Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/0969E3CC039811EFB0E15A70C4F9AE02.roa
File: 0969E3CC039811EFB0E15A70C4F9AE02.roa (raw, json)
Hash identifier: QBQ5DCsVccfd3AfzcvUDTbXHRCK2KwFk/JRiZhLsRP8=
Subject key identifier: 26:72:23:4A:B9:5E:DC:79:5A:86:26:71:E7:9A:3E:7B:05:72:57:7D
Certificate issuer: /CN=A91E2F80/serialNumber=F410C483A4C8C916FFD4CF420C4C110889798891
Certificate serial: 02
Authority key identifier: F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/0969E3CC039811EFB0E15A70C4F9AE02.roa
Signing time: Fri 26 Apr 2024 06:41:40 +0000
ROA not before: Fri 26 Apr 2024 06:41:40 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 152711
IP address blocks: 103.51.62.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 26 Apr 2024 12:28:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E2F80/serialNumber=F410C483A4C8C916FFD4CF420C4C110889798891
Validity
Not Before: Apr 26 06:41:40 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=662b4ca4-3a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a3:3d:1c:f5:ce:d2:0e:e1:54:3a:0a:b3:72:
7c:2c:bf:04:30:fa:b6:86:cd:11:34:a6:f9:42:27:
05:25:c9:59:b1:a0:73:40:bd:b5:41:1e:9b:15:c9:
cb:8a:1e:f7:ff:e4:76:77:1b:66:f6:3e:62:f4:6e:
25:b1:d3:7b:d7:78:6c:f3:d8:d3:13:e8:aa:f3:39:
7f:ac:68:35:9e:65:8e:d9:82:c7:ce:ba:ba:65:b5:
a7:f2:f6:27:08:23:27:1a:b2:5d:91:b0:ee:52:73:
fb:5a:3b:65:2d:73:44:c5:29:4d:70:11:2b:dc:0d:
6d:9f:d4:98:9c:67:d4:f9:1a:f4:e5:48:38:9c:2c:
13:9d:65:aa:3a:2c:b6:cf:e5:93:f4:9d:f0:af:e8:
dc:23:77:47:02:f2:26:0a:e6:45:02:c8:d9:b0:f1:
6b:be:e0:a0:f3:40:3b:a1:f7:7c:eb:00:49:f6:de:
36:7c:14:97:cc:aa:c3:14:6b:bf:c9:c4:16:12:60:
25:55:6d:3b:49:be:f3:c3:25:a8:cc:65:b5:c4:36:
1c:6d:30:6e:da:89:34:9f:51:40:1f:12:87:56:cc:
bd:ac:20:76:ad:f3:77:e0:22:b7:17:33:13:34:65:
3f:20:1c:2e:d8:df:5d:c3:75:0e:02:94:f5:30:61:
fd:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:72:23:4A:B9:5E:DC:79:5A:86:26:71:E7:9A:3E:7B:05:72:57:7D
X509v3 Authority Key Identifier:
keyid:F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/0969E3CC039811EFB0E15A70C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.51.62.0/23
Signature Algorithm: sha256WithRSAEncryption
70:cb:61:87:f5:08:2c:66:9f:eb:ba:9d:69:f7:96:8b:12:0a:
0c:80:8d:d5:fa:62:b7:20:19:59:0e:54:f3:43:81:86:d6:da:
ef:38:11:e1:5b:55:ca:af:5c:b8:f3:d6:87:71:e5:20:90:86:
dd:83:9d:45:8d:2a:0f:13:be:25:86:ed:6a:be:d4:9a:a7:19:
a6:63:bd:cc:33:8d:09:dc:dc:5b:36:70:9a:3e:22:24:c5:72:
92:10:75:97:60:7e:d2:d0:94:91:73:40:0c:ab:df:c1:a9:c9:
15:dc:f3:6d:bf:e2:a1:56:cf:37:84:42:19:78:0a:49:0a:c0:
a6:14:ff:fb:86:89:d8:9f:b1:0b:e8:69:f8:5a:ff:eb:c4:ad:
a7:a1:54:46:71:6e:f6:1d:bb:a5:70:37:1e:2d:3e:2f:3a:57:
8a:78:07:5d:14:6d:ec:ee:ce:8b:63:42:9f:be:31:58:ed:e8:
48:fa:93:54:04:05:20:59:64:69:41:26:98:d4:67:16:c3:c0:
93:01:36:c0:da:7f:75:e4:c5:8d:2c:f0:74:66:d3:e8:16:eb:
8e:b0:dc:17:ea:18:5a:67:fd:5f:2e:6a:b6:e9:82:91:d0:98:
03:66:e8:6b:03:2a:e8:09:b8:3a:f8:79:70:e4:7f:86:e3:b8:
e0:b2:89:01
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF
MkY4MDExMC8GA1UEBRMoRjQxMEM0ODNBNEM4QzkxNkZGRDRDRjQyMEM0QzExMDg4
OTc5ODg5MTAeFw0yNDA0MjYwNjQxNDBaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV
BAMTDTY2MmI0Y2E0LTNhMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDQoz0c9c7SDuFUOgqzcnwsvwQw+raGzRE0pvlCJwUlyVmxoHNAvbVBHpsVycuK
Hvf/5HZ3G2b2PmL0biWx03vXeGzz2NMT6KrzOX+saDWeZY7ZgsfOurpltafy9icI
Iycasl2RsO5Sc/taO2Utc0TFKU1wESvcDW2f1JicZ9T5GvTlSDicLBOdZao6LLbP
5ZP0nfCv6Nwjd0cC8iYK5kUCyNmw8Wu+4KDzQDuh93zrAEn23jZ8FJfMqsMUa7/J
xBYSYCVVbTtJvvPDJajMZbXENhxtMG7aiTSfUUAfEodWzL2sIHat83fgIrcXMxM0
ZT8gHC7Y313DdQ4ClPUwYf2tAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJnIjSrle
3HlahiZx55o+ewVyV30wHwYDVR0jBBgwFoAU9BDEg6TIyRb/1M9CDEwRCIl5iJEw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRjgwLzk0QzU0QjgwMDM5
NTExRUY4NUI2OUY0RUM0RjlBRTAyLzlCREVnNlRJeVJiXzFNOUNERXdSQ0lsNWlK
RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvOUJERWc2VEl5UmJfMU05Q0RFd1JDSWw1aUpFLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF
MkY4MC85NEM1NEI4MDAzOTUxMUVGODVCNjlGNEVDNEY5QUUwMi8wOTY5RTNDQzAz
OTgxMUVGQjBFMTVBNzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAWczPjANBgkqhkiG9w0BAQsFAAOCAQEAcMthh/UILGaf67qd
afeWixIKDICN1fpityAZWQ5U80OBhtba7zgR4VtVyq9cuPPWh3HlIJCG3YOdRY0q
DxO+JYbtar7UmqcZpmO9zDONCdzcWzZwmj4iJMVykhB1l2B+0tCUkXNADKvfwanJ
Fdzzbb/ioVbPN4RCGXgKSQrAphT/+4aJ2J+xC+hp+Fr/68Stp6FURnFu9h27pXA3
Hi0+LzpXingHXRRt7O7Oi2NCn74xWO3oSPqTVAQFIFlkaUEmmNRnFsPAkwE2wNp/
deTFjSzwdGbT6BbrjrDcF+oYWmf9Xy5qtumCkdCYA2boawMq6Am4Ovh5cOR/huO4
4LKJAQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:32 2024 by rpki-client on console-ams.rpki-client.org