Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915B202/4D41CF92409E11EDB352EE5EC4F9AE02/7A2626FC48B911EDB883E24BC4F9AE02.roa
File: 7A2626FC48B911EDB883E24BC4F9AE02.roa (raw, json)
Hash identifier: 9DexPxISBevfkiRCeA49fEpbEVkNS+EKcj88UJ+BSRk=
Subject key identifier: 5E:AB:38:D8:E0:A1:75:C9:C6:83:5F:49:93:81:1B:22:BD:7B:B9:8B
Certificate issuer: /CN=A915B202/serialNumber=8CBE9DD59934C9AD205FCE6AF8EF4DB801F1D3EB
Certificate serial: CA
Authority key identifier: 8C:BE:9D:D5:99:34:C9:AD:20:5F:CE:6A:F8:EF:4D:B8:01:F1:D3:EB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jL6d1Zk0ya0gX85q-O9NuAHx0-s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915B202/4D41CF92409E11EDB352EE5EC4F9AE02/7A2626FC48B911EDB883E24BC4F9AE02.roa
Signing time: Tue 03 Oct 2023 03:44:39 +0000
ROA not before: Tue 03 Oct 2023 03:44:39 +0000
ROA not after: Mon 30 Dec 2024 00:00:00 +0000
asID: 150338
IP address blocks: 103.15.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Oct 2024 16:45:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 202 (0xca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915B202/serialNumber=8CBE9DD59934C9AD205FCE6AF8EF4DB801F1D3EB
Validity
Not Before: Oct 3 03:44:39 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=651b8e27-0518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:38:b5:4f:4d:60:69:ed:19:92:11:85:06:91:
32:64:87:e0:b2:30:c2:ee:58:ed:c9:e9:d0:56:16:
67:4a:31:47:9d:d9:ea:33:9e:0b:7f:31:4d:d0:c7:
a4:68:21:f3:17:cd:72:84:8e:85:4b:08:e3:48:2e:
71:50:37:10:49:16:1f:a3:f5:30:80:eb:32:73:36:
9d:75:c5:cd:11:7c:79:63:ba:ba:04:e8:9c:51:b3:
a3:fc:0c:79:e9:a8:ec:1d:d7:e2:dc:41:28:6d:ca:
da:60:e1:6c:5f:b8:91:ac:65:71:34:05:b9:56:85:
2c:95:c2:6b:ee:b2:97:f0:29:d4:d8:55:eb:11:13:
96:77:46:5a:1d:5c:e4:76:99:ed:eb:46:2d:6d:01:
4e:82:49:2a:75:7c:fb:66:15:02:6f:8f:b4:f9:4d:
dd:1e:bc:d8:f2:70:cf:3e:b8:87:c5:85:5e:91:f8:
72:a5:d2:c8:fd:b3:f0:6f:62:54:d4:95:59:3b:b6:
e2:00:ca:cd:ef:e4:16:6d:e8:6b:9a:0a:e5:30:85:
6e:77:9c:4d:65:e5:46:65:30:9d:92:f3:34:eb:e0:
5b:c1:0d:c3:f6:e1:69:f0:9d:f4:be:e6:27:56:f2:
b7:03:6c:03:53:64:06:56:8c:1a:89:f5:b6:df:9b:
a5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:AB:38:D8:E0:A1:75:C9:C6:83:5F:49:93:81:1B:22:BD:7B:B9:8B
X509v3 Authority Key Identifier:
keyid:8C:BE:9D:D5:99:34:C9:AD:20:5F:CE:6A:F8:EF:4D:B8:01:F1:D3:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915B202/4D41CF92409E11EDB352EE5EC4F9AE02/jL6d1Zk0ya0gX85q-O9NuAHx0-s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jL6d1Zk0ya0gX85q-O9NuAHx0-s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B202/4D41CF92409E11EDB352EE5EC4F9AE02/7A2626FC48B911EDB883E24BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.15.221.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:2e:89:8f:b6:d3:ce:60:f8:c1:72:68:db:64:f4:ab:5b:f9:
