Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/129A21B0DC1611ECAACFC563C4F9AE02.roa
File: 129A21B0DC1611ECAACFC563C4F9AE02.roa (raw, json)
Hash identifier: H0Q58/6aEjN02oH2/K/GLgrcdpFYcTnspr283ZJFLtE=
Subject key identifier: 35:EC:14:D8:A7:57:FE:E4:D5:91:06:09:C5:FA:70:4E:36:8A:57:AD
Certificate issuer: /CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD
Certificate serial: 0246
Authority key identifier: 41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/129A21B0DC1611ECAACFC563C4F9AE02.roa
Signing time: Wed 05 Jun 2024 04:31:42 +0000
ROA not before: Wed 05 Jun 2024 04:31:42 +0000
ROA not after: Sun 31 Aug 2025 00:00:00 +0000
asID: 7545
IP address blocks: 192.188.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Aug 2024 03:58:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 582 (0x246)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E91BC/serialNumber=414FB6178869130F826E9E30C0B794084D9760DD
Validity
Not Before: Jun 5 04:31:42 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=665fea2e-64c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:47:75:ca:15:8b:e2:a2:c0:bc:3e:6b:48:f3:
f8:5c:bb:26:91:05:68:76:6e:0d:cd:05:a0:5e:7d:
03:92:cf:ab:c2:92:c1:e9:f1:f2:43:22:d8:8f:5c:
9e:a8:10:15:0b:11:6e:bb:20:43:c6:14:8e:bc:69:
3f:7b:4e:d8:97:8e:06:54:94:9f:90:50:17:58:d7:
78:fc:67:50:f1:fc:ae:02:61:c7:17:72:21:85:29:
94:e9:15:3d:3b:7a:16:04:fe:be:d0:2a:36:db:22:
9f:75:77:90:9c:75:2c:28:18:64:52:97:74:11:8c:
2c:80:a7:aa:88:04:da:16:72:fb:4b:ec:2b:a7:ae:
47:77:56:95:cf:05:da:6a:50:eb:9b:d3:2a:72:e1:
fc:fe:e9:95:9d:7b:a3:87:1e:92:3d:a2:56:aa:24:
36:e6:96:2d:3e:17:a3:04:36:23:3d:d5:6f:41:11:
bc:10:74:03:1f:78:1b:85:12:41:0f:14:e3:69:e8:
75:1a:78:82:5c:de:4d:c0:2e:2d:94:5f:12:97:cd:
10:01:9d:93:96:23:3d:9d:53:aa:27:be:05:ea:29:
ed:8c:a2:6c:ee:aa:f8:19:4e:a3:b0:5b:8b:6d:d5:
f3:a8:ee:4f:9f:bb:8e:4c:8a:6e:9b:38:3e:60:f6:
10:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:EC:14:D8:A7:57:FE:E4:D5:91:06:09:C5:FA:70:4E:36:8A:57:AD
X509v3 Authority Key Identifier:
keyid:41:4F:B6:17:88:69:13:0F:82:6E:9E:30:C0:B7:94:08:4D:97:60:DD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QU-2F4hpEw-Cbp4wwLeUCE2XYN0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E91BC/A4E673CADBE911EC95110515C4F9AE02/129A21B0DC1611ECAACFC563C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.188.107.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:36:07:40:56:44:22:2d:c6:a6:27:21:3a:01:51:6d:86:49:
