Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/7B8CBD7E1C2B11F0B54DD52FC4F9AE02.roa
File: 7B8CBD7E1C2B11F0B54DD52FC4F9AE02.roa (raw, json)
Hash identifier: X4cbuCK6g2ROEeaD8zD5IKpHWUKkSQ73xBqvw5iSKyY=
Subject key identifier: EB:BB:CD:CD:2C:C6:E0:52:57:68:74:AB:13:05:66:4D:63:3D:11:E4
Certificate issuer: /CN=A9140D69/serialNumber=103FA8BDFFFB9F0557072C47332B81A9E80EDD35
Certificate serial: 02B9
Authority key identifier: 10:3F:A8:BD:FF:FB:9F:05:57:07:2C:47:33:2B:81:A9:E8:0E:DD:35
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ED-ovf_7nwVXByxHMyuBqegO3TU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/7B8CBD7E1C2B11F0B54DD52FC4F9AE02.roa
Signing time: Wed 23 Apr 2025 05:58:05 +0000
ROA not before: Wed 23 Apr 2025 05:58:05 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 62610
IP address blocks: 103.237.101.0/24 maxlen: 24
103.237.102.0/23 maxlen: 23
163.53.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 23 Apr 2025 06:02:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 697 (0x2b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9140D69, serialNumber=103FA8BDFFFB9F0557072C47332B81A9E80EDD35
Validity
Not Before: Apr 23 05:58:05 2025 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=6808816d-d106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:57:d4:3b:c8:c5:04:8d:5e:52:31:0f:27:a9:
83:85:2b:1a:2f:90:b1:55:e0:b7:4f:07:b7:ca:85:
20:9b:8d:a7:ee:27:e9:07:63:44:eb:84:9b:9b:53:
bf:fe:c5:55:f6:f8:49:b7:1d:95:6b:76:5c:99:d4:
a4:58:ae:bf:27:04:ff:58:65:fc:54:21:99:e9:5b:
79:4a:d1:25:4f:cd:7a:5f:97:d3:83:44:97:34:fb:
57:68:9b:4f:5f:ad:48:cd:a7:7a:d1:1c:47:93:74:
f8:95:29:84:a9:8b:2a:49:2a:61:b8:0f:a4:bd:c5:
58:d6:2f:7e:34:d2:98:64:cb:70:9c:5e:2b:61:57:
17:6a:eb:b9:4c:8d:53:d3:60:5a:68:03:8b:d4:32:
98:68:32:c6:8b:da:cb:6d:b0:32:c2:2e:0a:f1:8a:
83:31:20:14:4b:99:cd:8f:97:5a:00:2f:24:e9:e0:
49:d8:07:78:5d:3b:d8:e5:bd:b9:11:ac:c9:69:9d:
e1:4f:f1:49:ad:14:d0:a4:97:f5:4b:68:88:77:d1:
12:bd:90:a7:e7:f6:43:a2:7b:6d:6c:78:9f:80:ac:
40:56:5a:05:cd:a5:fc:6c:70:8e:10:0b:6f:63:99:
2f:8c:9d:5e:7c:3e:e7:c4:f0:de:e1:2c:a0:f2:47:
22:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:BB:CD:CD:2C:C6:E0:52:57:68:74:AB:13:05:66:4D:63:3D:11:E4
X509v3 Authority Key Identifier:
keyid:10:3F:A8:BD:FF:FB:9F:05:57:07:2C:47:33:2B:81:A9:E8:0E:DD:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/ED-ovf_7nwVXByxHMyuBqegO3TU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ED-ovf_7nwVXByxHMyuBqegO3TU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/7B8CBD7E1C2B11F0B54DD52FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.237.101.0-103.237.103.255
