Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/5A86E7780F9211EE960F114BC4F9AE02.roa
File: 5A86E7780F9211EE960F114BC4F9AE02.roa (raw, json)
Hash identifier: le5ReyqRavHcTiC3MUtyZWcnYt3KKob+KQVzkl9yhOg=
Subject key identifier: D4:DA:90:47:FF:5B:7E:A6:53:68:5B:0A:E1:BC:84:AC:17:3D:47:F7
Certificate issuer: /CN=A91C572B/serialNumber=DF79C3BA015261E3AC843239CE47035901D66A94
Certificate serial: 03
Authority key identifier: DF:79:C3:BA:01:52:61:E3:AC:84:32:39:CE:47:03:59:01:D6:6A:94
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/5A86E7780F9211EE960F114BC4F9AE02.roa
Signing time: Tue 20 Jun 2023 17:46:16 +0000
ROA not before: Tue 20 Jun 2023 17:46:16 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 147308
IP address blocks: 103.225.218.0/23 maxlen: 23
103.225.218.0/24 maxlen: 24
103.225.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jul 2023 13:43:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C572B/serialNumber=DF79C3BA015261E3AC843239CE47035901D66A94
Validity
Not Before: Jun 20 17:46:16 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=6491e5e7-0853
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ed:e9:95:4c:f5:be:31:ee:2a:df:ea:6b:cd:
08:01:95:7b:b7:a4:be:00:7a:d6:44:58:6b:0d:9e:
d7:35:aa:dc:60:02:e8:dc:47:8c:89:5f:16:f7:d0:
24:44:b3:c8:5c:13:48:3e:e0:1d:01:0e:9f:c9:11:
2e:ea:48:3b:7b:62:c7:72:53:a1:1a:c0:bf:20:bb:
5c:ff:96:a2:92:cb:38:fa:ca:0a:d1:06:6f:d5:a3:
bc:ac:64:c3:ba:0f:e8:60:94:ac:94:67:46:04:7c:
48:82:d3:45:70:ea:fd:a2:03:82:1e:a2:9e:4e:8d:
29:87:3a:2b:51:90:61:9b:11:f7:61:6b:67:b0:29:
21:b5:f2:18:6f:8a:d2:10:57:bb:51:e6:a3:1b:f1:
81:da:e1:b4:bb:1a:54:1b:05:a3:7e:f4:21:55:0b:
13:fd:6c:1e:08:6b:76:f0:09:df:13:c4:f3:cb:b8:
04:9f:62:34:7a:0b:91:76:80:76:8b:80:e2:00:00:
2e:80:cf:b7:6c:22:3d:ec:32:f4:6d:39:50:3c:07:
9b:e5:74:f5:0b:5f:82:00:db:d6:d7:67:f6:9c:f7:
cc:e2:89:60:ab:dd:f9:cd:05:4a:17:9a:58:86:c0:
f7:3a:44:49:fc:34:21:44:4b:df:6a:09:5c:33:64:
15:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:DA:90:47:FF:5B:7E:A6:53:68:5B:0A:E1:BC:84:AC:17:3D:47:F7
X509v3 Authority Key Identifier:
keyid:DF:79:C3:BA:01:52:61:E3:AC:84:32:39:CE:47:03:59:01:D6:6A:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/5A86E7780F9211EE960F114BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.225.218.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:9d:23:42:d8:f5:10:4e:e8:04:82:42:21:b2:96:71:97:f6:
