Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/84F87DC471B911F0A3321A53C4F9AE02.roa
File: 84F87DC471B911F0A3321A53C4F9AE02.roa (raw, json)
Hash identifier: dzE4OOs2WXgoOLJ0CE/JS2ReZT5g8xdloteAm/h9Ktk=
Subject key identifier: 2B:1D:D1:F1:4C:D2:29:F8:9A:B3:B6:19:80:85:DB:0F:73:BF:48:AE
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 28EF
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/84F87DC471B911F0A3321A53C4F9AE02.roa
Signing time: Tue 05 Aug 2025 05:10:00 +0000
ROA not before: Tue 05 Aug 2025 05:10:00 +0000
ROA not after: Thu 30 Jul 2026 00:00:00 +0000
asID: 397373
IP address blocks: 113.203.241.0/24 maxlen: 24
113.203.242.0/24 maxlen: 24
113.203.243.0/24 maxlen: 24
113.203.246.0/24 maxlen: 24
113.203.248.0/22 maxlen: 24
113.203.252.0/24 maxlen: 24
113.203.253.0/24 maxlen: 24
113.203.254.0/24 maxlen: 24
113.203.255.0/24 maxlen: 24
115.167.96.0/22 maxlen: 24
115.167.104.0/22 maxlen: 24
115.167.112.0/22 maxlen: 24
175.110.90.0/24 maxlen: 24
175.110.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Aug 2025 13:40:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10479 (0x28ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Aug 5 05:10:00 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=68919227-655c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a6:df:d0:48:71:e7:f1:8f:66:29:04:ee:31:
a1:96:4b:61:be:6a:49:1e:ee:33:8f:e8:b8:c1:bf:
53:57:31:7d:cf:d6:49:78:08:ce:09:c4:30:c5:d0:
ff:68:08:21:d5:6d:48:29:09:66:d6:d8:21:82:cd:
1c:0b:d7:d8:09:56:9e:bd:24:37:e9:67:1c:f9:05:
64:66:7a:d6:b1:de:d0:ce:78:c3:52:cd:a1:e0:b9:
7f:e5:80:5a:6b:f3:3c:fb:06:07:02:27:88:b4:04:
74:51:bc:d4:f0:d1:b4:3b:a1:2b:38:06:53:cf:d9:
f6:08:4f:6c:1d:7a:15:43:d8:25:a4:90:83:1b:38:
70:8d:f2:73:fe:6f:92:0c:77:55:18:c6:1d:65:70:
e0:c4:82:d4:89:c4:ed:32:af:56:55:0f:62:bf:e6:
f1:33:39:a3:d2:cd:06:4f:e6:ab:aa:e9:7c:5f:06:
9e:c9:f6:72:db:32:cc:65:8b:c8:08:7c:3b:e8:53:
37:91:36:32:b4:83:75:b2:f4:be:11:9d:52:e9:c7:
ff:9a:eb:ab:1e:b8:3e:12:2f:9c:8a:2d:1b:02:be:
b1:29:84:c1:4a:20:04:f4:3c:69:3a:53:d3:2b:22:
9a:c3:6b:a3:e3:47:f5:c9:71:0a:55:d1:8f:97:a2:
03:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:1D:D1:F1:4C:D2:29:F8:9A:B3:B6:19:80:85:DB:0F:73:BF:48:AE
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/84F87DC471B911F0A3321A53C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.241.0-113.203.243.255
113.203.246.0/24
113.203.248.0/21
115.167.96.0/22
115.167.104.0/22
115.167.112.0/22
175.110.90.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:dc:db:72:d6:4e:4e:48:f8:92:c3:49:0d:94:32:1b:bc:24:
4f:a6:ef:e8:94:26:15:00:6b:b3:40:4e:27:da:27:33:c6:db:
b2:4a:5f:44:5d:01:90:f0:03:70:db:cd:0c:a2:fa:36:84:f3:
b4:87:3c:11:d8:aa:92:3b:bc:fd:d5:7c:bc:e6:83:9b:a4:50:
d3:84:aa:b8:39:bb:0b:57:a4:ed:61:b1:ac:ca:f3:8e:73:23:
28:42:81:99:be:72:3f:40:a8:ae:63:76:f4:89:81:5a:cd:e9:
e2:a1:b4:d7:72:c5:bb:13:85:7b:d5:93:4a:36:b2:70:29:c1:
79:eb:89:c8:4a:d3:9f:e7:90:69:d7:64:d2:ec:da:ae:18:c9:
7e:67:f1:b0:0c:d7:c9:af:53:5a:1d:5f:31:2f:0f:d7:ee:dc:
14:9c:3a:f3:74:ef:7a:21:15:12:6d:ad:c8:62:fc:09:39:95:
7c:9b:a8:3a:69:e0:ae:bc:ab:57:6f:fd:cc:76:9e:ac:b2:c7:
2b:65:6a:88:18:b4:55:b6:df:17:b7:3c:09:53:f4:9c:b4:0f:
e9:45:9e:b1:31:9f:9e:01:19:9f:97:e6:5c:dc:de:da:96:4e:
11:0b:cb:18:91:b0:fd:3c:e7:ba:c4:4a:0c:71:31:23:2f:15:
15:13:ca:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 22:46:18 2025 by rpki-client