Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0BE6/5E517FEE648511EC9A558B0DC4F9AE02/5074F282677F11EC8C1C1218C4F9AE02.roa
File: 5074F282677F11EC8C1C1218C4F9AE02.roa (raw, json)
Hash identifier: Shv0mAPAeOgZrUKUVpuc0urk2ziZaGJuKXtf+02VxfI=
Subject key identifier: CA:34:8C:CD:12:BC:E9:3A:FB:A8:2D:6D:3D:D8:02:26:9E:09:56:2B
Certificate issuer: /CN=A91E0BE6/serialNumber=F250D3686753FDE654B0BB34B12786FB5A4392AF
Certificate serial: 02E3
Authority key identifier: F2:50:D3:68:67:53:FD:E6:54:B0:BB:34:B1:27:86:FB:5A:43:92:AF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lDTaGdT_eZUsLs0sSeG-1pDkq8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E0BE6/5E517FEE648511EC9A558B0DC4F9AE02/5074F282677F11EC8C1C1218C4F9AE02.roa
Signing time: Tue 29 Aug 2023 02:03:07 +0000
ROA not before: Tue 29 Aug 2023 02:03:07 +0000
ROA not after: Sun 01 Dec 2024 00:00:00 +0000
asID: 59045
IP address blocks: 2001:df1:6b80::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 31 Oct 2024 05:43:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 739 (0x2e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E0BE6/serialNumber=F250D3686753FDE654B0BB34B12786FB5A4392AF
Validity
Not Before: Aug 29 02:03:07 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=64ed51db-1832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d2:ca:9e:f1:f4:b9:84:01:46:6f:93:f4:cf:
2d:7d:89:4c:4c:69:65:1a:15:42:11:91:ca:62:17:
79:f8:a1:d5:48:a9:6b:8c:fa:56:33:7e:3c:51:d7:
c6:40:f4:fc:69:77:0e:05:5a:cd:1e:ea:79:27:d2:
56:f0:1a:1e:6a:f5:4a:e0:d4:9d:d5:13:a8:d9:09:
52:e8:48:11:73:c4:cb:65:02:ea:0f:52:b8:fe:c6:
db:68:8a:09:aa:46:f9:b1:dc:7c:ad:d9:f1:97:09:
77:b3:a8:e5:b5:9a:60:f6:72:94:c4:0d:69:89:29:
c0:4a:0b:7d:ee:80:ce:40:19:f2:9e:2a:09:4e:a1:
97:43:01:17:5a:2f:f3:8e:3d:35:9a:9e:98:5c:e4:
a3:45:b1:ff:96:66:9c:b6:e6:73:e0:3d:05:bb:68:
46:33:c3:97:73:08:fb:93:14:fe:97:92:b4:c9:c4:
e8:20:2d:e3:ca:7b:1e:6e:c8:01:75:16:9d:be:9f:
be:82:e3:9e:c5:c5:d9:f8:fe:24:72:5f:81:15:ac:
fc:90:da:82:08:2f:8b:c0:12:bd:77:0d:38:a1:a7:
22:47:71:65:f0:bc:eb:71:1e:3f:9d:5d:58:5b:20:
ce:da:93:57:1e:7f:20:85:70:ff:21:0e:2c:0a:32:
79:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:34:8C:CD:12:BC:E9:3A:FB:A8:2D:6D:3D:D8:02:26:9E:09:56:2B
X509v3 Authority Key Identifier:
keyid:F2:50:D3:68:67:53:FD:E6:54:B0:BB:34:B1:27:86:FB:5A:43:92:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E0BE6/5E517FEE648511EC9A558B0DC4F9AE02/8lDTaGdT_eZUsLs0sSeG-1pDkq8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8lDTaGdT_eZUsLs0sSeG-1pDkq8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0BE6/5E517FEE648511EC9A558B0DC4F9AE02/5074F282677F11EC8C1C1218C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df1:6b80::/48
