Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911691A/751F31DAA28511EF842B9410C4F9AE02/607869FEB05E11EFB2FAD762C4F9AE02.roa
File: 607869FEB05E11EFB2FAD762C4F9AE02.roa (raw, json)
Hash identifier: wY5wRInDn6WMcx9M7ovHXdLiKoC1lUqQii40cNR/FaI=
Subject key identifier: 14:17:04:88:CA:ED:1B:01:53:10:7B:72:C5:24:E6:D0:7C:D8:09:A5
Certificate issuer: /CN=A911691A/serialNumber=74CB85A6349C3CA6184AECF70F83AFFDFCE0A7F7
Certificate serial: 14
Authority key identifier: 74:CB:85:A6:34:9C:3C:A6:18:4A:EC:F7:0F:83:AF:FD:FC:E0:A7:F7
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dMuFpjScPKYYSuz3D4Ov_fzgp_c.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911691A/751F31DAA28511EF842B9410C4F9AE02/607869FEB05E11EFB2FAD762C4F9AE02.roa
Signing time: Mon 02 Dec 2024 03:34:46 +0000
ROA not before: Mon 02 Dec 2024 03:34:46 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 153453
IP address blocks: 160.250.10.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 31 Dec 2024 08:47:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20 (0x14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911691A, serialNumber=74CB85A6349C3CA6184AECF70F83AFFDFCE0A7F7
Validity
Not Before: Dec 2 03:34:46 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=674d2ad6-3ae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0a:72:34:b1:1f:3e:0f:9d:31:19:aa:b2:5e:
72:43:0a:64:4a:c3:60:dd:2b:49:95:a9:1c:73:e7:
53:7d:e1:c2:45:af:32:b4:f0:82:b8:a8:63:8a:3c:
eb:b9:a8:5c:f3:6e:2e:3e:75:67:af:94:45:0e:a2:
60:81:bd:f6:73:89:50:84:a4:50:1c:c5:3a:d6:86:
df:2a:37:73:32:83:71:0c:25:69:79:8d:20:90:f3:
b5:80:7f:71:0e:72:c2:8e:5d:ad:8c:9b:79:b3:6d:
f5:6e:e8:a3:92:e3:ed:9c:5e:5d:8c:88:00:8a:dd:
46:d7:13:d7:2c:9f:56:ce:03:6e:da:28:32:11:46:
05:48:36:bf:cc:5d:8d:15:4b:30:d3:42:62:70:63:
17:8d:14:aa:52:bb:6b:3f:57:99:b8:8c:a7:69:6b:
1e:91:14:19:7e:54:24:04:bd:ec:98:b7:f3:89:fc:
72:70:e4:b2:2c:53:fd:7b:6b:4f:ac:ce:41:89:bb:
73:6c:f1:1c:4c:b5:33:69:01:59:3e:55:f3:e0:9d:
e6:26:8a:c8:f5:f8:58:64:6b:3b:e0:2e:c0:4b:ca:
24:34:a5:51:4c:ab:ca:8f:f0:e8:53:8c:e8:e6:3c:
cf:81:22:6a:00:db:fe:ce:ce:e7:92:35:15:7f:af:
c6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:17:04:88:CA:ED:1B:01:53:10:7B:72:C5:24:E6:D0:7C:D8:09:A5
X509v3 Authority Key Identifier:
keyid:74:CB:85:A6:34:9C:3C:A6:18:4A:EC:F7:0F:83:AF:FD:FC:E0:A7:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911691A/751F31DAA28511EF842B9410C4F9AE02/dMuFpjScPKYYSuz3D4Ov_fzgp_c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dMuFpjScPKYYSuz3D4Ov_fzgp_c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911691A/751F31DAA28511EF842B9410C4F9AE02/607869FEB05E11EFB2FAD762C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.250.10.0/23
