Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/550A6608F0A311EC8FE9181CC4F9AE02.roa
File: 550A6608F0A311EC8FE9181CC4F9AE02.roa (raw, json)
Hash identifier: rHdTsIGP7FxEniLztKwexx/WpUaQWzysoUaN10SxFjk=
Subject key identifier: 2A:19:66:3F:DE:1C:7C:52:B5:AA:BE:FF:36:E3:FB:46:AA:9F:30:BA
Certificate issuer: /CN=A91C9945/serialNumber=868ECB6425DA83328892E57BB0DF644E1AEB73B3
Certificate serial: 0225
Authority key identifier: 86:8E:CB:64:25:DA:83:32:88:92:E5:7B:B0:DF:64:4E:1A:EB:73:B3
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho7LZCXagzKIkuV7sN9kThrrc7M.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/550A6608F0A311EC8FE9181CC4F9AE02.roa
Signing time: Sat 11 May 2024 04:39:50 +0000
ROA not before: Sat 11 May 2024 04:39:50 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 1239
IP address blocks: 45.248.52.0/24 maxlen: 24
45.248.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Oct 2024 01:18:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 549 (0x225)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C9945/serialNumber=868ECB6425DA83328892E57BB0DF644E1AEB73B3
Validity
Not Before: May 11 04:39:50 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=663ef696-2e58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:26:03:4f:19:f6:f8:d6:d7:a3:3e:10:e8:ed:
cf:8d:5a:3f:0b:6b:d1:5a:b0:90:d7:eb:4a:5c:34:
aa:3a:05:13:21:21:71:8f:18:04:46:3a:50:a0:d7:
58:19:f6:12:57:9f:e9:1d:37:7d:68:ea:58:d2:b3:
0d:53:5a:35:27:ef:6b:a9:31:1d:cf:6d:ba:17:07:
21:cc:1a:e1:72:ce:0c:20:b0:12:b6:cd:93:f9:25:
15:87:59:61:72:b5:41:64:d4:89:ce:14:7b:9e:d9:
18:b7:6f:13:c7:e8:cb:eb:f5:e6:c6:5f:2e:e6:c2:
83:9c:38:98:ce:cf:6a:3a:20:64:41:2f:a5:53:d6:
aa:03:27:1a:7e:5d:3d:41:1b:7f:31:86:92:99:0d:
47:44:9d:ff:4c:95:47:81:37:e7:97:ac:2d:0b:29:
64:aa:c0:f5:41:f6:b6:f5:f0:75:9b:ef:3d:3a:4f:
48:9c:e3:2f:82:66:86:1b:9d:a4:8a:b8:14:7b:d3:
57:29:2c:6f:47:28:27:26:fc:49:1a:60:bc:6c:e6:
1b:9c:5b:3c:00:69:56:aa:09:5e:bf:3f:f6:7c:33:
3d:f1:e5:25:c6:33:b8:ea:b9:d1:46:74:f3:b2:5f:
d1:eb:9d:50:c6:46:97:36:94:9d:27:2c:78:23:d4:
d7:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:19:66:3F:DE:1C:7C:52:B5:AA:BE:FF:36:E3:FB:46:AA:9F:30:BA
X509v3 Authority Key Identifier:
keyid:86:8E:CB:64:25:DA:83:32:88:92:E5:7B:B0:DF:64:4E:1A:EB:73:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/ho7LZCXagzKIkuV7sN9kThrrc7M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho7LZCXagzKIkuV7sN9kThrrc7M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/550A6608F0A311EC8FE9181CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.248.52.0/24
