Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8AA395B69F3711EE92CB7734C4F9AE02.roa
File: 8AA395B69F3711EE92CB7734C4F9AE02.roa (raw, json)
Hash identifier: 1Dw5ImxqhET4lLJU51mDN3gsonIXh9pRxt5JkuwkLJ8=
Subject key identifier: E9:32:11:D5:EA:0A:E1:9D:75:E5:69:1F:A5:9A:72:52:8C:AD:95:10
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 0EAD
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8AA395B69F3711EE92CB7734C4F9AE02.roa
Signing time: Wed 20 Dec 2023 12:58:59 +0000
ROA not before: Wed 20 Dec 2023 12:58:59 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 115.167.1.0/24 maxlen: 24
115.167.16.0/22 maxlen: 24
115.167.56.0/22 maxlen: 24
115.167.60.0/22 maxlen: 24
115.167.104.0/22 maxlen: 24
115.167.112.0/22 maxlen: 24
115.167.116.0/22 maxlen: 24
175.110.68.0/22 maxlen: 24
175.110.72.0/22 maxlen: 24
175.110.76.0/22 maxlen: 24
175.110.80.0/22 maxlen: 24
175.110.84.0/22 maxlen: 24
175.110.88.0/22 maxlen: 24
175.110.104.0/22 maxlen: 24
175.110.111.0/24 maxlen: 24
202.92.20.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3757 (0xead)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Dec 20 12:58:59 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=6582e513-ffcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e1:89:ff:c8:1c:72:3d:60:5f:a4:c6:33:4b:
f4:8d:ca:ac:d9:5c:30:ed:e4:df:c5:ca:d3:c5:ed:
2f:cd:e4:79:63:a5:37:9e:81:24:1b:da:dc:08:35:
ef:d8:27:64:b0:90:51:bd:5e:11:a9:3f:a9:3e:5b:
21:30:21:43:a8:29:57:1b:67:76:e6:c7:8b:46:0c:
e3:10:da:73:84:e3:d8:49:cb:39:a4:f4:f3:fb:9c:
ec:1f:28:e5:cb:4a:96:0c:3d:4f:13:c3:3e:02:98:
e1:6b:64:46:a9:04:ff:53:79:59:ca:9d:c2:64:74:
e6:cf:aa:0c:5a:d2:ec:04:2b:c7:56:25:e6:bb:36:
8e:37:d9:32:31:03:4b:e2:7d:84:79:d7:9f:f6:99:
2c:3d:b1:27:f3:03:00:b2:31:f6:95:49:2d:e5:65:
a6:33:e7:58:75:95:19:ae:e6:91:6a:32:35:a4:10:
d2:07:f2:7d:98:60:f2:06:a3:e3:63:f3:21:7e:19:
bd:62:b4:a8:d4:c0:1b:03:a3:d1:90:75:bb:9e:2e:
15:c9:36:1f:dc:15:96:dc:67:fe:21:5d:8e:36:9f:
f9:63:94:f9:14:5a:c1:23:5a:37:7e:ee:2f:74:90:
1d:01:52:48:b7:d2:94:5f:13:17:e7:e3:99:b9:d1:
1f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:32:11:D5:EA:0A:E1:9D:75:E5:69:1F:A5:9A:72:52:8C:AD:95:10
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/8AA395B69F3711EE92CB7734C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.167.1.0/24
115.167.16.0/22
115.167.56.0/21
115.167.104.0/22
