Route Origin Authorization

$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa
File:                     3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa (raw, json)
Hash identifier:          bWsU4Aas6PdLlXPf0DiVR0jpLC0ldetTtrmEWD0uExw=
Subject key identifier:   B8:7F:33:0B:CE:EB:BE:DD:D6:D5:2E:20:F5:B7:E5:68:B7:4A:F1:C4
Certificate issuer:       /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1
Certificate serial:       3C077A0AAAE4484BE82C3D6CD0282CF6EFC24B02
Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer
Subject info access:      rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa
Signing time:             Fri 13 Jun 2025 00:00:01 +0000
ROA not before:           Thu 12 Jun 2025 23:55:01 +0000
ROA not after:            Fri 12 Jun 2026 00:00:01 +0000
asID:                     24021
IP address blocks:        203.147.108.0/23 maxlen: 23
Validation:               Failed, certificate revoked on Sat 14 Jun 2025 12:00:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3c:07:7a:0a:aa:e4:48:4b:e8:2c:3d:6c:d0:28:2c:f6:ef:c2:4b:02
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1
        Validity
            Not Before: Jun 12 23:55:01 2025 GMT
            Not After : Jun 12 00:00:01 2026 GMT
        Subject: CN=B87F330BCEEBBEDDD6D52E20F5B7E568B74AF1C4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:8b:8a:87:0e:66:73:92:e4:28:f5:d2:36:0f:
                    d9:57:b0:9f:20:4b:2a:0f:dd:5d:68:b4:99:de:7c:
                    5e:1c:cb:84:23:dc:86:18:9a:4b:94:ed:19:aa:cf:
                    73:be:42:2b:b7:2a:8b:95:0f:cd:c8:9a:a7:26:c1:
                    50:d6:ac:36:4d:ff:d0:57:51:d8:84:5a:93:64:d3:
                    1f:4c:bb:24:b0:1e:54:8e:65:85:a4:1e:77:ec:65:
                    8b:bb:b5:29:7c:02:e8:5b:8a:56:11:e8:d8:73:d1:
                    af:3c:1d:4b:bf:0f:53:9e:95:61:28:eb:bb:64:fa:
                    86:fb:f1:f6:e3:7f:34:90:e2:2c:59:f1:e2:ee:de:
                    9b:38:20:9c:7a:f9:e1:93:5f:4c:35:ab:53:1b:cf:
                    91:e4:74:ab:75:43:22:cd:d4:4a:0e:12:19:46:77:
                    8d:96:a5:94:5d:66:3b:b8:9b:7c:cd:88:e3:06:fa:
                    7b:9c:b7:55:a6:63:5e:53:ec:ae:c5:02:a5:78:52:
                    4b:23:3e:52:f4:c3:3a:a1:ff:a3:d3:84:b9:44:b3:
                    d5:80:e3:b9:24:9c:f2:67:14:35:87:0e:f9:09:7a:
                    cb:b1:d0:8a:64:f8:8a:11:0d:b0:d3:0f:60:1a:c6:
                    7d:66:e0:b3:bb:96:33:75:ce:21:99:91:a6:20:7d:
                    ea:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B8:7F:33:0B:CE:EB:BE:DD:D6:D5:2E:20:F5:B7:E5:68:B7:4A:F1:C4
            X509v3 Authority Key Identifier:
                keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  203.147.108.0/23

    Signature Algorithm: sha256WithRSAEncryption
         9f:14:2b:61:55:ac:8e:47:d7:e5:02:ee:e6:7d:05:dc:1c:c7:
         e0:2e:9d:84:bb:b4:00:3a:7e:46:51:3c:c0:7e:56:a1:28:cd:
         fa:d3:e8:9b:88:13:7c:9e:75:27:dd:3e:2a:80:06:85:06:d1:
         44:20:4e:d0:8d:e1:90:d0:c6:fd:32:99:8f:1a:b3:78:2e:ac:
         d2:7a:1d:5f:4d:98:40:88:ba:6f:12:61:d2:03:2a:85:a1:d9:
         4c:32:83:8b:b4:bc:38:46:db:60:f5:d1:9f:6e:c1:70:e2:f1:
         8a:68:ed:98:21:78:ab:b6:c9:2b:df:7d:0d:42:c5:f7:e5:23:
         ee:1d:d1:36:a2:5c:1a:12:dd:80:e9:03:55:b1:bc:0b:08:f8:
         df:f1:37:33:7a:3d:97:bd:e8:9c:91:ec:f8:aa:77:a9:35:67:
         ad:7c:6b:0b:7c:51:72:7e:e0:8a:51:1d:d6:06:94:ea:89:43:
         2c:be:67:9e:ae:de:94:c0:24:d6:76:11:66:c2:b9:a1:41:73:
         84:09:8b:51:67:b6:bf:f5:33:39:0b:b2:3e:c2:3d:61:67:07:
         b1:0a:e4:e5:2d:c0:b5:f3:dd:57:6a:9e:db:8f:b3:a7:ca:1d:
         ee:f5:58:e3:d2:a9:3c:51:5e:49:e7:e4:30:bd:b3:6d:83:88:
         68:ba:20:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 01:45:46 2025 by rpki-client