Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/E29E31F47B4211EEAEE2281DC4F9AE02.roa
File: E29E31F47B4211EEAEE2281DC4F9AE02.roa (raw, json)
Hash identifier: CMBklRgoWBAI9bBrQOFA+/x7621FWfVfV0EFm23ww7o=
Subject key identifier: 5A:78:5C:73:19:5F:B8:62:65:CF:A6:72:92:58:1C:0D:50:16:57:2B
Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Certificate serial: 0341
Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/E29E31F47B4211EEAEE2281DC4F9AE02.roa
Signing time: Sun 07 Jan 2024 02:24:45 +0000
ROA not before: Sun 07 Jan 2024 02:24:45 +0000
ROA not after: Sun 02 Mar 2025 00:00:00 +0000
asID: 134732
IP address blocks: 103.178.66.0/24 maxlen: 24
103.178.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Nov 2024 20:07:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 833 (0x341)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F
Validity
Not Before: Jan 7 02:24:45 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=659a0b6d-147a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:15:e4:8c:60:13:9b:e6:04:cd:25:af:2a:54:
0e:fa:94:ed:8e:63:a4:6b:53:1d:a9:8c:f8:94:d9:
33:4c:aa:73:be:62:7c:90:f5:fa:13:2a:fe:80:45:
c8:7e:d7:99:9b:7a:b8:f7:e9:7d:41:6a:ea:84:e0:
85:66:6a:03:02:55:a3:95:c8:02:ef:fd:fc:5d:7d:
d2:9c:d9:27:93:1e:52:21:ad:19:bf:21:bd:73:27:
df:8b:ee:d3:5f:08:c8:be:e8:64:2e:5a:50:68:62:
48:68:92:0b:9a:37:6a:09:d5:fb:4c:73:e1:33:c2:
3f:d5:9d:05:90:55:1a:7c:1c:fc:1b:8c:d1:67:84:
d4:05:8f:18:ab:5d:79:7d:e5:f3:69:44:aa:04:c1:
be:db:9b:13:a9:0b:35:15:e8:bb:54:7c:43:78:dd:
a8:64:b1:90:2d:fe:33:70:e3:89:23:40:c2:29:b0:
26:6e:d4:44:fe:cb:3f:9b:a5:0a:88:85:15:9d:48:
2c:1b:88:f0:55:e5:c9:ce:7d:c3:35:67:8d:2d:25:
6a:e5:39:5a:35:74:08:20:25:fa:17:91:1c:d7:b4:
b0:13:2a:d8:0a:c8:b2:80:ff:c6:d4:72:a7:ee:26:
ce:91:2c:e1:5d:ca:3f:92:e8:9a:ef:c5:68:8d:43:
b2:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:78:5C:73:19:5F:B8:62:65:CF:A6:72:92:58:1C:0D:50:16:57:2B
X509v3 Authority Key Identifier:
keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/E29E31F47B4211EEAEE2281DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.178.66.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:c6:5a:f5:16:96:5c:0c:44:64:a2:9f:f4:17:84:cf:aa:e3:
e2:08:23:08:5d:9b:c8:c7:2c:48:3f:88:17:cb:d9:4f:b5:6f:
7e:36:24:9f:e1:ac:8d:01:1c:48:96:dd:d8:30:d5:ed:e9:d6:
ed:98:f5:7f:46:a6:10:2e:3f:33:c6:d7:b2:ed:4d:05:44:77:
33:b7:cf:ca:64:f5:19:71:d5:00:4a:3f:fd:e5:ce:f5:ef:2d:
94:a7:fe:b9:e4:40:88:9d:3a:b9:94:d5:fc:6b:9b:91:6e:f7:
86:30:b5:9b:17:72:ce:27:46:c1:e5:8d:37:94:bc:ef:6a:91:
2f:eb:9d:9d:9c:45:87:7e:55:f9:09:ae:0f:d3:c5:30:c0:c8:
02:35:7f:d0:30:c4:a5:a8:50:b7:27:ad:34:0f:f6:af:bc:11:
ed:0a:73:9d:5f:02:c7:dc:95:11:a0:32:a6:35:2c:bf:ef:09:
87:02:cc:b5:a4:1a:3b:08:c1:11:e5:9e:a3:5f:49:e6:8b:30:
f4:9e:e0:0c:be:a8:de:87:29:28:d1:f0:29:0c:ea:64:c7:ec:
27:77:3a:76:9b:50:f1:31:52:a4:5d:7f:78:23:f5:7e:3c:20:
dd:67:3f:76:83:f8:57:8c:95:2e:08:e9:71:17:24:be:c8:b5:
12:36:93:27
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICA0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RjYwNUIxMTAvBgNVBAUTKDkxMzM4NjkwREVCQTU3OENFNzM4MjE4QTlFMjIwODU0
RDFCNTI3NUYwHhcNMjQwMTA3MDIyNDQ1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTlhMGI2ZC0xNDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA4RXkjGATm+YEzSWvKlQO+pTtjmOka1MdqYz4lNkzTKpzvmJ8kPX6Eyr+gEXI
fteZm3q49+l9QWrqhOCFZmoDAlWjlcgC7/38XX3SnNknkx5SIa0ZvyG9cyffi+7T
XwjIvuhkLlpQaGJIaJILmjdqCdX7THPhM8I/1Z0FkFUafBz8G4zRZ4TUBY8Yq115
feXzaUSqBMG+25sTqQs1Fei7VHxDeN2oZLGQLf4zcOOJI0DCKbAmbtRE/ss/m6UK
iIUVnUgsG4jwVeXJzn3DNWeNLSVq5TlaNXQIICX6F5Ec17SwEyrYCsiygP/G1HKn
7ibOkSzhXco/kuia78VojUOy9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFp4XHMZ
X7hiZc+mcpJYHA1QFlcrMB8GA1UdIwQYMBaAFJEzhpDeuleM5zghip4iCFTRtSdf
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA1Qi85ODE3RDI3MjY0
Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0em5PQ0dLbmlJSVZORzFK
MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2tUT0drTjY2VjR6bk9DR0tuaUlJVk5HMUoxOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RjYwNUIvOTgxN0QyNzI2NENDMTFFQzk2RDRBNTU4QzRGOUFFMDIvRTI5RTMxRjQ3
QjQyMTFFRUFFRTIyODFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnskIwDQYJKoZIhvcNAQELBQADggEBAHrGWvUWllwMRGSi
n/QXhM+q4+IIIwhdm8jHLEg/iBfL2U+1b342JJ/hrI0BHEiW3dgw1e3p1u2Y9X9G
phAuPzPG17LtTQVEdzO3z8pk9Rlx1QBKP/3lzvXvLZSn/rnkQIidOrmU1fxrm5Fu
94YwtZsXcs4nRsHljTeUvO9qkS/rnZ2cRYd+VfkJrg/TxTDAyAI1f9AwxKWoULcn
rTQP9q+8Ee0Kc51fAsfclRGgMqY1LL/vCYcCzLWkGjsIwRHlnqNfSeaLMPSe4Ay+
qN6HKSjR8CkM6mTH7Cd3OnabUPExUqRdf3gj9X48IN1nP3aD+FeMlS4I6XEXJL7I
tRI2kyc=
-----END CERTIFICATE-----
Generated at Wed Nov 13 21:30:40 2024 by rpki-client on console-fra.rpki-client.org