Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ACACFBE0654B11EFA2D89154C4F9AE02.roa
File: ACACFBE0654B11EFA2D89154C4F9AE02.roa (raw, json)
Hash identifier: V42mBRUcE7rimNn8jR88eeeWtj3rPyZmjLQGdWZ5nII=
Subject key identifier: AC:34:CB:00:1C:11:A2:5D:F3:14:C2:DD:E5:15:E4:3C:76:B2:3E:87
Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12
Certificate serial: 0267
Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ACACFBE0654B11EFA2D89154C4F9AE02.roa
Signing time: Wed 28 Aug 2024 14:41:57 +0000
ROA not before: Wed 28 Aug 2024 14:41:57 +0000
ROA not after: Thu 31 Oct 2024 00:00:00 +0000
asID: 152977
IP address blocks: 160.30.156.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 07 Sep 2024 02:11:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 615 (0x267)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12
Validity
Not Before: Aug 28 14:41:57 2024 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=66cf3734-3eef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d0:f9:32:08:4d:25:11:88:ed:d7:00:bd:62:
11:01:a6:8a:f6:5a:dc:8f:02:c5:71:09:1f:18:5d:
17:1c:65:85:da:cd:cc:12:14:3d:27:79:48:43:d3:
94:34:ee:f3:ef:8a:64:d9:c7:ac:00:3e:8f:c4:8e:
8c:6d:cf:89:1c:f6:08:0b:51:b1:50:e0:9b:be:13:
63:8b:20:96:14:ef:70:28:83:c1:8b:b9:bf:37:01:
42:9b:0d:ac:09:1a:07:76:70:b0:d0:c1:39:9f:87:
a1:f9:a3:e9:e7:0a:0e:06:ff:dc:fa:cb:8e:83:fb:
ab:90:e7:f3:b1:f8:8c:51:ec:3c:61:79:d0:47:e2:
8e:a3:c5:a0:df:80:14:74:87:ba:a0:d8:a6:82:42:
b1:c5:c6:70:41:5e:8d:40:a2:be:21:43:72:ca:66:
91:4a:ed:45:b2:2b:b0:37:9e:1a:e1:80:ab:65:98:
7d:14:61:10:66:ff:c9:5a:3a:b9:de:4e:e2:e8:7f:
6b:84:eb:87:ec:9f:10:b6:65:73:06:59:dc:be:7e:
48:ec:ef:0b:e9:cf:9d:47:87:a8:26:a8:b0:91:3f:
5e:6b:e9:4b:61:36:d7:3b:78:45:c0:4e:b4:50:d6:
f0:63:9f:37:e4:4d:80:2e:05:8e:d0:88:79:26:fb:
e8:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:34:CB:00:1C:11:A2:5D:F3:14:C2:DD:E5:15:E4:3C:76:B2:3E:87
X509v3 Authority Key Identifier:
keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ACACFBE0654B11EFA2D89154C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.156.0/23
Signature Algorithm: sha256WithRSAEncryption
87:1f:f6:43:76:02:fb:69:b9:53:b1:64:62:6a:f4:41:01:b5:
47:c3:33:6e:28:f5:dc:fd:2b:be:65:15:98:10:46:8a:fa:43:
81:8c:b2:e9:f7:44:ec:58:57:b8:ea:b2:c5:79:3a:76:6a:c3:
43:09:f4:82:a6:bc:ee:cf:f9:98:be:4d:50:20:c4:c3:f8:0d:
44:87:6c:85:a0:55:3f:18:f5:07:11:95:e5:55:30:33:50:bf:
bd:ba:e4:3f:de:71:5a:67:c0:61:0a:17:3a:86:d7:7e:60:12:
3a:e6:d3:45:4e:8f:9a:be:e5:2e:9c:1a:6b:ad:77:ee:10:e2:
01:20:c5:e8:45:d0:b6:3c:9d:12:1d:82:db:18:0a:2e:ad:54:
95:47:c4:b8:49:0a:42:c4:39:04:54:52:01:53:9e:44:69:e9:
57:b8:72:9e:b5:e4:31:73:59:91:55:c8:d9:e1:2f:c1:2b:9b:
8e:2a:0a:5e:b3:4b:9e:c7:a6:2b:ab:8b:2f:9a:92:41:56:96:
61:a8:bd:e3:8d:25:8b:02:55:f9:c8:0c:d4:e7:95:2e:8f:d9:
60:fd:ce:fd:bc:8b:c0:63:a4:61:fb:d4:d1:fb:38:bc:64:37:
b4:78:cc:17:b0:66:de:00:46:fd:9e:f5:73:50:b0:f4:df:57:
26:89:36:e3
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy
ODRGODBFMTIwHhcNMjQwODI4MTQ0MTU3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NmNmMzczNC0zZWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAt9D5MghNJRGI7dcAvWIRAaaK9lrcjwLFcQkfGF0XHGWF2s3MEhQ9J3lIQ9OU
NO7z74pk2cesAD6PxI6Mbc+JHPYIC1GxUOCbvhNjiyCWFO9wKIPBi7m/NwFCmw2s
CRoHdnCw0ME5n4eh+aPp5woOBv/c+suOg/urkOfzsfiMUew8YXnQR+KOo8Wg34AU
dIe6oNimgkKxxcZwQV6NQKK+IUNyymaRSu1FsiuwN54a4YCrZZh9FGEQZv/JWjq5
3k7i6H9rhOuH7J8QtmVzBlncvn5I7O8L6c+dR4eoJqiwkT9ea+lLYTbXO3hFwE60
UNbwY5835E2ALgWO0Ih5Jvvo9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKw0ywAc
EaJd8xTC3eUV5Dx2sj6HMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5
REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE
aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQUNBQ0ZCRTA2
NTRCMTFFRkEyRDg5MTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAGgHpwwDQYJKoZIhvcNAQELBQADggEBAIcf9kN2AvtpuVOx
ZGJq9EEBtUfDM24o9dz9K75lFZgQRor6Q4GMsun3ROxYV7jqssV5OnZqw0MJ9IKm
vO7P+Zi+TVAgxMP4DUSHbIWgVT8Y9QcRleVVMDNQv7265D/ecVpnwGEKFzqG135g
Ejrm00VOj5q+5S6cGmutd+4Q4gEgxehF0LY8nRIdgtsYCi6tVJVHxLhJCkLEOQRU
UgFTnkRp6Ve4cp615DFzWZFVyNnhL8Erm44qCl6zS57Hpiuriy+akkFWlmGoveON
JYsCVfnIDNTnlS6P2WD9zv28i8BjpGH71NH7OLxkN7R4zBewZt4ARv2e9XNQsPTf
VyaJNuM=
-----END CERTIFICATE-----
Generated at Wed Sep 11 08:32:28 2024 by rpki-client on console.sobornost.net