115.167.112.0/21
175.110.68.0-175.110.91.255
175.110.104.0/22
175.110.111.0/24
202.92.20.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:fd:cf:41:bc:03:77:aa:36:18:38:a3:56:ec:79:76:b6:7a:
7e:29:66:f8:d4:49:91:ea:a6:b0:bf:fa:bf:d5:a5:f8:a0:2d:
2d:f4:75:4e:0c:df:f8:e7:14:dc:c2:ff:59:ea:f1:8e:54:86:
5e:6c:68:ec:6c:36:7b:c3:29:00:06:ef:b5:ba:56:b5:8b:11:
82:e4:4f:ef:40:de:af:50:18:9d:0a:1d:4a:70:3e:b9:59:bc:
60:97:ee:62:44:ae:47:bc:69:9f:1f:e9:c7:8f:85:0d:0b:2a:
64:ee:44:53:c0:36:95:63:e7:71:74:42:7b:2a:34:92:43:02:
21:93:1f:57:f7:e2:66:3a:e5:0b:c1:9a:03:7f:bf:1f:25:8e:
a2:d9:a2:03:0f:3a:96:05:36:b2:f5:57:44:36:7c:b6:7b:cd:
44:1e:2b:20:48:6c:e4:3d:42:12:ed:0e:81:70:ed:2f:1d:01:
08:8c:4d:1a:04:c5:18:6a:1f:11:57:33:79:ab:ef:52:6c:a4:
41:2f:9d:b9:31:8a:7f:c9:ef:1d:36:d1:9f:43:50:8a:b2:e5:
d3:13:91:cf:a5:22:95:7b:08:65:f8:e4:b4:fc:bb:71:de:56:
bd:11:6d:81:a9:5a:c6:9f:6f:88:1d:5d:d0:8d:96:08:75:2b:
22:d4:3e:34
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgICDq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjMxMjIwMTI1ODU5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTgyZTUxMy1mZmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAu+GJ/8gccj1gX6TGM0v0jcqs2Vww7eTfxcrTxe0vzeR5Y6U3noEkG9rcCDXv
2CdksJBRvV4RqT+pPlshMCFDqClXG2d25seLRgzjENpzhOPYScs5pPTz+5zsHyjl
y0qWDD1PE8M+Apjha2RGqQT/U3lZyp3CZHTmz6oMWtLsBCvHViXmuzaON9kyMQNL
4n2Eedef9pksPbEn8wMAsjH2lUkt5WWmM+dYdZUZruaRajI1pBDSB/J9mGDyBqPj
Y/Mhfhm9YrSo1MAbA6PRkHW7ni4VyTYf3BWW3Gf+IV2ONp/5Y5T5FFrBI1o3fu4v
dJAdAVJIt9KUXxMX5+OZudEf1wIDAQABo4ICzTCCAskwHQYDVR0OBBYEFOkyEdXq
CuGddeVpH6WaclKMrZUQMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvOEFBMzk1QjY5
RjM3MTFFRTkyQ0I3NzM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVwYIKwYBBQUHAQcBAf8E
SDBGMEQEAgABMD4DBABzpwEDBAJzpxADBANzpzgDBAJzp2gDBANzp3AwDAMEAq9u
RAMEAq9uWAMEAq9uaAMEAK9ubwMEAMpcFDANBgkqhkiG9w0BAQsFAAOCAQEALv3P
QbwDd6o2GDijVux5drZ6film+NRJkeqmsL/6v9Wl+KAtLfR1Tgzf+OcU3ML/Werx
jlSGXmxo7Gw2e8MpAAbvtbpWtYsRguRP70Der1AYnQodSnA+uVm8YJfuYkSuR7xp
nx/px4+FDQsqZO5EU8A2lWPncXRCeyo0kkMCIZMfV/fiZjrlC8GaA3+/HyWOotmi
Aw86lgU2svVXRDZ8tnvNRB4rIEhs5D1CEu0OgXDtLx0BCIxNGgTFGGofEVczeavv
UmykQS+duTGKf8nvHTbRn0NQirLl0xORz6UilXsIZfjktPy7cd5WvRFtgalaxp9v
iB1d0I2WCHUrItQ+NA==
-----END CERTIFICATE-----
Generated at Thu Dec 28 12:51:37 2023 by rpki-client on console-fra.rpki-client.org