Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/92A205F4191111F095164E59C4F9AE02.roa
File: 92A205F4191111F095164E59C4F9AE02.roa (raw, json)
Hash identifier: 3xwUQICiJWltnsaPPc+uKPTybyb67JmaTUlAe4OstQ4=
Subject key identifier: 07:63:85:C5:EC:48:43:7A:36:E9:12:0E:65:C5:AD:79:E4:93:1D:C7
Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264
Certificate serial: 0D01
Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/92A205F4191111F095164E59C4F9AE02.roa
Signing time: Mon 14 Apr 2025 09:19:31 +0000
ROA not before: Mon 14 Apr 2025 09:19:31 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 205220
IP address blocks: 14.192.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Jun 2025 08:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3329 (0xd01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264
Validity
Not Before: Apr 14 09:19:31 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=67fcd323-98aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d6:54:94:8d:97:e9:70:79:45:c7:e9:7f:5c:
55:65:17:84:9a:07:3c:00:de:ac:31:9b:f1:76:7f:
d0:7d:1b:e0:a8:33:7c:c7:fe:d6:fd:5b:c6:cb:d7:
b6:a2:b9:7c:5d:0c:f8:17:d6:21:e8:9d:fe:5c:cc:
5a:ae:58:29:9f:bd:f1:67:82:e6:12:10:77:6c:9e:
ab:39:3d:5b:6c:dd:a2:5c:21:aa:fb:71:dc:d5:a9:
64:4a:77:37:83:68:5b:a4:16:b3:b1:3a:02:42:cc:
0f:24:a8:3a:37:48:86:40:fd:a3:24:e0:a2:f4:8b:
5f:2c:2d:b2:06:8a:ba:36:28:3c:58:71:05:39:6d:
d8:04:32:0a:24:30:bb:ac:08:d4:2b:92:ca:68:8c:
21:0b:53:73:4b:ad:53:8e:92:86:e3:f2:38:81:44:
3f:b8:fb:07:01:69:7e:5d:5d:41:6a:35:68:1b:34:
03:35:02:fe:26:30:4b:3d:33:e3:cc:0a:cb:e0:55:
1b:ab:fe:d3:c0:12:d5:08:d2:cd:fa:6c:8f:84:37:
c4:1f:a2:25:65:23:63:e2:dc:56:3d:b0:66:5a:3e:
8c:2c:30:ad:1e:1e:df:63:6a:74:33:a3:62:cb:b5:
9c:27:4e:18:a9:44:79:40:76:3a:1c:25:ad:01:46:
5c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:63:85:C5:EC:48:43:7A:36:E9:12:0E:65:C5:AD:79:E4:93:1D:C7
X509v3 Authority Key Identifier:
keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/92A205F4191111F095164E59C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.192.154.0/24
Signature Algorithm: sha256WithRSAEncryption
35:cc:3b:35:11:dd:da:0b:89:06:a1:a2:12:ac:7b:ec:b5:22:
18:9b:a7:2a:76:80:92:73:b8:eb:c7:e7:81:53:a4:e3:92:55:
32:ff:4e:29:87:41:6e:7e:7e:d1:19:88:e7:0b:d3:78:31:d1:
67:5e:f7:b0:ce:b7:d0:05:5e:df:dd:d5:cc:06:1f:fc:62:68:
f3:73:e1:66:74:1a:4e:c5:a1:af:36:64:a0:51:a7:79:6a:12:
33:25:e5:ba:e1:20:70:3a:1a:6c:76:3d:5b:63:8d:d4:e8:93:
1f:56:93:04:88:c8:d8:d5:3f:23:79:5d:dc:59:a0:2b:fd:a8:
84:e0:9b:1d:4e:cc:f8:85:b0:9c:7a:21:41:27:36:94:8c:d0:
2b:e7:08:12:e9:3a:33:a2:a0:7e:62:f5:40:03:74:31:d5:ca:
83:2c:31:e6:02:4b:87:8f:59:07:eb:11:a5:2b:f5:e9:4c:bc:
64:48:c2:28:cd:8c:05:74:fa:5b:93:59:b1:1c:c3:fd:84:be:
0b:fc:4a:e3:c2:4a:04:77:3a:b2:7d:27:7a:41:60:3d:dd:f6:
11:b2:c0:f9:fc:22:19:9f:c9:12:fe:96:42:0b:a2:9c:53:c4:
d6:52:50:42:d3:d5:7a:63:f0:a6:87:cc:2d:ef:04:28:9c:53:
42:73:91:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 10:18:15 2025 by rpki-client