45.248.55.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:bd:27:e5:8b:30:45:3b:ee:93:e1:fa:61:c1:c8:c5:25:7f:
40:40:67:e6:df:38:81:4e:40:c5:d0:a8:c5:8e:d8:db:9d:36:
0c:a0:b9:7c:ae:a2:32:cc:d8:6f:8b:10:fa:be:2c:f4:a3:e4:
17:bd:38:d0:73:8f:a6:c6:dc:42:0d:07:f1:2b:44:6f:1b:e2:
e6:7c:37:84:d7:f2:6d:a3:f3:1b:9e:f1:c0:71:26:86:c3:9d:
ff:c6:7f:5b:c2:ba:f2:11:25:a4:01:ed:1e:97:55:95:a6:22:
3f:1b:d9:b9:16:ee:74:8e:7b:04:08:56:40:61:5f:7d:15:bd:
26:18:d2:aa:ea:69:f5:f1:7d:e9:4b:b0:24:c7:a7:cf:dc:ed:
c2:86:c0:71:13:e5:1f:95:4b:45:c2:09:92:d5:15:c9:db:9b:
61:78:88:6d:89:6a:05:65:65:0d:59:57:45:78:45:7f:ca:55:
36:e1:e4:4a:7d:3b:1f:d2:7c:07:86:63:fc:f6:8a:a5:27:bd:
fd:8c:d7:6b:94:4c:99:bd:66:9a:2e:58:9d:57:0e:82:b4:b4:
95:16:aa:5b:00:a5:e7:2f:14:5f:77:0d:6a:e2:9a:45:22:94:
6f:c8:3f:b6:d6:97:1d:bb:19:c2:86:f6:88:72:c7:b7:2f:93:
a5:05:b0:68
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
Qzk5NDUxMTAvBgNVBAUTKDg2OEVDQjY0MjVEQTgzMzI4ODkyRTU3QkIwREY2NDRF
MUFFQjczQjMwHhcNMjQwNTExMDQzOTUwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjNlZjY5Ni0yZTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA1SYDTxn2+NbXoz4Q6O3PjVo/C2vRWrCQ1+tKXDSqOgUTISFxjxgERjpQoNdY
GfYSV5/pHTd9aOpY0rMNU1o1J+9rqTEdz226FwchzBrhcs4MILASts2T+SUVh1lh
crVBZNSJzhR7ntkYt28Tx+jL6/Xmxl8u5sKDnDiYzs9qOiBkQS+lU9aqAycafl09
QRt/MYaSmQ1HRJ3/TJVHgTfnl6wtCylkqsD1Qfa29fB1m+89Ok9InOMvgmaGG52k
irgUe9NXKSxvRygnJvxJGmC8bOYbnFs8AGlWqglevz/2fDM98eUlxjO46rnRRnTz
sl/R651QxkaXNpSdJyx4I9TX9wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCoZZj/e
HHxStaq+/zbj+0aqnzC6MB8GA1UdIwQYMBaAFIaOy2Ql2oMyiJLle7DfZE4a63Oz
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTk0NS9CQzAwQzhGMkYw
OUUxMUVDQUVFNzNFMTlDNEY5QUUwMi9obzdMWkNYYWd6S0lrdVY3c045a1RocnJj
N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2hvN0xaQ1hhZ3pLSWt1VjdzTjlrVGhycmM3TS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
Qzk5NDUvQkMwMEM4RjJGMDlFMTFFQ0FFRTczRTE5QzRGOUFFMDIvNTUwQTY2MDhG
MEEzMTFFQzhGRTkxODFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E
FjAUMBIEAgABMAwDBAAt+DQDBAAt+DcwDQYJKoZIhvcNAQELBQADggEBALS9J+WL
MEU77pPh+mHByMUlf0BAZ+bfOIFOQMXQqMWO2NudNgyguXyuojLM2G+LEPq+LPSj
5Be9ONBzj6bG3EINB/ErRG8b4uZ8N4TX8m2j8xue8cBxJobDnf/Gf1vCuvIRJaQB
7R6XVZWmIj8b2bkW7nSOewQIVkBhX30VvSYY0qrqafXxfelLsCTHp8/c7cKGwHET
5R+VS0XCCZLVFcnbm2F4iG2JagVlZQ1ZV0V4RX/KVTbh5Ep9Ox/SfAeGY/z2iqUn
vf2M12uUTJm9ZpouWJ1XDoK0tJUWqlsApecvFF93DWrimkUilG/IP7bWlx27GcKG
9ohyx7cvk6UFsGg=
-----END CERTIFICATE-----
Generated at Mon Oct 14 02:44:42 2024 by rpki-client on console-fra.rpki-client.org