Route Origin Authorization
$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa
File: 3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa (raw, json)
Hash identifier: bWsU4Aas6PdLlXPf0DiVR0jpLC0ldetTtrmEWD0uExw=
Subject key identifier: B8:7F:33:0B:CE:EB:BE:DD:D6:D5:2E:20:F5:B7:E5:68:B7:4A:F1:C4
Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1
Certificate serial: 3C077A0AAAE4484BE82C3D6CD0282CF6EFC24B02
Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer
Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa
Signing time: Fri 13 Jun 2025 00:00:01 +0000
ROA not before: Thu 12 Jun 2025 23:55:01 +0000
ROA not after: Fri 12 Jun 2026 00:00:01 +0000
asID: 24021
IP address blocks: 203.147.108.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 14 Jun 2025 12:00:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:07:7a:0a:aa:e4:48:4b:e8:2c:3d:6c:d0:28:2c:f6:ef:c2:4b:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1
Validity
Not Before: Jun 12 23:55:01 2025 GMT
Not After : Jun 12 00:00:01 2026 GMT
Subject: CN=B87F330BCEEBBEDDD6D52E20F5B7E568B74AF1C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8b:8a:87:0e:66:73:92:e4:28:f5:d2:36:0f:
d9:57:b0:9f:20:4b:2a:0f:dd:5d:68:b4:99:de:7c:
5e:1c:cb:84:23:dc:86:18:9a:4b:94:ed:19:aa:cf:
73:be:42:2b:b7:2a:8b:95:0f:cd:c8:9a:a7:26:c1:
50:d6:ac:36:4d:ff:d0:57:51:d8:84:5a:93:64:d3:
1f:4c:bb:24:b0:1e:54:8e:65:85:a4:1e:77:ec:65:
8b:bb:b5:29:7c:02:e8:5b:8a:56:11:e8:d8:73:d1:
af:3c:1d:4b:bf:0f:53:9e:95:61:28:eb:bb:64:fa:
86:fb:f1:f6:e3:7f:34:90:e2:2c:59:f1:e2:ee:de:
9b:38:20:9c:7a:f9:e1:93:5f:4c:35:ab:53:1b:cf:
91:e4:74:ab:75:43:22:cd:d4:4a:0e:12:19:46:77:
8d:96:a5:94:5d:66:3b:b8:9b:7c:cd:88:e3:06:fa:
7b:9c:b7:55:a6:63:5e:53:ec:ae:c5:02:a5:78:52:
4b:23:3e:52:f4:c3:3a:a1:ff:a3:d3:84:b9:44:b3:
d5:80:e3:b9:24:9c:f2:67:14:35:87:0e:f9:09:7a:
cb:b1:d0:8a:64:f8:8a:11:0d:b0:d3:0f:60:1a:c6:
7d:66:e0:b3:bb:96:33:75:ce:21:99:91:a6:20:7d:
ea:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:7F:33:0B:CE:EB:BE:DD:D6:D5:2E:20:F5:B7:E5:68:B7:4A:F1:C4
X509v3 Authority Key Identifier:
keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.147.108.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:14:2b:61:55:ac:8e:47:d7:e5:02:ee:e6:7d:05:dc:1c:c7:
e0:2e:9d:84:bb:b4:00:3a:7e:46:51:3c:c0:7e:56:a1:28:cd:
fa:d3:e8:9b:88:13:7c:9e:75:27:dd:3e:2a:80:06:85:06:d1:
44:20:4e:d0:8d:e1:90:d0:c6:fd:32:99:8f:1a:b3:78:2e:ac:
d2:7a:1d:5f:4d:98:40:88:ba:6f:12:61:d2:03:2a:85:a1:d9:
4c:32:83:8b:b4:bc:38:46:db:60:f5:d1:9f:6e:c1:70:e2:f1:
8a:68:ed:98:21:78:ab:b6:c9:2b:df:7d:0d:42:c5:f7:e5:23:
ee:1d:d1:36:a2:5c:1a:12:dd:80:e9:03:55:b1:bc:0b:08:f8:
df:f1:37:33:7a:3d:97:bd:e8:9c:91:ec:f8:aa:77:a9:35:67:
ad:7c:6b:0b:7c:51:72:7e:e0:8a:51:1d:d6:06:94:ea:89:43:
2c:be:67:9e:ae:de:94:c0:24:d6:76:11:66:c2:b9:a1:41:73:
84:09:8b:51:67:b6:bf:f5:33:39:0b:b2:3e:c2:3d:61:67:07:
b1:0a:e4:e5:2d:c0:b5:f3:dd:57:6a:9e:db:8f:b3:a7:ca:1d:
ee:f5:58:e3:d2:a9:3c:51:5e:49:e7:e4:30:bd:b3:6d:83:88:
68:ba:20:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 09:44:53 2025 by rpki-client