Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/6EDC8DCA1A8C11F0B417014DC4F9AE02.roa
File: 6EDC8DCA1A8C11F0B417014DC4F9AE02.roa (raw, json)
Hash identifier: /Nesl8NXPDZFE8R4Qt5ElTH+iVBz/sXAujCJvT1gs0w=
Subject key identifier: 39:18:C6:65:05:B0:E8:EB:C1:27:AC:12:33:00:49:82:83:53:26:48
Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C
Certificate serial: 02
Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/6EDC8DCA1A8C11F0B417014DC4F9AE02.roa
Signing time: Wed 16 Apr 2025 06:31:30 +0000
ROA not before: Wed 16 Apr 2025 06:31:30 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 137899
IP address blocks: 103.117.136.0/22 maxlen: 24
103.186.214.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Apr 2025 06:06:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C
Validity
Not Before: Apr 16 06:31:30 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67ff4ec2-5305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b0:05:21:f0:f3:50:f6:10:86:58:bf:c5:9d:
d6:28:3f:44:29:1b:ee:21:de:09:db:8c:35:85:90:
61:ae:e0:56:61:ac:bd:e0:c1:91:86:70:ed:b2:73:
92:4c:f6:1e:a6:1e:6c:72:b7:f8:95:88:9a:6b:5c:
00:f5:c7:b3:00:cc:e9:9e:e2:2c:7c:fb:78:a9:0f:
89:61:47:66:b7:f3:71:2d:6d:2a:98:1c:80:c5:f7:
36:9c:33:60:0d:c0:8b:ea:7e:1b:b4:a2:1c:d7:91:
54:17:25:9f:fb:b0:17:2b:bd:b6:fe:ad:ce:e5:a2:
ca:99:70:c5:bd:62:43:54:82:aa:ff:d9:0e:64:e2:
91:fa:6a:af:72:74:e6:10:d3:ee:72:6e:0c:61:8d:
9c:7b:f8:aa:9a:de:d3:73:c8:a1:8a:a9:24:65:14:
ad:b1:01:a9:db:7d:d7:b7:e9:3a:5e:89:f1:d3:2d:
d9:ae:f7:7f:14:b7:04:1a:a3:03:0b:3b:57:38:c4:
0c:e2:54:28:de:f1:af:56:15:82:85:00:b0:26:d6:
65:14:b6:21:45:6e:f5:54:b0:5d:9c:b1:72:2f:71:
33:42:84:cc:71:05:ed:73:e4:67:12:1a:21:18:4f:
c3:e8:3c:f5:6c:02:9f:fd:fe:73:26:73:db:5d:0a:
d2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:18:C6:65:05:B0:E8:EB:C1:27:AC:12:33:00:49:82:83:53:26:48
X509v3 Authority Key Identifier:
keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/6EDC8DCA1A8C11F0B417014DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.117.136.0/22
103.186.214.0/23
Signature Algorithm: sha256WithRSAEncryption
c1:52:60:20:cb:f9:a7:94:be:1e:eb:ef:a2:1b:e6:9a:d6:34:
c0:89:8a:ff:6e:83:2e:6a:7d:7b:14:b3:c9:19:41:8f:dd:d9:
c0:da:87:8b:ad:51:c8:e6:d9:ba:53:a5:80:90:a6:ed:a0:a0:
a3:68:24:c4:6f:04:df:f1:91:8d:eb:9e:32:66:61:5b:4a:24:
a1:4d:6f:f3:48:fd:3a:ba:5c:af:72:b0:1c:47:f9:e5:2a:b5:
99:97:2a:32:b8:54:2d:bd:a0:b6:fc:f6:00:80:97:a9:89:3c:
e4:15:ef:ea:0f:1d:1d:e3:19:20:78:f3:b8:fe:77:92:8e:c6:
e8:ed:8a:8f:aa:24:68:62:8d:5d:7b:ba:9d:c4:35:28:ca:60:
60:85:b3:e8:99:f8:bb:a1:5e:83:16:c9:18:84:fb:64:59:f7:
41:b2:dd:05:3d:d7:5e:97:2c:e0:29:70:e9:e1:cc:67:1d:3c:
da:fb:ed:29:6a:01:e7:de:c8:b2:12:bf:43:cd:15:76:7b:e3:
cc:4b:c8:e4:ce:a4:04:94:db:d3:4d:ee:d3:40:79:68:45:97:
de:25:e0:37:4c:8c:1a:e3:22:a5:c0:55:6e:c6:c6:81:c2:c2:
d4:e4:fc:19:10:1d:6b:0c:65:56:1e:b6:88:4e:57:06:f9:0c:
02:fb:58:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:59:14 2025 by rpki-client