Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/9786CBD4F7A011ED88898730C4F9AE02.roa
File: 9786CBD4F7A011ED88898730C4F9AE02.roa (raw, json)
Hash identifier: LxB4mu9JiJT499AH5LMOLW+wZLkjuqma8g8hrA3lMf4=
Subject key identifier: 61:47:4F:D1:78:70:99:AB:24:5F:F9:BD:7C:83:BE:A4:E1:44:16:4B
Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88
Certificate serial: 02
Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/9786CBD4F7A011ED88898730C4F9AE02.roa
Signing time: Sun 21 May 2023 06:27:43 +0000
ROA not before: Sun 21 May 2023 06:27:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38217
IP address blocks: 202.53.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 28 Jul 2023 02:03:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88
Validity
Not Before: May 21 06:27:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6469b9df-fed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d4:7a:75:ad:65:97:0a:3e:3d:77:fc:6a:cd:
76:f3:00:ec:ef:05:d4:42:ba:31:47:d1:65:6a:a9:
99:12:61:91:14:f9:ba:c7:a0:c2:6b:f7:ad:b0:19:
10:55:16:a7:1f:fd:c5:80:f0:df:63:2e:46:d0:5b:
0a:33:4b:19:c5:b3:df:12:26:ef:38:f6:00:5a:e4:
4f:be:66:0f:3a:36:fe:8b:9b:2b:e2:2a:a5:df:18:
e6:2c:71:0e:e8:76:08:04:71:5d:f4:6a:10:f6:e2:
d5:28:a5:b4:7f:c0:80:6f:1f:57:52:cf:de:84:43:
dd:e2:7b:84:7d:4c:2e:0c:8a:4d:9b:82:51:c7:de:
f9:87:df:a3:44:26:4c:a0:b3:8f:34:0e:c3:b0:e4:
8b:f4:94:34:ce:78:ba:b0:a8:6d:86:05:5c:4d:24:
35:ae:c4:01:1e:aa:3a:a5:6e:70:29:00:9d:81:7c:
4d:ae:30:c6:bf:d7:88:29:f7:dc:f5:d9:46:7b:9a:
8d:07:88:32:3e:46:fe:c5:37:c9:59:c0:c2:bb:af:
b0:61:3b:06:da:3e:aa:05:07:b6:21:11:e4:af:25:
59:65:25:09:d3:ef:fa:5f:03:44:16:06:a0:67:de:
45:86:03:5d:88:0a:7e:c8:61:0d:eb:55:2c:59:9b:
b6:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:47:4F:D1:78:70:99:AB:24:5F:F9:BD:7C:83:BE:A4:E1:44:16:4B
X509v3 Authority Key Identifier:
keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/9786CBD4F7A011ED88898730C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.53.0.0/22
Signature Algorithm: sha256WithRSAEncryption
79:12:fb:6c:bc:82:f2:ed:15:cd:12:01:13:5c:0c:bf:bd:30:
1f:0c:34:d2:b5:7f:ef:4c:a1:c3:76:e3:3a:95:c2:22:39:e2:
c8:6c:14:97:12:2f:02:ac:17:0c:4b:90:61:38:bb:da:2c:ff:
29:9b:09:b3:71:63:8d:58:09:bf:d4:8d:cc:08:e4:27:3c:cb:
94:30:a7:df:26:95:bb:b2:72:5f:18:cd:c9:10:ad:60:84:09:
36:76:b0:fd:7b:eb:f8:4f:3a:d3:84:8d:0e:1e:fb:4d:6a:05:
cb:1f:81:11:b8:43:92:fc:5b:3d:55:c9:02:72:79:de:7d:fc:
9f:7d:5b:72:7c:25:78:ab:72:20:a6:f0:92:e6:c9:ab:24:d3:
b3:bd:8b:91:af:4c:ba:4d:e0:b7:e2:60:a5:0b:ff:2b:5e:0d:
cb:99:af:7e:ee:2f:12:df:11:12:02:e4:71:13:ef:5d:e0:83:
66:b7:1c:48:82:5b:2a:e0:22:5d:e9:c3:de:50:28:d6:7e:cd:
31:32:14:73:ef:6d:73:d2:d2:7d:c7:c5:7f:39:7b:9b:f0:18:
7d:d6:87:6a:cb:e6:33:0b:14:49:da:c5:2f:27:5f:31:8c:c9:
28:aa:79:e9:68:aa:c1:fa:df:94:82:5c:a7:b1:6d:da:91:c1:
b5:ac:1a:ad
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG
QTY0QzExMC8GA1UEBRMoNTY2QTZGMzQ0NDBBQzkyOTVFRDhBMDAyRDUwNDlGNTc0
Q0YxNkM4ODAeFw0yMzA1MjEwNjI3NDNaFw0yNDA3MDEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY0NjliOWRmLWZlZDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCc1Hp1rWWXCj49d/xqzXbzAOzvBdRCujFH0WVqqZkSYZEU+brHoMJr962wGRBV
Fqcf/cWA8N9jLkbQWwozSxnFs98SJu849gBa5E++Zg86Nv6LmyviKqXfGOYscQ7o
dggEcV30ahD24tUopbR/wIBvH1dSz96EQ93ie4R9TC4Mik2bglHH3vmH36NEJkyg
s480DsOw5Iv0lDTOeLqwqG2GBVxNJDWuxAEeqjqlbnApAJ2BfE2uMMa/14gp99z1
2UZ7mo0HiDI+Rv7FN8lZwMK7r7BhOwbaPqoFB7YhEeSvJVllJQnT7/pfA0QWBqBn
3kWGA12ICn7IYQ3rVSxZm7bFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUYUdP0Xhw
maskX/m9fIO+pOFEFkswHwYDVR0jBBgwFoAUVmpvNEQKySle2KAC1QSfV0zxbIgw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBNjRDL0UxQTU0NjI2Rjc5
ODExRUQ5Njc3NzEyNEM0RjlBRTAyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJ
Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvVm1wdk5FUUt5U2xlMktBQzFRU2ZWMHp4YklnLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG
QTY0Qy9FMUE1NDYyNkY3OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi85Nzg2Q0JENEY3
QTAxMUVEODg4OTg3MzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAso1ADANBgkqhkiG9w0BAQsFAAOCAQEAeRL7bLyC8u0VzRIB
E1wMv70wHww00rV/70yhw3bjOpXCIjniyGwUlxIvAqwXDEuQYTi72iz/KZsJs3Fj
jVgJv9SNzAjkJzzLlDCn3yaVu7JyXxjNyRCtYIQJNnaw/Xvr+E8604SNDh77TWoF
yx+BEbhDkvxbPVXJAnJ53n38n31bcnwleKtyIKbwkubJqyTTs72Lka9Muk3gt+Jg
pQv/K14Ny5mvfu4vEt8REgLkcRPvXeCDZrccSIJbKuAiXenD3lAo1n7NMTIUc+9t
c9LSfcfFfzl7m/AYfdaHasvmMwsUSdrFLydfMYzJKKp56WiqwfrflIJcp7Ft2pHB
tawarQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:52 2024 by rpki-client on console-fra.rpki-client.org