2d:04:c8:81:43:0e:1a:7d:88:a3:06:21:63:36:12:67:cc:5e:
ac:54:36:ad:31:0e:c3:95:da:b1:26:01:13:d7:51:87:e2:5c:
b3:84:ba:cb:2b:ae:97:31:32:0c:42:a3:f3:ab:8d:eb:a1:c4:
1e:f2:7c:41:ef:2b:c6:5b:6e:ca:6f:96:6b:96:0b:9e:d6:93:
9d:d8:6a:6c:cf:ff:b6:b6:58:74:e4:87:37:f6:be:f8:a7:b9:
9b:10:2b:a6:8a:cf:b1:4c:98:9d:a4:3e:2e:b6:4c:f1:05:17:
7f:ce:3c:aa:e2:65:32:40:94:a7:a0:83:6a:2e:41:b6:4e:7c:
6b:b4:39:6d:39:be:21:07:c5:51:d9:0a:21:58:03:44:44:d1:
13:85:3b:da:ea:27:26:f0:09:88:45:94:50:04:42:47:db:53:
30:cd:62:de:cf:c4:7f:0c:5c:fc:31:08:fb:7f:44:8b:2a:7b:
b5:c0:57:56:e4:a9:a6:e8:d2:e5:fe:c3:a1:85:98:c1:74:09:
84:01:e7:ee:5b:69:de:bd:26:5f:c1:f6:95:49:e8:0d:2a:23:
b8:61:52:1b:48:7e:5c:0c:b0:0e:72:cb:57:67:95:32:49:0f:
2b:ee:01:5a
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTkxQkMxMTAvBgNVBAUTKDQxNEZCNjE3ODg2OTEzMEY4MjZFOUUzMEMwQjc5NDA4
NEQ5NzYwREQwHhcNMjQwNjA1MDQzMTQyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NjVmZWEyZS02NGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEApUd1yhWL4qLAvD5rSPP4XLsmkQVodm4NzQWgXn0Dks+rwpLB6fHyQyLYj1ye
qBAVCxFuuyBDxhSOvGk/e07Yl44GVJSfkFAXWNd4/GdQ8fyuAmHHF3IhhSmU6RU9
O3oWBP6+0Co22yKfdXeQnHUsKBhkUpd0EYwsgKeqiATaFnL7S+wrp65Hd1aVzwXa
alDrm9MqcuH8/umVnXujhx6SPaJWqiQ25pYtPhejBDYjPdVvQRG8EHQDH3gbhRJB
DxTjaeh1GniCXN5NwC4tlF8Sl80QAZ2TliM9nVOqJ74F6intjKJs7qr4GU6jsFuL
bdXzqO5Pn7uOTIpumzg+YPYQFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDXsFNin
V/7k1ZEGCcX6cE42iletMB8GA1UdIwQYMBaAFEFPtheIaRMPgm6eMMC3lAhNl2Dd
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTFCQy9BNEU2NzNDQURC
RTkxMUVDOTUxMTA1MTVDNEY5QUUwMi9RVS0yRjRocEV3LUNicDR3d0xlVUNFMlhZ
TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL1FVLTJGNGhwRXctQ2JwNHd3TGVVQ0UyWFlOMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTkxQkMvQTRFNjczQ0FEQkU5MTFFQzk1MTEwNTE1QzRGOUFFMDIvMTI5QTIxQjBE
QzE2MTFFQ0FBQ0ZDNTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADAvGswDQYJKoZIhvcNAQELBQADggEBAMg2B0BWRCItxqYn
IToBUW2GSS0EyIFDDhp9iKMGIWM2EmfMXqxUNq0xDsOV2rEmARPXUYfiXLOEussr
rpcxMgxCo/OrjeuhxB7yfEHvK8ZbbspvlmuWC57Wk53YamzP/7a2WHTkhzf2vvin
uZsQK6aKz7FMmJ2kPi62TPEFF3/OPKriZTJAlKegg2ouQbZOfGu0OW05viEHxVHZ
CiFYA0RE0ROFO9rqJybwCYhFlFAEQkfbUzDNYt7PxH8MXPwxCPt/RIsqe7XAV1bk
qabo0uX+w6GFmMF0CYQB5+5bad69Jl/B9pVJ6A0qI7hhUhtIflwMsA5yy1dnlTJJ
DyvuAVo=
-----END CERTIFICATE-----
Generated at Thu Aug 1 05:35:31 2024 by rpki-client on console-fra.rpki-client.org