Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913120A/DAF81C4486F911EFB096510CC4F9AE02/5516C67EF38811EFBCFE9B38C4F9AE02.roa
File: 5516C67EF38811EFBCFE9B38C4F9AE02.roa (raw, json)
Hash identifier: s+hVxMLJMJcVTOIlq5z7IG/TrMyvqpO7rUgkU+Lzvjc=
Subject key identifier: C2:BD:EC:9C:AE:D6:1E:E8:E7:F3:71:70:B2:87:90:FB:17:F9:DB:EE
Certificate issuer: /CN=A913120A/serialNumber=6C2C7C14289E6BB5B7275B1AA6BFDFA0227B9086
Certificate serial: 60
Authority key identifier: 6C:2C:7C:14:28:9E:6B:B5:B7:27:5B:1A:A6:BF:DF:A0:22:7B:90:86
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bCx8FCiea7W3J1sapr_foCJ7kIY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913120A/DAF81C4486F911EFB096510CC4F9AE02/5516C67EF38811EFBCFE9B38C4F9AE02.roa
Signing time: Tue 25 Feb 2025 14:53:54 +0000
ROA not before: Tue 25 Feb 2025 14:53:54 +0000
ROA not after: Sat 31 Jan 2026 00:00:00 +0000
asID: 153362
IP address blocks: 160.187.238.0/24 maxlen: 24
160.187.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Feb 2025 14:54:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96 (0x60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913120A, serialNumber=6C2C7C14289E6BB5B7275B1AA6BFDFA0227B9086
Validity
Not Before: Feb 25 14:53:54 2025 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=67bdd982-7010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e1:3a:5a:ef:4b:0d:b3:da:ae:2a:7a:1d:3d:
4c:5d:c4:66:e4:4f:6e:17:bf:ed:0f:0b:17:58:36:
23:80:b6:d0:70:61:c1:4e:c4:7a:ab:4b:dc:ce:fd:
29:6f:24:4e:c0:18:0f:11:0a:93:e3:08:64:f5:69:
62:fc:b7:ce:96:22:ba:4d:47:70:a8:69:86:a0:68:
ce:7a:eb:14:ef:9c:02:a7:90:cb:3d:d5:09:40:a7:
95:91:07:0a:8c:30:7d:b8:4e:fc:c2:f5:e9:d0:56:
a3:cd:79:6a:b2:91:1a:33:2f:3a:4b:91:4d:dd:2e:
42:5b:41:6d:2e:f5:0a:59:c0:50:bb:24:c7:14:65:
a7:83:9e:0c:2f:6d:28:2e:d0:de:44:50:34:21:fd:
3e:13:e9:56:bc:a4:fb:97:9c:07:6e:4f:c7:47:5f:
95:1b:c7:96:b1:72:65:89:ce:03:06:03:77:99:34:
a7:90:ba:4b:84:3a:81:e7:60:13:f9:c1:45:2c:7f:
23:73:79:14:03:25:0d:cf:f4:44:44:4d:f1:cc:5b:
94:f2:79:b3:6a:e7:57:e9:54:36:a0:c8:1f:54:24:
24:f2:95:91:1b:d7:42:3f:ba:99:eb:ad:6b:60:8f:
39:83:aa:64:c5:50:b8:e6:1b:5b:27:46:95:3c:7c:
7e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:BD:EC:9C:AE:D6:1E:E8:E7:F3:71:70:B2:87:90:FB:17:F9:DB:EE
X509v3 Authority Key Identifier:
keyid:6C:2C:7C:14:28:9E:6B:B5:B7:27:5B:1A:A6:BF:DF:A0:22:7B:90:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913120A/DAF81C4486F911EFB096510CC4F9AE02/bCx8FCiea7W3J1sapr_foCJ7kIY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bCx8FCiea7W3J1sapr_foCJ7kIY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913120A/DAF81C4486F911EFB096510CC4F9AE02/5516C67EF38811EFBCFE9B38C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.187.238.0/23
Signature Algorithm: sha256WithRSAEncryption
72:ce:94:8e:c1:b9:80:27:b6:0a:74:37:89:4a:3b:08:93:fe:
d3:48:bd:10:1e:79:f3:1a:bc:a3:f1:44:40:ee:06:e9:2f:b7:
1d:52:5e:fc:fb:19:d5:69:77:f1:aa:7b:56:7e:d6:72:00:ad:
7d:b1:ee:5b:26:2e:4b:01:14:f6:b2:3d:8c:2f:25:df:c7:a6:
c9:a8:65:65:89:ff:8c:8e:bc:eb:51:bf:34:e5:e4:11:1d:10:
10:3f:d2:b2:5a:78:df:9d:07:11:cb:ab:83:7e:73:8b:95:24:
42:fc:ee:43:4f:03:6d:a2:c0:6e:69:ad:af:f3:54:28:1b:e9:
16:40:cb:76:df:15:b1:dd:25:80:25:bc:c7:66:47:b3:b8:05:
67:62:c0:69:7c:ef:ae:68:de:73:a6:d3:06:ed:8c:e1:bc:e2:
80:11:cb:cf:55:52:74:91:d3:b6:f1:aa:58:29:6d:83:61:2b:
12:7f:17:0d:ff:8f:01:62:28:1c:8a:9c:32:93:9a:04:cb:87:
42:c4:37:d1:b5:88:21:ef:dd:7a:d2:38:1b:d5:0f:51:c0:40:
16:bc:a2:ef:e9:a4:d6:c9:27:24:3f:4c:07:c8:09:af:80:6c:
06:dd:35:c1:fe:e2:02:91:e8:bc:da:79:d8:dd:cf:1b:b2:b0:
20:86:cc:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 23:04:49 2025 by rpki-client