Signature Algorithm: sha256WithRSAEncryption
78:70:d1:01:db:37:a5:9f:ff:d3:af:80:9a:da:ae:54:01:6c:
b6:9f:6c:af:2f:45:1b:57:97:33:2d:67:64:7b:05:c6:53:84:
07:66:9b:20:5e:a9:25:28:95:f2:5a:9c:2e:9f:90:ab:0d:64:
a0:e0:2d:d0:e4:07:75:27:d5:4b:55:20:c3:7e:0d:46:b2:7f:
00:a3:a0:b1:cd:dd:c9:1d:69:df:13:c6:e5:4b:62:25:4e:d2:
b7:34:7d:15:35:d9:f5:ef:df:b2:d4:67:3b:14:44:d5:48:af:
ab:4c:72:64:04:80:f0:02:6d:82:74:d5:69:53:4b:ff:c2:8d:
98:2a:c8:f4:01:98:82:f6:ca:af:f7:d2:19:83:32:ed:d7:01:
8c:39:eb:42:be:94:87:6e:9b:a2:ab:59:b3:f3:51:db:e6:f7:
57:ab:2f:a1:e2:fe:94:5c:56:7f:c7:e2:c9:ca:d9:2d:20:94:
9a:92:9e:e7:4c:97:c8:72:67:f1:e9:50:ed:b6:b2:4d:74:80:
16:fc:23:c4:b0:d7:c6:7d:92:aa:71:82:b3:fc:b3:42:8a:33:
7a:19:a5:9d:18:c7:a4:66:93:d4:2f:a4:a3:e8:63:67:2e:e8:
21:d2:45:79:46:67:8e:33:8b:44:3b:75:2b:bf:07:70:65:92:
dc:fe:71:28
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx
NjkxQTExMC8GA1UEBRMoNzRDQjg1QTYzNDlDM0NBNjE4NEFFQ0Y3MEY4M0FGRkRG
Q0UwQTdGNzAeFw0yNDEyMDIwMzM0NDZaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV
BAMTDTY3NGQyYWQ2LTNhZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDbCnI0sR8+D50xGaqyXnJDCmRKw2DdK0mVqRxz51N94cJFrzK08IK4qGOKPOu5
qFzzbi4+dWevlEUOomCBvfZziVCEpFAcxTrWht8qN3Myg3EMJWl5jSCQ87WAf3EO
csKOXa2Mm3mzbfVu6KOS4+2cXl2MiACK3UbXE9csn1bOA27aKDIRRgVINr/MXY0V
SzDTQmJwYxeNFKpSu2s/V5m4jKdpax6RFBl+VCQEveyYt/OJ/HJw5LIsU/17a0+s
zkGJu3Ns8RxMtTNpAVk+VfPgneYmisj1+FhkazvgLsBLyiQ0pVFMq8qP8OhTjOjm
PM+BImoA2/7OzueSNRV/r8ZVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUFBcEiMrt
GwFTEHtyxSTm0HzYCaUwHwYDVR0jBBgwFoAUdMuFpjScPKYYSuz3D4Ov/fzgp/cw
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2OTFBLzc1MUYzMURBQTI4
NTExRUY4NDJCOTQxMEM0RjlBRTAyL2RNdUZwalNjUEtZWVN1ejNENE92X2Z6Z3Bf
Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG
RDFGRjIvZE11RnBqU2NQS1lZU3V6M0Q0T3ZfZnpncF9jLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx
NjkxQS83NTFGMzFEQUEyODUxMUVGODQyQjk0MTBDNEY5QUUwMi82MDc4NjlGRUIw
NUUxMUVGQjJGQUQ3NjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAaD6CjANBgkqhkiG9w0BAQsFAAOCAQEAeHDRAds3pZ//06+A
mtquVAFstp9sry9FG1eXMy1nZHsFxlOEB2abIF6pJSiV8lqcLp+Qqw1koOAt0OQH
dSfVS1Ugw34NRrJ/AKOgsc3dyR1p3xPG5UtiJU7StzR9FTXZ9e/fstRnOxRE1Uiv
q0xyZASA8AJtgnTVaVNL/8KNmCrI9AGYgvbKr/fSGYMy7dcBjDnrQr6Uh26boqtZ
s/NR2+b3V6svoeL+lFxWf8fiycrZLSCUmpKe50yXyHJn8elQ7bayTXSAFvwjxLDX
xn2SqnGCs/yzQoozehmlnRjHpGaT1C+ko+hjZy7oIdJFeUZnjjOLRDt1K78HcGWS
3P5xKA==
-----END CERTIFICATE-----
Generated at Sat Apr 26 15:02:59 2025 by rpki-client