Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/5549A1DA0ADD11EC8109AE1EC4F9AE02.roa
File:                     5549A1DA0ADD11EC8109AE1EC4F9AE02.roa (raw, json)
Hash identifier:          +T54sK8dyUMxd2f5rHiKzoO23jhqXytNmv5qmZdboJc=
Subject key identifier:   1A:4C:A8:36:C9:78:F3:E0:F5:38:98:14:FE:AB:9F:0A:DB:70:A5:B7
Certificate issuer:       /CN=A91DBAF1/serialNumber=25F3D21688AB9381AA8B952BCE2641293542A7F2
Certificate serial:       06C0
Authority key identifier: 25:F3:D2:16:88:AB:93:81:AA:8B:95:2B:CE:26:41:29:35:42:A7:F2
Authority info access:    rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JfPSFoirk4Gqi5UrziZBKTVCp_I.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/5549A1DA0ADD11EC8109AE1EC4F9AE02.roa
Signing time:             Thu 06 Jun 2024 23:52:47 +0000
ROA not before:           Thu 06 Jun 2024 23:52:47 +0000
ROA not after:            Wed 30 Jul 2025 00:00:00 +0000
asID:                     137840
IP address blocks:        51.162.124.0/22 maxlen: 22

Validation:               Failed, certificate revoked on Thu 03 Oct 2024 10:11:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1728 (0x6c0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91DBAF1/serialNumber=25F3D21688AB9381AA8B952BCE2641293542A7F2
        Validity
            Not Before: Jun  6 23:52:47 2024 GMT
            Not After : Jul 30 00:00:00 2025 GMT
        Subject: CN=66624bcf-57d4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:b9:4f:e4:90:5c:af:6b:37:9d:17:70:c6:7f:
                    59:aa:43:f6:c0:76:35:03:ad:d5:1a:8c:1a:24:ad:
                    5e:5f:60:b1:42:14:83:42:dc:25:e4:66:63:11:1b:
                    25:bc:e2:4d:dc:9b:25:d1:42:4e:3d:a5:e7:36:09:
                    cc:67:96:b7:8b:79:55:75:e7:72:c5:b2:8f:d6:db:
                    9e:ca:f9:d8:68:1b:c7:da:d3:e2:ca:45:91:be:59:
                    4e:75:b0:d8:20:0e:c5:48:bf:9c:99:89:e6:61:37:
                    b5:46:b9:2e:ce:e3:42:af:f9:96:98:2f:a6:de:35:
                    8e:e2:a5:fc:54:62:0f:07:58:d1:19:64:30:e6:17:
                    22:ec:26:e9:a4:f8:10:5d:01:b0:3d:7d:40:c8:e3:
                    6a:30:21:79:cf:37:ce:63:09:16:40:8c:a0:18:f4:
                    eb:09:4d:46:64:71:62:59:3c:a2:55:3e:68:77:a7:
                    35:87:7d:c5:2b:b2:62:0e:82:b6:a9:11:47:9a:bd:
                    59:ac:5f:f4:1d:14:b1:b0:b7:f9:6c:ae:cb:39:1a:
                    c5:d7:b5:e5:64:8b:e0:95:2f:00:9e:b4:c5:de:7b:
                    73:96:5b:e6:bb:05:f9:60:39:3c:2a:ca:5f:2b:12:
                    57:bd:cc:47:5a:90:b8:1f:19:d7:c1:08:50:25:50:
                    f6:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1A:4C:A8:36:C9:78:F3:E0:F5:38:98:14:FE:AB:9F:0A:DB:70:A5:B7
            X509v3 Authority Key Identifier:
                keyid:25:F3:D2:16:88:AB:93:81:AA:8B:95:2B:CE:26:41:29:35:42:A7:F2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/JfPSFoirk4Gqi5UrziZBKTVCp_I.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JfPSFoirk4Gqi5UrziZBKTVCp_I.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBAF1/86DB2CCC248E11EBABEF2B2FC4F9AE02/5549A1DA0ADD11EC8109AE1EC4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  51.162.124.0/22

    Signature Algorithm: sha256WithRSAEncryption
         2b:2e:a7:2e:22:bf:25:53:b8:c4:70:01:de:e0:83:4c:ca:81:
         18:f2:87:92:88:2a:5a:4e:71:0d:ed:a9:3c:5a:27:37:06:b2:
         5b:85:c6:84:b6:9c:fc:4b:bf:66:59:79:f7:50:4f:63:fa:78:
         66:3d:65:ef:67:52:46:dc:ea:14:39:fc:32:2f:3f:c1:60:d4:
         89:70:26:1f:63:7c:98:4a:49:b5:02:ab:f0:4a:52:8b:d8:85:
         4e:51:c4:84:e4:74:8a:8a:6b:52:d6:d9:1e:f9:42:93:72:e2:
         af:a2:4e:9b:e5:46:46:8a:7b:79:c2:a8:93:c1:e6:29:7b:0f:
         89:ec:48:87:b5:9f:bf:b9:d4:15:cf:4a:a6:d5:27:6e:93:f3:
         0b:b5:4a:30:f2:8f:14:ce:36:bf:d7:bd:e0:cc:87:ef:14:2a:
         89:33:12:7d:bd:df:d4:57:07:a4:cf:46:12:55:00:6b:28:3e:
         23:ad:35:f7:eb:d7:4c:0d:fc:51:c4:36:87:ba:bc:2a:4a:4f:
         e5:00:2a:80:9e:36:71:a0:f7:f3:86:0b:04:f8:a1:f9:ea:c6:
         8c:bd:e9:47:30:96:ce:6a:eb:ca:42:5f:d2:ad:99:d1:dd:f7:
         c3:c8:23:62:55:5c:9c:6f:a0:fb:36:c9:eb:d8:48:e9:40:a8:
         0b:5e:38:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 15:30:06 2024 by rpki-client on console-ams.rpki-client.org