Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5A3D7398AEDB11EEA598205BC4F9AE02.roa
File: 5A3D7398AEDB11EEA598205BC4F9AE02.roa (raw, json)
Hash identifier: vVylIFPPscPHrOslAKgtA3nigOOOwjwirMFqZmrtmqU=
Subject key identifier: 20:D0:BA:82:08:FD:11:1D:C1:F1:FE:54:98:29:B5:BE:9C:B1:39:12
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0F51
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5A3D7398AEDB11EEA598205BC4F9AE02.roa
Signing time: Tue 09 Jan 2024 10:39:23 +0000
ROA not before: Tue 09 Jan 2024 10:39:23 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 5650
IP address blocks: 115.167.56.0/22 maxlen: 24
175.110.104.0/22 maxlen: 23
175.110.104.0/24 maxlen: 24
175.110.106.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 08:47:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3921 (0xf51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Jan 9 10:39:23 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=659d225b-bb84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:59:e4:d5:49:0d:0e:f7:40:9e:7b:53:8a:6d:
ff:d7:d6:be:19:7a:78:39:2f:92:b9:16:7c:ba:ad:
6e:5d:f7:1b:c1:a7:eb:86:e3:51:74:83:59:42:d5:
ad:28:cb:76:f4:1b:ab:e5:ac:cf:57:e5:09:97:d7:
b7:c9:14:5e:ad:e4:60:4d:67:f4:df:de:4b:2c:30:
9b:b9:aa:fc:86:74:fe:a9:4a:40:e9:be:03:e8:a2:
b1:77:ff:72:46:3c:3d:e4:68:1f:b1:8e:7b:af:ff:
a3:dc:0c:5e:b8:88:7f:fb:7e:13:75:23:ca:80:b7:
fb:aa:59:cd:5c:17:a4:b2:23:9e:3d:29:87:9b:53:
d9:c5:f6:11:6d:98:70:8a:c1:08:0a:f9:e0:e1:45:
41:31:d2:87:76:cb:40:78:4e:d5:b0:f8:33:55:19:
03:19:f7:23:d6:f3:f3:1d:80:1a:43:dd:90:56:46:
5f:16:1f:ca:95:00:1f:61:cc:22:ef:42:3f:0b:3b:
5f:5b:8f:b0:92:6f:0e:25:db:bd:e7:32:82:0e:31:
18:58:35:fd:3a:18:95:b7:5f:88:f3:b6:d9:3c:5a:
61:c5:d1:35:70:32:76:0f:56:84:79:c7:cc:62:11:
06:12:52:ea:92:20:5e:9b:db:e3:04:7e:8e:eb:ea:
d2:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:D0:BA:82:08:FD:11:1D:C1:F1:FE:54:98:29:B5:BE:9C:B1:39:12
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/5A3D7398AEDB11EEA598205BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.56.0/22
175.110.104.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:76:e3:fc:20:90:25:71:2d:52:74:d8:c8:fb:50:d6:c5:22:
74:bf:32:b4:a1:39:05:2d:c8:2b:13:e3:87:9d:92:95:3b:3e:
9f:c8:4f:e6:8f:75:75:6d:02:ab:a0:d1:62:56:d1:cb:9d:87:
2d:cd:74:5f:b7:49:57:c0:08:3f:79:5e:85:3a:48:42:37:31:
a5:c5:71:05:8c:47:a9:88:08:6c:0d:e7:a7:c0:08:aa:08:fc:
d6:83:6c:18:90:ae:68:23:51:94:e9:2d:23:de:e8:47:35:52:
15:07:2c:02:07:07:b6:f8:b8:17:0c:fd:3f:b5:67:f9:94:a1:
5a:8f:fc:63:81:72:9e:1c:89:7c:52:8a:bb:66:62:ff:8b:18:
9b:6f:5d:c7:65:c2:f3:2b:c7:e8:54:d3:6b:0a:b0:d3:3f:6c:
ff:8b:8b:ba:d7:de:99:c0:ec:42:5c:0d:c3:44:ac:22:35:3d:
c4:26:d1:d2:22:5d:9d:f0:cf:b4:76:c7:16:3a:c1:0a:2c:b9:
77:d6:20:aa:47:35:54:a0:37:79:b6:08:6f:ca:89:60:bc:1a:
6f:f7:55:96:f0:ff:77:13:40:01:b2:df:fa:25:a9:d3:1a:91:
67:df:ff:6f:c5:03:82:db:22:34:7d:61:af:f5:c3:4f:24:12:
5f:64:9c:50
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgICD1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjQwMTA5MTAzOTIzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTlkMjI1Yi1iYjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtlnk1UkNDvdAnntTim3/19a+GXp4OS+SuRZ8uq1uXfcbwafrhuNRdINZQtWt
KMt29Bur5azPV+UJl9e3yRRereRgTWf0395LLDCbuar8hnT+qUpA6b4D6KKxd/9y
Rjw95GgfsY57r/+j3AxeuIh/+34TdSPKgLf7qlnNXBeksiOePSmHm1PZxfYRbZhw
isEICvng4UVBMdKHdstAeE7VsPgzVRkDGfcj1vPzHYAaQ92QVkZfFh/KlQAfYcwi
70I/CztfW4+wkm8OJdu95zKCDjEYWDX9OhiVt1+I87bZPFphxdE1cDJ2D1aEecfM
YhEGElLqkiBem9vjBH6O6+rSdwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCDQuoII
/REdwfH+VJgptb6csTkSMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvNUEzRDczOThB
RURCMTFFRUE1OTgyMDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E
FjAUMBIEAgABMAwDBAJzpzgDBAKvbmgwDQYJKoZIhvcNAQELBQADggEBAJt24/wg
kCVxLVJ02Mj7UNbFInS/MrShOQUtyCsT44edkpU7Pp/IT+aPdXVtAqug0WJW0cud
hy3NdF+3SVfACD95XoU6SEI3MaXFcQWMR6mICGwN56fACKoI/NaDbBiQrmgjUZTp
LSPe6Ec1UhUHLAIHB7b4uBcM/T+1Z/mUoVqP/GOBcp4ciXxSirtmYv+LGJtvXcdl
wvMrx+hU02sKsNM/bP+Li7rX3pnA7EJcDcNErCI1PcQm0dIiXZ3wz7R2xxY6wQos
uXfWIKpHNVSgN3m2CG/KiWC8Gm/3VZbw/3cTQAGy3/olqdMakWff/2/FA4LbIjR9
Ya/1w08kEl9knFA=
-----END CERTIFICATE-----
Generated at Tue Apr 9 11:49:17 2024 by rpki-client on console-fra.rpki-client.org