Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/C2AA2368C84311EF9A7A8773C4F9AE02.roa
File: C2AA2368C84311EF9A7A8773C4F9AE02.roa (raw, json)
Hash identifier: tJJ2XZC8YScTqP1CkdZptUCFeGQJ9H2bWeUZCguf3ZU=
Subject key identifier: 98:8B:C7:C3:70:4E:94:A8:3C:51:48:D1:70:64:FD:2D:5A:71:B7:4A
Certificate issuer: /CN=A91E015D/serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4
Certificate serial: 0210
Authority key identifier: 25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/C2AA2368C84311EF9A7A8773C4F9AE02.roa
Signing time: Wed 01 Jan 2025 13:25:43 +0000
ROA not before: Wed 01 Jan 2025 13:25:43 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 397373
IP address blocks: 103.85.200.0/22 maxlen: 22
110.44.108.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 08 Jan 2025 12:38:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 528 (0x210)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E015D, serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4
Validity
Not Before: Jan 1 13:25:43 2025 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=67754257-c712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:03:c5:52:2e:35:2c:39:49:75:86:fb:d9:e5:
78:7b:a0:cd:7e:fa:41:89:a8:70:1e:0c:32:4e:6f:
21:c3:24:20:b6:d5:0a:e3:cf:80:eb:e4:85:4f:c1:
74:4f:f8:25:78:19:be:bb:3d:45:06:8a:1e:c2:eb:
ea:e7:35:fc:40:82:92:d5:34:85:ae:28:f8:63:4f:
65:4b:6b:90:fc:22:27:c3:d0:b2:57:db:de:98:2f:
7d:ee:8f:46:9c:73:98:13:a2:83:67:73:9c:9c:fa:
2a:4c:e0:e1:d8:0d:ed:1e:3e:1e:ed:76:ef:45:30:
54:c3:eb:c8:03:99:27:07:28:9e:aa:05:f0:00:49:
ab:b1:57:2f:72:d7:47:85:35:47:30:4f:9c:ce:2b:
ca:7c:79:e3:86:5d:e4:46:51:bf:f2:eb:f9:6e:bc:
02:49:91:49:fd:fa:8e:77:33:96:70:ad:0b:fc:8e:
b7:13:b7:06:9d:0e:db:46:1f:ef:78:eb:f5:ed:cd:
92:c5:2e:22:c7:52:24:f5:50:59:3e:15:76:84:cd:
7b:17:84:33:4f:86:bd:e4:14:68:6e:c2:a1:f6:6e:
b3:1a:86:cf:c8:fe:4b:71:f5:99:07:25:35:1f:7e:
51:fd:7e:08:01:86:00:25:34:b3:ce:72:93:8c:03:
00:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:8B:C7:C3:70:4E:94:A8:3C:51:48:D1:70:64:FD:2D:5A:71:B7:4A
X509v3 Authority Key Identifier:
keyid:25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/C2AA2368C84311EF9A7A8773C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.85.200.0/22
110.44.108.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:bc:f1:38:3f:9b:3b:f5:9a:e8:49:14:c2:7e:66:00:fd:6f:
d9:03:36:05:5b:6c:e1:2c:4e:c6:19:cb:17:7b:75:7a:d5:4e:
c1:b0:65:d4:0a:23:33:33:1f:a4:3b:96:96:0f:a6:9f:9f:77:
9e:cd:2c:8e:cd:ca:82:3f:b2:af:85:01:98:2f:03:27:ba:be:
dc:67:44:db:4d:ba:08:73:c6:59:cc:a7:4f:c9:58:f8:fd:75:
10:85:de:1e:74:31:17:da:1b:49:69:0d:ad:d1:09:03:b1:90:
28:0c:0a:39:e6:1d:b4:e3:d0:b5:9f:e6:9a:a8:a4:17:fc:e0:
c7:bd:7b:f7:c8:38:3e:73:a8:6a:82:bf:a0:15:4f:27:d7:be:
30:b6:a3:23:0b:81:cb:2f:c4:1c:df:b8:28:a6:21:ec:f7:e4:
f7:3f:3f:2b:06:3f:7b:94:86:9f:dd:3e:09:94:b6:ef:42:4d:
c3:bd:38:dd:97:23:21:8a:6f:d3:84:05:62:f1:c9:72:1b:8c:
c8:c2:b7:82:ee:0c:d0:01:a2:45:73:f1:66:a7:31:a1:ec:bc:
fd:82:83:9e:8e:a2:f6:09:ab:12:bc:51:96:2f:b4:d7:9f:de:
23:90:7f:1f:2b:d1:a9:38:22:b2:f2:ff:b9:82:ad:e4:f7:ee:
76:10:ae:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:26:05 2025 by rpki-client