Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5059E6024A0211ED9F5C287DC4F9AE02.roa
File: 5059E6024A0211ED9F5C287DC4F9AE02.roa (raw, json)
Hash identifier: AprR2p4QZtVicLbQg9To9Ecp2CQ/ysPnm9voefU0y1E=
Subject key identifier: 68:3C:B2:76:2D:80:44:93:69:26:44:82:50:20:27:E7:F7:00:CC:FF
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 097D
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5059E6024A0211ED9F5C287DC4F9AE02.roa
Signing time: Wed 12 Oct 2022 07:48:52 +0000
ROA not before: Wed 12 Oct 2022 07:48:52 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 38547
IP address blocks: 115.167.2.0/24 maxlen: 24
115.167.24.0/22 maxlen: 24
115.167.28.0/22 maxlen: 24
115.167.50.0/24 maxlen: 24
115.167.72.0/22 maxlen: 24
115.167.116.0/22 maxlen: 24
115.167.124.0/22 maxlen: 24
175.110.104.0/24 maxlen: 24
175.110.105.0/24 maxlen: 24
175.110.106.0/24 maxlen: 24
175.110.107.0/24 maxlen: 24
202.92.16.0/24 maxlen: 24
202.92.17.0/24 maxlen: 24
202.92.23.0/24 maxlen: 24
202.92.24.0/24 maxlen: 24
202.92.24.32/27 maxlen: 27
202.92.25.0/24 maxlen: 24
202.92.26.0/24 maxlen: 24
202.92.27.0/24 maxlen: 24
202.92.28.0/24 maxlen: 24
202.92.29.0/24 maxlen: 24
202.92.30.0/24 maxlen: 24
202.92.31.0/24 maxlen: 24
2400:9560:1::/48 maxlen: 48
2400:9560:5::/48 maxlen: 48
2400:9560:9::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2429 (0x97d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Oct 12 07:48:52 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=63467164-e4b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3b:41:08:18:0f:1f:35:bd:f1:ee:a7:e7:87:
90:26:14:64:a4:e5:26:e8:30:fc:b1:89:c1:1f:75:
42:ac:3c:b9:f3:c7:5d:e8:43:2d:56:b8:a2:24:65:
6a:81:f1:e4:6c:ca:51:26:14:c1:41:8c:8c:08:e1:
1e:10:c6:3a:2a:75:b8:ac:96:bc:27:df:e7:3b:c4:
52:03:70:0c:a8:13:e0:bd:31:0e:b8:bc:a9:fb:08:
c2:ac:f6:95:46:f4:e0:cb:ef:92:a7:c6:51:a1:6a:
f8:a2:48:0b:b8:05:fc:4c:59:9a:6c:54:aa:e7:a6:
c2:42:8f:2c:0a:72:4c:b3:4a:ba:37:9c:fe:ad:8f:
8b:c4:81:48:35:9e:1e:a2:91:13:63:2a:72:2b:c1:
7b:2b:54:05:3e:50:46:71:b9:f4:e3:2b:58:f9:31:
55:81:f9:24:c0:cd:71:f7:f4:75:ed:36:0c:90:48:
e0:46:8f:df:0d:a9:15:7d:2e:1f:c1:ac:9c:dc:d3:
21:0b:a3:31:b6:75:8b:ab:a6:0c:18:f0:34:df:61:
aa:87:ab:5b:f1:ee:64:f7:0c:a1:65:9c:ec:5b:7e:
14:37:37:ea:e5:44:c9:26:b4:01:e6:65:80:6d:9e:
ba:cc:75:db:f2:4a:ce:e6:83:66:68:03:77:e6:cf:
3d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:3C:B2:76:2D:80:44:93:69:26:44:82:50:20:27:E7:F7:00:CC:FF
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5059E6024A0211ED9F5C287DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.2.0/24
