Route Origin Authorization

$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/DC8132440F5811EF91000875C4F9AE02.roa
File:                     DC8132440F5811EF91000875C4F9AE02.roa (raw, json)
Hash identifier:          7W4ZzL97PgTaiJV2wm0HmET+IJPF/QfQLT6u69qUP1s=
Subject key identifier:   30:A2:AE:32:8D:DC:F8:28:CC:7B:34:E2:D4:60:62:F1:E8:E5:49:F6
Certificate issuer:       /CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33
Certificate serial:       17
Authority key identifier: AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer
Subject info access:      rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/DC8132440F5811EF91000875C4F9AE02.roa
Signing time:             Sat 11 May 2024 05:39:40 +0000
ROA not before:           Sat 11 May 2024 05:39:40 +0000
ROA not after:            Wed 30 Jul 2025 00:00:00 +0000
asID:                     23470
IP address blocks:        103.14.22.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Fri 14 Jun 2024 09:11:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 23 (0x17)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33
        Validity
            Not Before: May 11 05:39:40 2024 GMT
            Not After : Jul 30 00:00:00 2025 GMT
        Subject: CN=663f049c-d472
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:71:0a:98:fc:1f:a5:4e:73:fe:00:57:c2:8c:
                    92:4e:e5:4c:39:7f:6e:56:ec:e2:f4:e5:43:90:20:
                    a6:19:2a:fc:44:67:54:66:8b:c0:2f:bd:56:70:a2:
                    cb:53:06:5f:d6:a1:09:a2:b0:96:f9:93:1e:d7:f9:
                    80:6e:50:59:35:48:f8:d5:6e:8c:03:0e:7b:52:26:
                    3d:92:7b:1f:bc:f1:1d:79:2e:d6:54:22:d9:e2:74:
                    6a:7b:b7:e5:9f:17:e4:0e:36:9d:cf:b4:f4:e9:e1:
                    6f:17:0a:2c:c1:a3:a4:7e:21:b5:38:c5:44:28:73:
                    1b:bd:5b:d3:56:3a:52:58:26:1a:3d:1f:14:f1:ac:
                    0a:30:e7:17:e4:6a:82:6c:13:92:ce:05:f7:ce:78:
                    5e:97:02:53:93:7b:89:16:c1:c2:28:9c:4a:6c:4b:
                    61:9f:d1:e0:97:95:52:39:d3:11:15:1c:ef:fe:03:
                    7b:8d:99:27:49:81:a8:49:4f:5a:a8:07:bf:0c:f0:
                    17:89:24:d5:51:5e:52:55:1c:e3:19:0c:3b:da:f4:
                    54:85:60:09:86:ac:46:64:28:d6:89:0c:e7:f8:30:
                    ab:97:5d:90:f4:0f:55:7b:76:c7:5a:f9:1e:ef:85:
                    37:e7:3b:ca:e8:47:04:42:cd:b0:a0:f6:46:7d:e4:
                    e7:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                30:A2:AE:32:8D:DC:F8:28:CC:7B:34:E2:D4:60:62:F1:E8:E5:49:F6
            X509v3 Authority Key Identifier:
                keyid:AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/DC8132440F5811EF91000875C4F9AE02.roa
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.14.22.0/24

    Signature Algorithm: sha256WithRSAEncryption
         16:0e:4a:43:dc:11:06:9d:d9:a4:24:9a:27:3e:da:a9:67:b4:
         3a:fa:27:21:0e:79:d2:19:e4:81:ee:7c:1a:8d:cf:74:4f:cc:
         33:e2:cc:58:d3:b0:17:c5:99:11:49:5e:9c:2f:81:db:5d:a1:
         6a:12:cd:27:fd:a4:f2:f0:3c:70:91:ef:29:4e:56:c0:10:f8:
         07:04:3e:69:83:d7:d5:31:21:62:b7:32:28:a5:0f:6c:1e:08:
         4c:84:17:b8:ea:9f:be:ae:5a:3f:18:0c:45:6f:9c:73:53:14:
         f2:91:7c:ca:3e:2d:73:aa:36:3b:ef:5b:3a:08:81:d0:15:a9:
         97:d4:65:e8:3e:31:a0:87:7c:37:e4:cc:df:97:87:a7:fc:3b:
         47:54:fc:d1:e0:b2:0a:c5:c7:49:b2:8f:98:38:d3:10:b9:21:
         71:f3:16:ea:85:47:b0:93:c3:b7:62:03:19:48:98:f9:f2:59:
         ed:95:e6:a4:44:e0:dd:19:85:77:57:ec:2d:5b:90:9c:0f:b3:
         7a:8b:73:3a:8f:2c:3f:c8:d1:7c:96:34:7b:4e:da:65:23:31:
         15:96:a3:89:cd:df:fc:73:e6:fd:c7:70:4b:1f:33:00:48:8d:
         28:bf:2d:c9:27:13:0c:c1:46:a2:b5:71:93:83:12:54:98:ee:
         d3:38:87:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 14 13:58:28 2024 by rpki-client on console-ams.rpki-client.org