Signature Algorithm: sha256WithRSAEncryption
35:ae:2a:28:ee:61:d9:cb:16:22:0b:57:c7:68:a2:e1:39:3d:
c1:a3:60:02:d5:70:2c:72:87:f7:b5:b7:15:68:91:ae:d0:ff:
a8:7b:d6:f2:c4:33:04:77:85:ec:46:79:b1:ce:b1:17:d2:ed:
fc:4e:6d:b4:af:7f:da:af:2f:2c:e9:d1:f5:5d:5f:33:c5:64:
af:9e:86:3a:7f:6a:ae:a1:3b:29:06:9f:be:73:c9:e8:43:2a:
9b:07:f1:95:8e:61:1a:51:7e:b1:57:38:b2:63:4d:c3:6e:c8:
29:89:44:6c:de:55:32:48:42:83:d8:b4:58:88:3c:82:cc:9f:
00:29:df:8e:8d:2a:68:64:14:01:1d:bb:9f:40:9a:40:e8:5c:
7e:24:77:60:63:6c:e4:45:f4:74:af:55:05:d1:09:be:1a:7c:
e2:8a:0c:4c:54:9b:f4:3f:c7:64:a4:cd:27:38:9e:af:e8:3d:
98:55:96:f2:4a:50:73:a8:de:e3:13:8b:8d:3b:bb:e3:db:ac:
51:c7:3e:10:f8:9f:82:dc:4e:ab:60:89:18:00:34:4d:7a:a5:
01:22:44:fb:f7:6c:0e:fe:86:a8:28:21:96:53:8b:ca:35:2c:
56:9f:c0:bf:72:b4:15:93:67:f5:54:6d:c4:97:d2:c0:fb:03:
15:22:19:31
-----BEGIN CERTIFICATE-----
MIIFdDCCBFygAwIBAgICAuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTBCRTYxMTAvBgNVBAUTKEYyNTBEMzY4Njc1M0ZERTY1NEIwQkIzNEIxMjc4NkZC
NUE0MzkyQUYwHhcNMjMwODI5MDIwMzA3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NGVkNTFkYi0xODMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAxdLKnvH0uYQBRm+T9M8tfYlMTGllGhVCEZHKYhd5+KHVSKlrjPpWM348UdfG
QPT8aXcOBVrNHup5J9JW8BoeavVK4NSd1ROo2QlS6EgRc8TLZQLqD1K4/sbbaIoJ
qkb5sdx8rdnxlwl3s6jltZpg9nKUxA1piSnASgt97oDOQBnynioJTqGXQwEXWi/z
jj01mp6YXOSjRbH/lmactuZz4D0Fu2hGM8OXcwj7kxT+l5K0ycToIC3jynsebsgB
dRadvp++guOexcXZ+P4kcl+BFaz8kNqCCC+LwBK9dw04oaciR3Fl8LzrcR4/nV1Y
WyDO2pNXHn8ghXD/IQ4sCjJ5jQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMo0jM0S
vOk6+6gtbT3YAiaeCVYrMB8GA1UdIwQYMBaAFPJQ02hnU/3mVLC7NLEnhvtaQ5Kv
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEJFNi81RTUxN0ZFRTY0
ODUxMUVDOUE1NThCMERDNEY5QUUwMi84bERUYUdkVF9lWlVzTHMwc1NlRy0xcERr
cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzhsRFRhR2RUX2VaVXNMczBzU2VHLTFwRGtxOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTBCRTYvNUU1MTdGRUU2NDg1MTFFQzlBNTU4QjBEQzRGOUFFMDIvNTA3NEYyODI2
NzdGMTFFQzhDMUMxMjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E
EzARMA8EAgACMAkDBwAgAQ3xa4AwDQYJKoZIhvcNAQELBQADggEBADWuKijuYdnL
FiILV8doouE5PcGjYALVcCxyh/e1txVoka7Q/6h71vLEMwR3hexGebHOsRfS7fxO
bbSvf9qvLyzp0fVdXzPFZK+ehjp/aq6hOykGn75zyehDKpsH8ZWOYRpRfrFXOLJj
TcNuyCmJRGzeVTJIQoPYtFiIPILMnwAp346NKmhkFAEdu59AmkDoXH4kd2BjbORF
9HSvVQXRCb4afOKKDExUm/Q/x2SkzSc4nq/oPZhVlvJKUHOo3uMTi407u+PbrFHH
PhD4n4LcTqtgiRgANE16pQEiRPv3bA7+hqgoIZZTi8o1LFafwL9ytBWTZ/VUbcSX
0sD7AxUiGTE=
-----END CERTIFICATE-----
Generated at Thu Oct 31 06:49:34 2024 by rpki-client on console-ams.rpki-client.org