Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/3A423776FB3E11EFB69C3B44C4F9AE02.roa
File: 3A423776FB3E11EFB69C3B44C4F9AE02.roa (raw, json)
Hash identifier: bZY9WifUhf+U2+I40rBqFBHKBlr/GTyve/2Y7k9TuyQ=
Subject key identifier: 18:96:98:0A:76:B2:EA:46:33:48:1D:60:7B:0B:72:68:C9:12:4D:93
Certificate issuer: /CN=A9179F64/serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B
Certificate serial: 80
Authority key identifier: 32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/3A423776FB3E11EFB69C3B44C4F9AE02.roa
Signing time: Fri 07 Mar 2025 10:23:36 +0000
ROA not before: Fri 07 Mar 2025 10:23:36 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 139716
IP address blocks: 160.30.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 09 Mar 2025 08:54:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128 (0x80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9179F64, serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B
Validity
Not Before: Mar 7 10:23:36 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=67cac927-f817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:18:86:cc:9e:16:e8:ac:d3:20:79:9c:f8:f5:
36:70:db:9e:7c:ef:70:f1:02:98:45:14:0c:a5:28:
41:be:9a:b2:b8:af:36:b7:90:d9:0d:e1:d8:6d:ec:
e7:a8:1c:27:4e:d5:8e:3d:93:4d:2d:b3:a7:d4:af:
3c:b2:25:84:a2:a5:81:7c:81:6c:df:ca:23:91:21:
b8:84:e5:30:08:29:61:5f:32:3b:cb:2d:55:97:ca:
14:a0:51:17:96:98:d0:e5:b3:b7:f0:9a:ac:d2:f9:
f4:75:38:e2:71:cb:2e:4b:7f:21:fc:e5:70:39:38:
38:07:fc:aa:be:71:3e:ec:0f:7b:5f:1e:32:e6:1f:
ec:26:13:a4:ef:e3:49:cf:27:c1:c5:d1:c4:09:fa:
77:46:0b:0c:e7:f9:e3:11:61:b1:03:2d:4f:cc:6b:
f3:39:d6:f9:b7:90:da:c8:1f:09:d7:25:18:64:26:
15:30:fa:21:89:84:f7:f1:cb:bf:cf:4f:01:cc:b0:
28:23:1d:d5:24:33:4c:87:30:14:08:b5:80:e8:ea:
f0:bc:d1:bc:79:c4:20:47:20:1f:03:98:a4:8b:c3:
92:65:eb:49:cf:1d:49:a8:46:d5:d6:c5:23:e8:f5:
ff:1b:fd:38:6d:9f:e5:68:3f:7d:d8:a4:97:6d:f5:
2b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:96:98:0A:76:B2:EA:46:33:48:1D:60:7B:0B:72:68:C9:12:4D:93
X509v3 Authority Key Identifier:
keyid:32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/3A423776FB3E11EFB69C3B44C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.30.178.0/24
Signature Algorithm: sha256WithRSAEncryption
07:56:ad:48:cf:be:a1:1f:d1:2b:45:2a:53:66:12:ac:a3:c6:
47:68:77:71:73:58:4e:f4:c0:f7:cf:2e:da:6b:d8:0c:60:f0:
ef:71:28:38:64:35:0b:af:0a:dc:58:90:b5:26:16:de:5b:06:
63:c8:bc:bb:5b:a6:bf:7d:3f:b8:9e:b6:a6:ea:19:c8:2d:a2:
18:44:1c:75:24:8c:1a:3f:2d:83:87:ac:c3:b6:80:ed:2b:2e:
4b:2d:21:96:a1:5a:4f:c6:b5:5b:c5:02:78:d4:6a:ac:b7:da:
c6:0d:12:0f:63:9c:08:48:18:a5:2c:3f:e6:b3:51:0a:04:09:
80:62:5b:33:96:e0:7c:02:b5:b8:16:8d:96:c1:ed:ab:4f:44:
6d:27:0b:e4:6e:43:81:17:99:ed:98:2b:fb:a5:1c:33:b4:1c:
ca:f3:6b:b0:aa:64:d9:c7:07:9d:63:6f:26:3a:0f:5b:cb:9a:
e1:82:5c:29:5e:88:dd:3d:f7:35:fd:e9:e0:39:c0:dc:88:07:
fc:18:65:19:1a:1c:b9:05:b0:83:9f:a4:2d:06:aa:d7:ff:b8:
2b:e2:b9:5b:b1:ab:56:da:7a:18:8e:d8:3a:61:45:4d:bf:e7:
3f:e2:02:c3:4e:98:e8:40:99:49:59:4c:14:44:be:f4:b7:40:
a5:6c:e9:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:31:48 2025 by rpki-client