Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/5434974C191011F0A45C2257C4F9AE02.roa
File: 5434974C191011F0A45C2257C4F9AE02.roa (raw, json)
Hash identifier: +ejaGT6n0Fohzc6pHDcNVbv0oAOv+66xBovdf6/oCyE=
Subject key identifier: 92:0E:A8:E0:06:FF:B6:AB:C6:56:3B:BA:5C:7B:A7:08:A5:B8:3C:43
Certificate issuer: /CN=A9140D69/serialNumber=103FA8BDFFFB9F0557072C47332B81A9E80EDD35
Certificate serial: 02A7
Authority key identifier: 10:3F:A8:BD:FF:FB:9F:05:57:07:2C:47:33:2B:81:A9:E8:0E:DD:35
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ED-ovf_7nwVXByxHMyuBqegO3TU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/5434974C191011F0A45C2257C4F9AE02.roa
Signing time: Mon 14 Apr 2025 09:12:59 +0000
ROA not before: Mon 14 Apr 2025 09:12:59 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 62610
IP address blocks: 103.237.102.0/23 maxlen: 23
163.53.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Apr 2025 08:02:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 679 (0x2a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9140D69, serialNumber=103FA8BDFFFB9F0557072C47332B81A9E80EDD35
Validity
Not Before: Apr 14 09:12:59 2025 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=67fcd19b-7d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:20:96:b1:ad:21:7e:64:00:c7:f4:5c:9d:f9:
c1:30:aa:81:62:cf:e6:17:5f:08:f6:c9:21:90:2a:
e9:74:4a:ca:2d:d5:ca:ea:30:56:22:f0:c4:9e:ae:
86:97:e9:b5:33:d8:d2:3a:67:b1:a6:ed:8f:d8:40:
bc:ca:4d:19:a9:2c:81:99:35:0b:05:87:f3:8c:08:
4f:a7:84:03:28:d4:6a:40:c2:2e:ba:c2:40:bf:4c:
11:89:ac:89:a0:bf:4a:ce:10:0f:9e:72:9e:3d:91:
d6:2a:35:cd:d4:24:31:92:a5:8d:3c:63:82:cf:2c:
f7:2d:57:fd:c3:05:56:5c:97:c8:ae:f7:29:67:a8:
0f:ae:1a:c4:58:7f:e3:6f:c8:61:8c:7e:03:9b:4c:
ba:cb:5c:98:fe:92:e6:20:e7:6b:7a:e7:33:e7:b9:
38:4b:14:e0:8a:ad:e3:f8:8d:38:23:d0:7c:7b:40:
8f:8c:4b:de:b1:2d:28:9f:0a:31:19:75:7d:b7:d3:
64:60:88:2a:1c:f8:25:b8:1f:f7:ae:44:5d:19:b7:
13:7d:45:af:79:3e:f0:22:f3:d4:bd:dd:1c:bc:e0:
46:fe:8d:2a:c9:e0:32:54:14:eb:e4:34:7e:f8:a1:
7d:ce:4f:a3:51:f2:61:5b:39:ca:de:c1:80:45:6e:
aa:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:0E:A8:E0:06:FF:B6:AB:C6:56:3B:BA:5C:7B:A7:08:A5:B8:3C:43
X509v3 Authority Key Identifier:
keyid:10:3F:A8:BD:FF:FB:9F:05:57:07:2C:47:33:2B:81:A9:E8:0E:DD:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/ED-ovf_7nwVXByxHMyuBqegO3TU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ED-ovf_7nwVXByxHMyuBqegO3TU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/5434974C191011F0A45C2257C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.237.102.0/23
163.53.244.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:e1:bf:e1:3d:63:7c:ea:09:2b:da:93:90:31:51:f8:bf:57:
91:72:53:a9:00:2e:20:7f:0a:7d:38:2a:1a:34:8f:59:00:91:
25:58:ff:8e:b5:3c:bc:3c:8d:7e:e9:dd:7b:8e:5a:a6:c8:7c:
c7:6a:cb:72:b5:56:a4:62:ad:15:54:9d:f6:e2:6f:b7:4b:cd:
1a:6d:54:57:10:ae:3f:ca:94:71:a4:6e:0f:15:35:50:08:79:
08:71:2a:6b:6d:8f:07:f6:d6:12:47:85:40:7e:cd:f3:30:2e:
01:ea:f8:eb:cb:7d:26:38:e9:8a:29:7d:9a:64:fb:84:e9:81:
cd:8e:08:42:79:09:db:b6:04:75:4b:ad:b7:74:8d:cd:93:2d:
43:70:f4:12:5a:ff:13:bf:49:55:10:d2:9c:a0:29:7c:28:7a:
00:ee:61:e3:f5:e6:44:a8:ca:fe:6d:92:89:c1:81:4e:ab:60:
72:0a:51:b0:51:84:12:93:ce:56:9d:84:d1:80:78:20:3e:c7:
18:06:1f:9f:09:d9:c7:5f:ab:21:db:4f:8e:b3:04:84:26:bf:
2e:86:2b:f5:c8:c0:db:7a:c7:e7:76:a6:6b:fe:b2:b9:9c:2a:
bb:bf:1f:8e:db:e9:74:e5:88:ee:7c:0b:db:e8:ed:c8:9d:c7:
76:7a:35:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 09:37:26 2025 by rpki-client