Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/F206BFB0AE7111ED8B44D95CC4F9AE02.roa
File: F206BFB0AE7111ED8B44D95CC4F9AE02.roa (raw, json)
Hash identifier: hzEZSkAIxLJKQmSdMbS+fjQoghxsDRSTxH6Di1q3Fvk=
Subject key identifier: D2:09:9D:BE:72:56:F6:5E:75:4F:39:6E:2C:88:02:B7:57:A0:D2:58
Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88
Certificate serial: 06FC
Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/F206BFB0AE7111ED8B44D95CC4F9AE02.roa
Signing time: Fri 16 Jun 2023 22:54:48 +0000
ROA not before: Fri 16 Jun 2023 22:54:48 +0000
ROA not after: Sat 31 Aug 2024 00:00:00 +0000
asID: 21859
IP address blocks: 169.136.82.0/24 maxlen: 24
169.136.85.0/24 maxlen: 24
169.136.109.0/24 maxlen: 24
169.136.120.0/24 maxlen: 24
169.136.122.0/24 maxlen: 24
169.136.128.0/24 maxlen: 24
169.136.129.0/24 maxlen: 24
169.136.130.0/24 maxlen: 24
169.136.134.0/24 maxlen: 24
169.136.135.0/24 maxlen: 24
169.136.137.0/24 maxlen: 24
169.136.138.0/24 maxlen: 24
169.136.139.0/24 maxlen: 24
169.136.142.0/24 maxlen: 24
169.136.143.0/24 maxlen: 24
169.136.146.0/24 maxlen: 24
169.136.168.0/24 maxlen: 24
169.136.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Sep 2023 08:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1788 (0x6fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88
Validity
Not Before: Jun 16 22:54:48 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=648ce838-41da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fe:64:ef:0d:98:de:e7:49:ae:11:37:30:a5:
91:47:04:58:b2:55:6c:22:d8:f8:57:33:be:82:81:
63:32:4f:b4:09:06:ad:b4:93:73:b7:4d:cf:a0:37:
27:55:28:7e:c5:cc:ff:f7:5d:f2:1e:4c:ae:a3:d1:
99:b7:a2:d5:1e:93:3a:92:eb:1f:1e:9a:4b:fb:1f:
29:8e:2f:f1:01:be:c4:c0:b7:f6:8c:9f:02:17:d2:
09:1c:1e:e4:a0:22:d1:fa:94:ac:33:5f:c0:ea:f8:
4c:37:0c:a4:92:b5:88:a0:fe:74:ff:f4:24:a2:ee:
91:7f:9a:a1:56:a5:9b:9b:38:d8:8f:ff:49:2d:b7:
47:5c:41:20:08:bd:15:56:40:4d:11:cf:ec:f3:02:
07:65:79:ac:f5:3b:b6:e7:c0:c0:fb:4c:51:d6:34:
5b:3d:55:bf:35:35:4d:48:d3:f3:9d:9b:60:e8:b1:
a1:f4:c4:90:04:a2:6f:53:7d:db:ee:fb:ad:9a:dc:
f9:59:26:31:c3:5c:5f:de:d3:59:35:94:71:1e:57:
96:fe:20:6a:bb:2f:d9:82:3b:7e:26:18:12:79:e3:
7f:cf:25:a3:7f:ac:45:9f:0f:9a:55:2d:ac:82:5f:
7f:7e:55:14:d1:99:8d:64:5a:b0:4b:7a:a1:d1:47:
e8:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:09:9D:BE:72:56:F6:5E:75:4F:39:6E:2C:88:02:B7:57:A0:D2:58
X509v3 Authority Key Identifier:
keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/F206BFB0AE7111ED8B44D95CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.136.82.0/24
169.136.85.0/24
169.136.109.0/24
169.136.120.0/24
169.136.122.0/24
169.136.128.0-169.136.130.255
169.136.134.0/23
169.136.137.0-169.136.139.255
169.136.142.0/23
169.136.146.0/24
169.136.168.0/24
