Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/EB9FEA300AA511EE84B0053DC4F9AE02.roa
File: EB9FEA300AA511EE84B0053DC4F9AE02.roa (raw, json)
Hash identifier: ZgFn2GzOqPDMz01oyA8kJVFo/v+T3Q82JbVYSryaheY=
Subject key identifier: 74:BA:B8:B0:E4:E3:55:8A:36:3E:9C:0A:9D:17:5E:0D:BF:7A:91:CF
Certificate issuer: /CN=A91F4C6B/serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142
Certificate serial: 0763
Authority key identifier: E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/EB9FEA300AA511EE84B0053DC4F9AE02.roa
Signing time: Tue 04 Jul 2023 21:28:04 +0000
ROA not before: Tue 04 Jul 2023 21:28:04 +0000
ROA not after: Mon 30 Sep 2024 00:00:00 +0000
asID: 134371
IP address blocks: 103.152.102.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 11 Dec 2023 21:20:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1891 (0x763)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F4C6B/serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142
Validity
Not Before: Jul 4 21:28:04 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=64a48ee4-3129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ae:78:57:e5:a2:36:ac:18:86:5f:30:da:3b:
8e:0b:9a:df:52:cf:23:38:cf:bc:11:d2:b0:6b:79:
bf:3e:6d:ef:e4:71:5f:73:6f:94:98:bd:b5:e5:9a:
c3:0f:71:fa:a9:2d:9f:32:51:89:77:f8:3c:be:de:
9e:23:d7:16:cb:20:53:c9:1f:90:56:38:3e:40:7a:
58:bf:9c:10:74:64:0f:f3:4b:46:dd:37:cc:3d:c7:
68:13:fb:ad:34:ae:21:c1:51:3e:bb:ae:34:60:45:
29:38:70:71:a4:00:22:1d:e7:16:cc:8d:54:b4:7a:
f0:00:56:4d:0d:c2:c0:c7:5b:ce:b2:35:df:42:25:
e2:d3:95:82:e8:66:09:ad:e6:c6:67:8a:4d:95:e9:
80:4b:3b:b5:01:48:09:2c:8f:e1:47:c0:e9:d6:61:
d6:f5:bd:57:78:93:73:11:1b:29:d6:ed:2d:1b:2c:
f7:c9:20:b3:09:bb:11:85:d7:33:ca:4b:85:e6:d8:
39:72:94:da:c5:73:03:e0:c5:d7:67:aa:ff:5e:9d:
72:b5:8f:b4:d3:b0:4d:48:9d:bc:ea:75:0f:6d:c8:
1a:3b:60:ce:a2:7b:b4:11:6a:e6:5a:f8:9c:b8:af:
93:d2:cd:15:05:e1:3c:e5:b1:07:2f:ec:bd:a1:55:
ed:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:BA:B8:B0:E4:E3:55:8A:36:3E:9C:0A:9D:17:5E:0D:BF:7A:91:CF
X509v3 Authority Key Identifier:
keyid:E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/EB9FEA300AA511EE84B0053DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.102.0/23
Signature Algorithm: sha256WithRSAEncryption
c7:50:d9:97:40:ff:2a:44:99:f5:ad:96:7a:30:56:4d:e1:0e:
86:fb:ab:46:61:95:0d:75:45:36:2e:19:c1:24:e9:8b:66:e7:
ca:69:32:cb:fb:c0:f6:9d:b4:c2:ac:94:72:a2:f6:07:f9:dc:
d8:95:01:d8:68:65:96:71:ac:02:fc:57:fd:a5:a2:41:74:ec:
55:eb:76:02:8b:8b:c5:c6:df:1a:d4:1d:3d:80:a9:ec:6e:a3:
b0:74:10:ef:70:17:67:53:ca:0f:3c:ed:1d:e5:ce:8c:b9:c1:
7b:4e:0b:f0:b4:c1:ff:35:cc:3a:8a:33:72:22:ae:93:a5:68:
86:dc:4b:1b:29:55:7d:87:08:a4:03:10:22:6b:c9:ff:33:b2:
f9:59:20:10:4e:6c:a1:15:0b:06:03:ac:62:f6:20:a5:83:35:
c5:c0:50:3c:7f:ba:ad:43:07:26:75:1f:cf:f6:b2:2c:99:a8:
f4:57:49:07:c5:27:15:9f:84:5c:5b:c0:3e:7a:fd:71:9e:ea:
13:4d:52:d3:05:99:b4:4b:49:90:a0:42:b6:9c:0a:bb:87:c3:
0f:c7:06:38:ce:ae:17:43:7c:a1:50:5c:1a:5f:0d:59:15:34:
2b:74:70:cc:fe:fc:5e:0b:91:1b:20:5e:e1:a6:55:b7:64:25:
3e:95:5a:a6
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICB2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjRDNkIxMTAvBgNVBAUTKEUyNjg3M0I0NUY4OEQxRjVEODgzQzE3RTRDQ0Y3MEEy
NDUxNjIxNDIwHhcNMjMwNzA0MjEyODA0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NGE0OGVlNC0zMTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAmK54V+WiNqwYhl8w2juOC5rfUs8jOM+8EdKwa3m/Pm3v5HFfc2+UmL215ZrD
D3H6qS2fMlGJd/g8vt6eI9cWyyBTyR+QVjg+QHpYv5wQdGQP80tG3TfMPcdoE/ut
NK4hwVE+u640YEUpOHBxpAAiHecWzI1UtHrwAFZNDcLAx1vOsjXfQiXi05WC6GYJ
rebGZ4pNlemASzu1AUgJLI/hR8Dp1mHW9b1XeJNzERsp1u0tGyz3ySCzCbsRhdcz
ykuF5tg5cpTaxXMD4MXXZ6r/Xp1ytY+007BNSJ286nUPbcgaO2DOonu0EWrmWvic
uK+T0s0VBeE85bEHL+y9oVXtOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHS6uLDk
41WKNj6cCp0XXg2/epHPMB8GA1UdIwQYMBaAFOJoc7RfiNH12IPBfkzPcKJFFiFC
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEM2Qi8yNzhBQTNFNEI1
MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYtSTBmWFlnOEYtVE05d29rVVdJ
VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzRtaHp0Ri1JMGZYWWc4Ri1UTTl3b2tVV0lVSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RjRDNkIvMjc4QUEzRTRCNTFGMTFFQTlGRThCRDU4QzRGOUFFMDIvRUI5RkVBMzAw
QUE1MTFFRTg0QjAwNTNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnmGYwDQYJKoZIhvcNAQELBQADggEBAMdQ2ZdA/ypEmfWt
lnowVk3hDob7q0ZhlQ11RTYuGcEk6Ytm58ppMsv7wPadtMKslHKi9gf53NiVAdho
ZZZxrAL8V/2lokF07FXrdgKLi8XG3xrUHT2Aqexuo7B0EO9wF2dTyg887R3lzoy5
wXtOC/C0wf81zDqKM3IirpOlaIbcSxspVX2HCKQDECJryf8zsvlZIBBObKEVCwYD
rGL2IKWDNcXAUDx/uq1DByZ1H8/2siyZqPRXSQfFJxWfhFxbwD56/XGe6hNNUtMF
mbRLSZCgQracCruHww/HBjjOrhdDfKFQXBpfDVkVNCt0cMz+/F4LkRsgXuGmVbdk
JT6VWqY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:38 2024 by rpki-client on console-ams.rpki-client.org