Route Origin Authorization
$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa
File: 3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa (raw, json)
Hash identifier: UM1FQCGogzyWHx9EctybZSrqZ71MBRuXt228K6V/VJo=
Subject key identifier: 9B:7A:00:9D:42:19:6C:28:80:61:9F:49:F0:9D:4D:6E:96:B1:8B:76
Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1
Certificate serial: 6CDB4779772527812C3D229472FA4081166B2FA7
Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer
Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa
Signing time: Sat 28 Feb 2026 12:00:01 +0000
ROA not before: Sat 28 Feb 2026 11:55:01 +0000
ROA not after: Sat 27 Feb 2027 12:00:01 +0000
asID: 45163
IP address blocks: 203.147.108.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 02 Mar 2026 00:00:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:db:47:79:77:25:27:81:2c:3d:22:94:72:fa:40:81:16:6b:2f:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1
Validity
Not Before: Feb 28 11:55:01 2026 GMT
Not After : Feb 27 12:00:01 2027 GMT
Subject: CN=9B7A009D42196C2880619F49F09D4D6E96B18B76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:8e:2a:1c:ad:e3:95:f5:f1:3d:78:22:9a:de:
39:1f:2c:b0:0d:81:37:85:82:c6:4c:f3:f2:60:68:
eb:66:3f:27:71:22:78:57:79:ca:07:73:75:97:67:
28:30:15:f1:39:66:08:58:b4:97:ed:50:89:31:d6:
d9:a7:0b:a7:d5:bb:aa:50:f4:c4:48:45:2c:96:23:
a1:b4:5c:40:6f:3e:76:58:ee:66:22:cc:8c:74:f9:
5c:04:87:7a:b2:c7:6f:b2:0a:b5:41:60:9e:cd:94:
71:72:11:59:4e:05:09:15:6b:8f:f5:6e:80:cf:a2:
b7:ce:28:ef:21:e5:52:4b:fd:b2:77:5e:b5:05:23:
df:a9:7b:f8:f2:1a:ec:53:88:71:e3:d8:87:d8:de:
ac:9d:3e:7e:42:14:19:53:80:c8:ac:56:e8:4e:0b:
b2:98:9a:f0:b9:fe:e0:38:94:99:1c:2b:61:00:0e:
55:c7:c1:18:8b:f3:89:cc:c8:a4:62:ba:6d:47:88:
7a:38:95:45:fc:11:a9:30:c7:99:46:02:d7:29:54:
c5:c7:2b:6d:55:26:c1:3d:94:7b:d8:23:5a:a4:95:
fe:cf:1e:d3:49:6e:df:a4:81:3a:5a:4d:5e:a1:a9:
62:a6:ac:07:09:80:e1:9a:0c:99:46:76:29:7e:8a:
5d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:7A:00:9D:42:19:6C:28:80:61:9F:49:F0:9D:4D:6E:96:B1:8B:76
X509v3 Authority Key Identifier:
keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.147.108.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:d7:64:81:9b:30:59:11:71:19:c9:67:1d:ad:d8:2a:d0:d0:
71:ac:36:fc:05:0f:f0:aa:46:c5:2f:51:6a:21:1e:2b:c3:e3:
24:b0:6a:16:f8:0d:55:5e:ff:c3:86:00:cc:94:e2:be:b6:f4:
68:22:d7:c7:96:d5:b0:5b:86:c5:5c:a1:f3:bb:27:61:41:c4:
d3:f7:42:98:43:80:7b:84:98:4b:d2:1d:f7:89:4e:0c:27:81:
f2:10:41:97:37:2e:e5:b2:c3:6a:7b:51:cb:4f:6b:29:f8:c0:
f6:96:07:c1:3b:9c:a5:a4:01:cc:e4:01:60:db:cb:30:16:2e:
0d:63:95:d7:af:a7:7d:de:e8:e1:69:41:f2:3b:d0:98:30:16:
a9:2d:ab:f9:20:cd:24:f1:5b:31:3a:34:a3:a4:66:91:0c:5a:
67:1b:cb:f3:6d:39:be:49:53:4b:84:a0:ef:f5:5e:87:3a:a6:
14:ce:7b:97:f3:1c:e7:fe:95:8e:f1:d7:dc:3f:ed:d1:c5:4b:
17:fc:b6:c4:21:d1:20:af:a5:f8:e7:58:d2:93:00:4d:fc:16:
02:c3:57:86:ef:35:e0:f7:9e:61:3c:88:84:9d:f1:da:5c:85:
65:53:f0:6c:94:d7:b6:93:b5:b9:40:02:c2:1c:fa:52:0c:29:
69:f6:08:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:44:39 2026 by rpki-client