7d:52:2f:67:90:ac:
2c:98:e7:3e:b7:a3:8e:98:83:f1:81:66:0a:16:ad:75:8f:b0:
d0:9c:74:98:62:68:3b:ad:e7:c0:d5:06:5c:02:11:25:98:dd:
1f:ff:3e:51:bb:04:14:6b:60:ca:c7:9a:2e:75:96:36:b5:75:
ea:ce:ba:ec:95:fc:08:c4:79:d8:b1:47:50:82:e5:6f:4e:de:
80:67:c3:17:68:63:a0:71:cf:2e:0f:32:b1:aa:0f:95:70:81:
85:30:2a:50:c1:1e:c6:3a:ab:2a:d9:85:b6:e6:ac:71:fc:bb:
06:27:2c:b1:70:6d:08:4a:f5:d2:ad:ea:88:1b:44:d3:c3:3d:
03:19:a2:96:b4:34:95:c5:39:da:ce:9b:d0:b7:04:f4:a7:79:
f0:cf:5e:ea:ce:64:ae:68:8a:35:9c:16:27:75:2c:2e:a3:0d:
59:7f:b0:ca
-----BEGIN CERTIFICATE-----
MIIFmzCCBIOgAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC
Rjc4MTExMC8GA1UEBRMoMjc2OUE0RkE5MjI5N0RDQjFERjg5NkRBRTYzNzM5OTZG
RDMxODA2RTAeFw0yNDAxMDYxNjI1MDdaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV
BAMTDTY1OTk3ZWUzLWYwZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCsXgSSEaWwMR8yFisV1kXAdMIUubaxwTGm27N5cEIJLUAlSZly58YFl4x6disD
YVn2q6VNlgZwbC0PbFLsDk2nD6sNHxUH2SS+CBtYXwHDtl1ez53yWve8WxoDIENF
UkVL7JQI351KSGmd0E1QeDFT6RUog1kANPqc6qQ+B6v0wI+3mkSVsOc415Be5rd8
u4NRXoMMezoh+a7mUiwz4f75HUZpuVjowooL73nT2BonLZhH6knq2xGunPai6aJH
tzljDn+3Jj50ffw1JPA6z0ROxhTPfUqxQ8tVnbvT/NhYafY/1q01i19//DUhTOLB
ADuz5UDVHWnza9/aQFo6yz11AgMBAAGjggLAMIICvDAdBgNVHQ4EFgQUuQYi5JIO
d3GLcJ9ppowGEajSu6UwHwYDVR0jBBgwFoAUJ2mk+pIpfcsd+Jba5jc5lv0xgG4w
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGNzgxLzc1MDcwQTRBOTZB
RDExRUU5RjVGODQ1REM0RjlBRTAyL0oybWstcElwZmNzZC1KYmE1amM1bHYweGdH
NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvSjJtay1wSXBmY3NkLUpiYTVqYzVsdjB4Z0c0LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC
Rjc4MS83NTA3MEE0QTk2QUQxMUVFOUY1Rjg0NURDNEY5QUUwMi81REU3OThEQzk2
QUYxMUVFQUVGMkI5MTVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBKBggrBgEFBQcBBwEB/wQ7
MDkwDAQCAAEwBgMEAWfmgDApBAIAAjAjAwcEJAERoAAQAwcEJAERoAFQAwYAJAER
oBUDBwQkARGg0VAwDQYJKoZIhvcNAQELBQADggEBAGNBkQx5Kd22n4Kms3N+STjb
wQTiAkyE/oHjfpYlFYkwaHvXv+YMCCaxZHPGALr9WII3C6jce1CabUYVd086dVpm
A3qJD0/rXiyPlUaTwaq540PRVn1SL2eQrCyY5z63o46Yg/GBZgoWrXWPsNCcdJhi
aDut58DVBlwCESWY3R//PlG7BBRrYMrHmi51lja1derOuuyV/AjEedixR1CC5W9O
3oBnwxdoY6Bxzy4PMrGqD5VwgYUwKlDBHsY6qyrZhbbmrHH8uwYnLLFwbQhK9dKt
6ogbRNPDPQMZopa0NJXFOdrOm9C3BPSnefDPXurOZK5oijWcFid1LC6jDVl/sMo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:24 2024 by rpki-client on console-ams.rpki-client.org