Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/8DCFBA16CDBD11EF88405E66C4F9AE02.roa
File: 8DCFBA16CDBD11EF88405E66C4F9AE02.roa (raw, json)
Hash identifier: pmtidF8+akO5Y8m7SMogjoDFN54KvPZ2gBhRxIr4Buc=
Subject key identifier: 07:13:BA:99:E9:4A:44:97:F3:6F:AD:94:52:85:24:E7:D4:D1:B8:85
Certificate issuer: /CN=A91E015D/serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4
Certificate serial: 0218
Authority key identifier: 25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/8DCFBA16CDBD11EF88405E66C4F9AE02.roa
Signing time: Wed 08 Jan 2025 12:39:08 +0000
ROA not before: Wed 08 Jan 2025 12:39:08 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 207388
IP address blocks: 110.44.108.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 10 Jan 2025 13:04:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 536 (0x218)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E015D, serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4
Validity
Not Before: Jan 8 12:39:08 2025 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=677e71ec-5702
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cd:5c:ed:d0:b3:46:58:a2:79:18:ad:6f:6b:
9f:6f:b6:1c:02:72:18:6d:aa:46:32:61:b2:e8:e7:
1e:47:81:a8:66:92:47:61:37:e5:62:d7:53:f2:50:
c2:c7:1f:9e:33:19:b9:81:ca:20:5c:a0:29:1e:6d:
7c:d4:f7:5d:8c:fd:6b:45:cd:43:08:ad:0f:c5:d7:
6f:7f:a7:53:ae:75:2f:ce:b2:5b:27:0f:12:87:53:
04:43:a2:c2:da:72:6c:f5:10:50:bc:63:5b:c3:28:
b2:1d:46:96:c9:99:92:ea:20:a8:5e:6e:14:95:d3:
4e:c7:68:84:a0:66:21:34:0c:dd:d3:ba:fc:be:bc:
ea:03:1d:1c:d7:5a:f0:37:c4:bb:a7:ac:a7:7c:d7:
c4:b3:f0:cf:41:6e:b8:83:d8:15:4b:1e:a9:d5:73:
a5:84:8c:67:2d:e8:38:be:91:64:c1:2f:b5:0f:78:
82:67:87:56:ed:9f:ea:da:6d:3f:8f:10:19:7d:34:
53:f0:83:df:0c:68:49:50:49:29:2e:5e:18:80:06:
ba:e1:2e:a7:a4:99:1e:4b:b0:21:4b:dd:6d:1b:49:
b3:ba:6f:de:6c:f6:47:9e:c9:8e:83:e6:ae:77:fb:
4f:85:92:ce:c8:a5:38:ad:a6:5e:4d:bf:55:84:cf:
34:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:13:BA:99:E9:4A:44:97:F3:6F:AD:94:52:85:24:E7:D4:D1:B8:85
X509v3 Authority Key Identifier:
keyid:25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/8DCFBA16CDBD11EF88405E66C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
110.44.108.0/22
Signature Algorithm: sha256WithRSAEncryption
46:24:38:bd:03:75:c8:aa:16:79:f6:2b:07:39:9b:c0:f6:5e:
d1:1a:bf:9c:35:fb:9b:d4:16:9b:a8:06:9e:00:07:86:e5:76:
fb:90:5e:a6:10:dd:d0:6d:39:c7:40:3c:92:4e:fe:8e:8c:3f:
3c:1d:28:21:df:6a:48:27:5f:ce:3d:c5:cf:9f:3d:aa:9b:55:
c7:59:ea:62:08:e7:b8:4b:12:d9:44:bd:ae:5f:4b:20:aa:1e:
17:b0:78:13:38:fa:12:27:b9:b9:75:91:08:b7:a8:21:30:5e:
4d:c2:d5:b4:03:d9:f8:06:32:4a:fa:e2:3e:55:3d:52:ad:70:
37:f5:34:5e:a8:ee:3d:22:15:17:df:48:a1:c5:40:94:00:b8:
7e:00:a9:84:cb:df:14:b7:dc:2f:f9:97:34:4b:bb:55:e3:bb:
9e:b1:1b:ff:30:6d:50:88:cf:ac:71:bc:d3:6a:77:54:eb:59:
db:93:20:24:39:74:ec:2c:48:b7:34:53:cf:79:8d:8f:29:a6:
fb:31:f1:a3:1d:c8:58:86:94:1c:1e:fa:09:e7:cc:cb:bc:a3:
a3:80:bf:41:ce:a2:8f:70:ef:15:da:18:49:02:4e:e9:a8:3f:
d4:61:f8:4d:9b:78:23:75:51:d8:52:a8:cf:80:7f:1b:9a:f9:
50:c7:3f:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:30:44 2025 by rpki-client