c5:a4:5e:55:0b:fc:af:b1:1a:68:ed:53:ee:45:94:2f:61:57:
04:97:1e:2a:23:5a:f7:a5:02:af:16:5d:b7:6f:16:a1:a3:b3:
01:e0:b1:a0:95:4c:e0:84:91:83:92:0a:3b:14:09:48:5b:6d:
45:6c:d1:b3:dd:bb:81:13:f1:18:91:8c:2b:41:b7:f8:32:c0:
65:39:96:0f:9f:2a:a9:d5:91:a2:4a:6f:d4:42:b3:1c:6f:9c:
d5:74:0c:fe:ab:f9:51:36:f9:a0:2f:ba:70:22:ab:04:95:b4:
02:9c:96:6b:b6:db:9f:0c:3d:45:8c:a3:a9:bd:03:7f:7d:b0:
12:2f:f7:7c:f6:7a:9f:74:f0:a3:b2:64:f6:7e:ad:40:69:cb:
5d:b4:bd:10:a0:06:10:ea:b7:df:37:e6:8c:0c:a6:d0:19:ef:
60:a6:4d:82:2a:d5:74:46:85:aa:03:55:92:74:6b:9a:db:0f:
f3:29:09:c8:64:af:27:d7:f8:5b:b3:a8:c4:e8:38:f2:ae:04:
70:f5:38:f7:c4:54:88:70:ab:ab:31:e6:ac:bf:7c:19:cf:aa:
ee:a7:95:4b:4b:7c:31:90:9f:c4:d5:db:ef:0b:ca:a1:8b:ad:
17:16:ab:73
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD
NTcyQjExMC8GA1UEBRMoREY3OUMzQkEwMTUyNjFFM0FDODQzMjM5Q0U0NzAzNTkw
MUQ2NkE5NDAeFw0yMzA2MjAxNzQ2MTZaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV
BAMTDTY0OTFlNWU3LTA4NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDQ7emVTPW+Me4q3+przQgBlXu3pL4AetZEWGsNntc1qtxgAujcR4yJXxb30CRE
s8hcE0g+4B0BDp/JES7qSDt7YsdyU6EawL8gu1z/lqKSyzj6ygrRBm/Vo7ysZMO6
D+hglKyUZ0YEfEiC00Vw6v2iA4Ieop5OjSmHOitRkGGbEfdha2ewKSG18hhvitIQ
V7tR5qMb8YHa4bS7GlQbBaN+9CFVCxP9bB4Ia3bwCd8TxPPLuASfYjR6C5F2gHaL
gOIAAC6Az7dsIj3sMvRtOVA8B5vldPULX4IA29bXZ/ac98ziiWCr3fnNBUoXmliG
wPc6REn8NCFES99qCVwzZBX9AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU1NqQR/9b
fqZTaFsK4byErBc9R/cwHwYDVR0jBBgwFoAU33nDugFSYeOshDI5zkcDWQHWapQw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1NzJCL0Y3RTVDMTY4MEU5
QTExRUVBNjQ0OUU3MUM0RjlBRTAyLzMzbkR1Z0ZTWWVPc2hESTV6a2NEV1FIV2Fw
US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvMzNuRHVnRlNZZU9zaERJNXprY0RXUUhXYXBRLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD
NTcyQi9GN0U1QzE2ODBFOUExMUVFQTY0NDlFNzFDNEY5QUUwMi81QTg2RTc3ODBG
OTIxMUVFOTYwRjExNEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAWfh2jANBgkqhkiG9w0BAQsFAAOCAQEALZ0jQtj1EE7oBIJC
IbKWcZf2xaReVQv8r7EaaO1T7kWUL2FXBJceKiNa96UCrxZdt28WoaOzAeCxoJVM
4ISRg5IKOxQJSFttRWzRs927gRPxGJGMK0G3+DLAZTmWD58qqdWRokpv1EKzHG+c
1XQM/qv5UTb5oC+6cCKrBJW0ApyWa7bbnww9RYyjqb0Df32wEi/3fPZ6n3Two7Jk
9n6tQGnLXbS9EKAGEOq33zfmjAym0BnvYKZNgirVdEaFqgNVknRrmtsP8ykJyGSv
J9f4W7OoxOg48q4EcPU498RUiHCrqzHmrL98Gc+q7qeVS0t8MZCfxNXb7wvKoYut
Fxarcw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:25 2024 by rpki-client on console-ams.rpki-client.org