169.136.191.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:a3:d4:5a:05:cc:26:47:f8:aa:86:82:8e:e7:ce:ed:11:b5:
51:7f:63:77:93:99:bd:fd:0a:c8:f8:81:c5:e8:6a:39:53:df:
84:61:2c:a6:f7:a3:b9:51:a6:06:4b:cf:f0:7f:bf:bf:1e:38:
83:b7:1f:f1:7c:bf:b6:f4:8a:41:f6:53:63:98:9b:60:a2:cf:
02:52:09:3c:c5:a6:15:80:b9:ac:49:0b:02:8a:77:b6:b8:a5:
1b:18:2c:68:58:f7:9f:1e:0e:33:ca:8a:c0:45:e9:38:90:68:
4c:4b:23:70:fb:38:36:22:35:7e:68:45:95:da:64:99:c9:34:
16:e3:e1:ee:f2:7f:10:34:f0:9a:15:9c:71:53:66:a0:38:4e:
b5:5c:05:96:7e:29:35:0c:2e:2b:47:87:22:41:62:0b:8b:ea:
f4:9e:2d:d1:19:53:88:ae:7c:14:82:0e:65:0b:2f:45:ac:d0:
8d:90:c5:5e:c9:f8:3e:17:9b:e8:45:61:d3:ce:11:d3:73:7f:
fd:19:85:43:3c:8e:aa:53:fc:c0:a8:d9:f7:1c:1e:c4:0f:98:
38:42:86:2f:bd:24:03:8f:e4:4c:d5:90:0f:6e:66:53:f1:63:
09:39:9a:44:e2:21:5c:a3:96:c4:33:41:92:da:ad:81:be:52:
bd:4b:07:46
-----BEGIN CERTIFICATE-----
MIIFwzCCBKugAwIBAgICBvwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
REY5M0ExMTAvBgNVBAUTKDdFMjQ0MzEwRDdBNDU2RUIxMjdCOTI2QzQyRjI2RDc5
RTlBQ0RCODgwHhcNMjMwNjE2MjI1NDQ4WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDhjZTgzOC00MWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtf5k7w2Y3udJrhE3MKWRRwRYslVsItj4VzO+goFjMk+0CQattJNzt03PoDcn
VSh+xcz/913yHkyuo9GZt6LVHpM6kusfHppL+x8pji/xAb7EwLf2jJ8CF9IJHB7k
oCLR+pSsM1/A6vhMNwykkrWIoP50//Qkou6Rf5qhVqWbmzjYj/9JLbdHXEEgCL0V
VkBNEc/s8wIHZXms9Tu258DA+0xR1jRbPVW/NTVNSNPznZtg6LGh9MSQBKJvU33b
7vutmtz5WSYxw1xf3tNZNZRxHleW/iBquy/Zgjt+JhgSeeN/zyWjf6xFnw+aVS2s
gl9/flUU0ZmNZFqwS3qh0UfoxQIDAQABo4IC5zCCAuMwHQYDVR0OBBYEFNIJnb5y
VvZedU85biyIArdXoNJYMB8GA1UdIwQYMBaAFH4kQxDXpFbrEnuSbELybXnprNuI
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GN0RGQTcyRUU1
RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9maVJERU5la1Z1c1NlNUpzUXZKdGVlbXMy
NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL2ZpUkRFTmVrVnVzU2U1SnNRdkp0ZWVtczI0Zy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
REY5M0EvRjdERkE3MkVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvRjIwNkJGQjBB
RTcxMTFFRDhCNDREOTVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwcQYIKwYBBQUHAQcBAf8E
YjBgMF4EAgABMFgDBACpiFIDBACpiFUDBACpiG0DBACpiHgDBACpiHowDAMEB6mI
gAMEAKmIggMEAamIhjAMAwQAqYiJAwQCqYiIAwQBqYiOAwQAqYiSAwQAqYioAwQA
qYi/MA0GCSqGSIb3DQEBCwUAA4IBAQBqo9RaBcwmR/iqhoKO587tEbVRf2N3k5m9
/QrI+IHF6Go5U9+EYSym96O5UaYGS8/wf7+/HjiDtx/xfL+29IpB9lNjmJtgos8C
Ugk8xaYVgLmsSQsCine2uKUbGCxoWPefHg4zyorARek4kGhMSyNw+zg2IjV+aEWV
2mSZyTQW4+Hu8n8QNPCaFZxxU2agOE61XAWWfik1DC4rR4ciQWILi+r0ni3RGVOI
rnwUgg5lCy9FrNCNkMVeyfg+F5voRWHTzhHTc3/9GYVDPI6qU/zAqNn3HB7ED5g4
QoYvvSQDj+RM1ZAPbmZT8WMJOZpE4iFco5bEM0GS2q2BvlK9SwdG
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:43 2024 by rpki-client on console-fra.rpki-client.org