bc:88:22:7d:f9:b6:6c:00:ae:48:1a:c8:c2:e9:09:96:90:86:
25:27:5b:84:20:bb:55:f0:3d:37:f7:2c:ba:30:76:c4:b0:0f:
08:0d:cf:25:19:da:74:7e:eb:85:eb:13:e8:9c:df:f4:98:2e:
c4:83:6e:e5:a3:02:f6:e7:2b:3d:7b:99:d5:8b:9c:3c:da:44:
16:52:8c:a5:de:f8:51:13:e6:59:fb:7c:49:93:ea:c2:96:bb:
ab:9f:ba:c3:6e:ec:65:31:70:25:32:c8:06:44:32:d4:c8:b5:
9e:c9:d9:6f:29:29:cf:83:14:e0:dc:c4:da:d0:85:78:5d:a0:
2e:fc:3d:3e:bd:33:9e:a4:3c:6e:cb:40:3b:61:34:27:f6:7a:
c5:22:72:5b:63:80:66:68:5c:07:36:48:b6:13:cc:e7:3e:df:
39:1c:d0:e1:79:97:9c:f1:e2:37:36:f5:0a:d7:5d:a8:3a:ff:
d1:9b:4b:21:5a:c6:b6:9f:78:6d:85:3d:0c:e2:b7:5f:9f:d7:
9e:b7:6e:13:a0:ac:d7:a7:56:e7:46:db:4d:ca:29:d7:6a:db:
a2:fe:27:ed:7c:be:a7:a7:31:92:d7:75:b5:2c:4b:4c:e0:9a:
a7:d5:a4:47
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NUIyMDIxMTAvBgNVBAUTKDhDQkU5REQ1OTkzNEM5QUQyMDVGQ0U2QUY4RUY0REI4
MDFGMUQzRUIwHhcNMjMxMDAzMDM0NDM5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NTFiOGUyNy0wNTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEArDi1T01gae0ZkhGFBpEyZIfgsjDC7ljtyenQVhZnSjFHndnqM54LfzFN0Mek
aCHzF81yhI6FSwjjSC5xUDcQSRYfo/UwgOsyczaddcXNEXx5Y7q6BOicUbOj/Ax5
6ajsHdfi3EEobcraYOFsX7iRrGVxNAW5VoUslcJr7rKX8CnU2FXrEROWd0ZaHVzk
dpnt60YtbQFOgkkqdXz7ZhUCb4+0+U3dHrzY8nDPPriHxYVekfhypdLI/bPwb2JU
1JVZO7biAMrN7+QWbehrmgrlMIVud5xNZeVGZTCdkvM06+BbwQ3D9uFp8J30vuYn
VvK3A2wDU2QGVowaifW235ulvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF6rONjg
oXXJxoNfSZOBGyK9e7mLMB8GA1UdIwQYMBaAFIy+ndWZNMmtIF/OavjvTbgB8dPr
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjIwMi80RDQxQ0Y5MjQw
OUUxMUVEQjM1MkVFNUVDNEY5QUUwMi9qTDZkMVprMHlhMGdYODVxLU85TnVBSHgw
LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2pMNmQxWmsweWEwZ1g4NXEtTzlOdUFIeDAtcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NUIyMDIvNEQ0MUNGOTI0MDlFMTFFREIzNTJFRTVFQzRGOUFFMDIvN0EyNjI2RkM0
OEI5MTFFREI4ODNFMjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnD90wDQYJKoZIhvcNAQELBQADggEBALsuiY+2085g+MFy
aNtk9Ktb+byIIn35tmwArkgayMLpCZaQhiUnW4Qgu1XwPTf3LLowdsSwDwgNzyUZ
2nR+64XrE+ic3/SYLsSDbuWjAvbnKz17mdWLnDzaRBZSjKXe+FET5ln7fEmT6sKW
u6ufusNu7GUxcCUyyAZEMtTItZ7J2W8pKc+DFODcxNrQhXhdoC78PT69M56kPG7L
QDthNCf2esUicltjgGZoXAc2SLYTzOc+3zkc0OF5l5zx4jc29QrXXag6/9GbSyFa
xrafeG2FPQzit1+f1563bhOgrNenVudG203KKddq26L+J+18vqenMZLXdbUsS0zg
mqfVpEc=
Generated at Mon Oct 7 19:44:15 2024 by rpki-client on console.sobornost.net