
Route Origin Authorization
$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa
File: 3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa (raw, json)
Hash identifier: HElQvU7r6FuFuthTvWDgKo9kWrsXDU1aICGLmDowqoo=
Subject key identifier: 4D:50:20:68:71:8E:8C:2B:60:5B:4F:14:E4:3F:46:B8:E3:19:1E:89
Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1
Certificate serial: 2CB20580505D3AD90EA8110192CA88C4241B5263
Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer
Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa
Signing time: Fri 08 Aug 2025 00:00:01 +0000
ROA not before: Thu 07 Aug 2025 23:55:01 +0000
ROA not after: Fri 07 Aug 2026 00:00:01 +0000
asID: 24021
IP address blocks: 203.147.108.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 09 Aug 2025 12:00:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:b2:05:80:50:5d:3a:d9:0e:a8:11:01:92:ca:88:c4:24:1b:52:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1
Validity
Not Before: Aug 7 23:55:01 2025 GMT
Not After : Aug 7 00:00:01 2026 GMT
Subject: CN=4D502068718E8C2B605B4F14E43F46B8E3191E89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d8:4e:f1:fb:8e:d3:40:c7:17:7d:42:7d:2f:
59:e1:b6:6b:4d:c0:0f:5d:0c:6c:ad:73:07:96:a0:
1c:6a:b7:f3:e9:32:c8:01:00:de:e6:6c:2a:4d:58:
ef:de:dd:8f:00:dc:46:90:5b:44:9c:5a:1f:9c:93:
94:f6:a5:2a:8f:05:bf:49:9b:1f:83:24:cc:89:6d:
43:31:f3:67:ad:19:35:bc:2e:f0:e2:45:75:e9:f4:
3e:a8:38:d0:95:72:a9:9b:89:3e:41:94:25:53:e6:
82:fd:db:75:16:53:8a:3c:5e:48:dd:c7:a9:cd:5e:
89:9c:9a:5e:b9:6e:56:58:be:15:93:6d:b6:b8:34:
56:f5:b1:21:50:7c:58:e5:94:12:f3:44:76:7c:e4:
b9:a1:5e:3f:50:4e:28:d8:fb:5a:63:cf:1f:49:66:
20:86:1a:0b:4a:de:44:c0:e5:ab:b2:3c:74:02:d8:
10:6e:97:3d:df:90:d0:50:ec:f2:eb:41:cd:ba:bd:
46:13:73:3e:2d:c6:fe:9b:a7:5b:90:a7:ce:c3:7a:
6a:01:37:34:f0:9e:c7:bc:54:9f:6f:e3:d5:71:9b:
bc:8c:82:43:c8:9c:6e:8c:5e:07:10:ec:32:0e:9e:
20:3b:93:92:d4:9d:c4:01:94:4c:29:4e:fc:af:9d:
37:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:50:20:68:71:8E:8C:2B:60:5B:4F:14:E4:3F:46:B8:E3:19:1E:89
X509v3 Authority Key Identifier:
keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203234303231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.147.108.0/23
Signature Algorithm: sha256WithRSAEncryption
37:a7:e5:90:5c:9e:02:ab:15:29:76:5a:ed:a7:23:e0:eb:08:
21:40:7d:0b:14:ab:f5:aa:f4:82:4d:60:39:3b:a9:ed:e7:81:
dd:48:2c:f6:ae:0d:eb:9c:17:31:18:53:90:2c:ae:1e:5c:29:
bc:38:17:c3:3a:82:f6:5d:55:52:c6:ab:fe:d5:26:20:d7:7e:
a3:26:a3:0f:bd:aa:e7:bf:c3:44:60:72:37:1e:1f:7e:66:ed:
10:bb:03:17:b3:ef:01:b2:0a:5a:c5:50:6a:81:ba:57:55:01:
b7:d3:ab:36:ce:3b:24:b1:40:46:97:00:5a:91:dc:42:a0:b9:
13:36:ae:b8:4d:b5:d0:4c:fe:7c:f9:6c:0e:94:c8:80:b3:09:
13:b0:13:41:60:79:52:11:dd:bc:ac:e8:40:13:1d:8b:1d:b7:
e6:41:60:b1:9f:2b:3d:df:97:10:89:17:07:80:2b:62:a9:bd:
96:69:a1:65:05:fb:d7:51:06:a9:9d:ed:66:c1:5d:04:ef:f0:
95:26:4c:c2:fb:70:9c:c1:c5:78:f6:56:30:e3:ab:cb:6a:be:
c2:51:cc:b4:81:4e:d5:21:c3:d6:08:85:cc:bb:a0:65:02:aa:
ab:57:fb:d5:b9:fa:7a:c8:f6:af:ca:67:d7:6e:f7:fb:8e:d8:
4c:fb:7c:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 04:23:54 2025 by rpki-client