163.53.247.0/24
Signature Algorithm: sha256WithRSAEncryption
34:18:73:41:4b:b3:e6:e3:db:98:f9:91:56:5c:3c:8b:66:9b:
74:9d:cf:80:42:e7:5e:29:e9:94:64:1b:3b:64:b9:60:47:16:
09:5d:ea:da:12:24:69:27:fd:76:f6:cf:0b:0c:c7:24:50:ef:
f0:3e:c4:bf:d8:d0:d4:5c:a8:d1:f4:f0:0e:da:fd:cb:77:36:
cb:d3:63:e5:6e:2a:a9:48:9d:3b:b9:91:36:c2:da:27:d3:b2:
5e:73:a5:a8:2a:00:a6:e3:bf:47:87:5a:4e:02:d5:f8:bd:f0:
df:ab:16:c0:83:09:23:49:97:db:bb:29:25:8e:90:d9:df:6b:
4d:4f:71:a3:a7:97:ba:c2:f2:1a:28:e5:4a:6f:56:53:90:64:
11:16:1b:8d:be:c7:b7:0d:5b:ef:31:7b:2d:a8:56:30:55:f7:
f3:c1:d6:44:e5:e2:4a:69:15:71:f4:c6:b5:d9:29:f3:8b:bb:
ec:1f:cd:c1:eb:4f:f0:69:24:a0:8c:6b:26:a8:73:0f:6a:f7:
fb:12:b3:cf:3e:87:8a:08:5a:51:34:34:e1:58:58:dd:4f:09:
31:2b:e4:40:09:45:c8:12:cc:27:d2:e9:81:55:32:f0:62:00:
5e:7d:f8:0e:7f:d2:f6:05:84:4f:69:80:ba:85:6f:f1:9a:15:
15:6b:13:a9
-----BEGIN CERTIFICATE-----
MIIFfzCCBGegAwIBAgICArkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDBENjkxMTAvBgNVBAUTKDEwM0ZBOEJERkZGQjlGMDU1NzA3MkM0NzMzMkI4MUE5
RTgwRUREMzUwHhcNMjUwNDIzMDU1ODA1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02ODA4ODE2ZC1kMTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA51fUO8jFBI1eUjEPJ6mDhSsaL5CxVeC3Twe3yoUgm42n7ifpB2NE64Sbm1O/
/sVV9vhJtx2Va3ZcmdSkWK6/JwT/WGX8VCGZ6Vt5StElT816X5fTg0SXNPtXaJtP
X61Izad60RxHk3T4lSmEqYsqSSphuA+kvcVY1i9+NNKYZMtwnF4rYVcXauu5TI1T
02BaaAOL1DKYaDLGi9rLbbAywi4K8YqDMSAUS5nNj5daAC8k6eBJ2Ad4XTvY5b25
EazJaZ3hT/FJrRTQpJf1S2iId9ESvZCn5/ZDonttbHifgKxAVloFzaX8bHCOEAtv
Y5kvjJ1efD7nxPDe4Syg8kcigQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFOu7zc0s
xuBSV2h0qxMFZk1jPRHkMB8GA1UdIwQYMBaAFBA/qL3/+58FVwcsRzMrganoDt01
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEQ2OS8wRTE3N0Q1QTA1
OEMxMUVEQURENjYwMTFDNEY5QUUwMi9FRC1vdmZfN253VlhCeXhITXl1QnFlZ08z
VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0VELW92Zl83bndWWEJ5eEhNeXVCcWVnTzNUVS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDBENjkvMEUxNzdENUEwNThDMTFFREFERDY2MDExQzRGOUFFMDIvN0I4Q0JEN0Ux
QzJCMTFGMEI1NERENTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E
HjAcMBoEAgABMBQwDAMEAGftZQMEA2ftYAMEAKM19zANBgkqhkiG9w0BAQsFAAOC
AQEANBhzQUuz5uPbmPmRVlw8i2abdJ3PgELnXinplGQbO2S5YEcWCV3q2hIkaSf9
dvbPCwzHJFDv8D7Ev9jQ1Fyo0fTwDtr9y3c2y9Nj5W4qqUidO7mRNsLaJ9OyXnOl
qCoApuO/R4daTgLV+L3w36sWwIMJI0mX27spJY6Q2d9rTU9xo6eXusLyGijlSm9W
U5BkERYbjb7Htw1b7zF7LahWMFX388HWROXiSmkVcfTGtdkp84u77B/NwetP8Gkk
oIxrJqhzD2r3+xKzzz6HighaUTQ04VhY3U8JMSvkQAlFyBLMJ9LpgVUy8GIAXn34
Dn/S9gWET2mAuoVv8ZoVFWsTqQ==
-----END CERTIFICATE-----
Generated at Fri May 16 08:23:14 2025 by rpki-client