115.167.24.0/21
115.167.50.0/24
115.167.72.0/22
115.167.116.0/22
115.167.124.0/22
175.110.104.0/22
202.92.16.0/23
202.92.23.0-202.92.31.255
IPv6:
2400:9560:1::/48
2400:9560:5::/48
2400:9560:9::/48
Signature Algorithm: sha256WithRSAEncryption
94:60:10:66:3b:e6:b6:b2:de:df:27:39:8b:16:51:4d:42:fb:
b4:ce:08:5c:95:18:57:a7:94:cc:06:9d:7a:39:ba:3d:06:1c:
29:68:f9:e1:da:ec:52:d3:af:65:9f:23:9a:84:e3:66:b3:ba:
59:21:7a:df:53:8d:c1:50:b5:c9:f9:25:a6:fc:33:26:9b:65:
ee:29:ad:d8:99:51:72:eb:0b:d7:67:51:5f:04:dd:60:54:94:
c7:aa:3b:9d:24:69:df:b4:5f:6a:a2:21:ef:f3:0e:f8:aa:8e:
e1:18:cb:cc:0a:30:1e:71:56:70:fc:90:3f:81:41:a7:9b:ca:
73:78:77:e2:61:3f:46:a8:74:23:de:27:27:64:67:02:77:18:
00:dd:17:4a:44:14:eb:12:52:91:72:ae:f9:d3:db:94:2b:e2:
57:4a:c1:98:d0:e5:e8:94:b8:2f:20:8a:f0:60:c6:a0:1a:d8:
a3:f8:6a:a3:a6:15:a3:33:22:6e:0e:db:d4:a6:1e:df:30:16:
44:86:2e:dc:44:53:cf:9f:0b:54:3b:7c:a0:42:6a:7d:ac:df:
12:e3:56:85:51:ae:66:c7:26:9d:51:72:de:31:be:07:f4:61:
d4:cf:dc:ad:15:6d:f0:f9:90:73:98:28:dc:0b:d9:79:2e:13:
a8:f3:77:13
-----BEGIN CERTIFICATE-----
MIIFzDCCBLSgAwIBAgICCX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjIxMDEyMDc0ODUyWhcNMjMwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02MzQ2NzE2NC1lNGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwTtBCBgPHzW98e6n54eQJhRkpOUm6DD8sYnBH3VCrDy588dd6EMtVriiJGVq
gfHkbMpRJhTBQYyMCOEeEMY6KnW4rJa8J9/nO8RSA3AMqBPgvTEOuLyp+wjCrPaV
RvTgy++Sp8ZRoWr4okgLuAX8TFmabFSq56bCQo8sCnJMs0q6N5z+rY+LxIFINZ4e
opETYypyK8F7K1QFPlBGcbn04ytY+TFVgfkkwM1x9/R17TYMkEjgRo/fDakVfS4f
wayc3NMhC6MxtnWLq6YMGPA032Gqh6tb8e5k9wyhZZzsW34UNzfq5UTJJrQB5mWA
bZ66zHXb8krO5oNmaAN35s89eQIDAQABo4IC8DCCAuwwHQYDVR0OBBYEFGg8snYt
gESTaSZEglAgJ+f3AMz/MB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvNTA1OUU2MDI0
QTAyMTFFRDlGNUMyODdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwegYIKwYBBQUHAQcBAf8E
azBpMEQEAgABMD4DBABzpwIDBANzpxgDBABzpzIDBAJzp0gDBAJzp3QDBAJzp3wD
BAKvbmgDBAHKXBAwDAMEAMpcFwMEBcpcADAhBAIAAjAbAwcAJACVYAABAwcAJACV
YAAFAwcAJACVYAAJMA0GCSqGSIb3DQEBCwUAA4IBAQCUYBBmO+a2st7fJzmLFlFN
Qvu0zghclRhXp5TMBp16Obo9BhwpaPnh2uxS069lnyOahONms7pZIXrfU43BULXJ
+SWm/DMmm2XuKa3YmVFy6wvXZ1FfBN1gVJTHqjudJGnftF9qoiHv8w74qo7hGMvM
CjAecVZw/JA/gUGnm8pzeHfiYT9GqHQj3icnZGcCdxgA3RdKRBTrElKRcq7509uU
K+JXSsGY0OXolLgvIIrwYMagGtij+GqjphWjMyJuDtvUph7fMBZEhi7cRFPPnwtU
O3ygQmp9rN8S41aFUa5mxyadUXLeMb4H9GHUz9ytFW3w+ZBzmCjcC9l5LhOo83cT
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:09 2023 by rpki-client on console-ams.rpki-client.org