Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/787BD9B2251811F0A4702A22C4F9AE02.roa
File: 787BD9B2251811F0A4702A22C4F9AE02.roa (raw, json)
Hash identifier: 3oyxfLqcRCV1NIEcUmIbpCPHkN5iyOxREtxx/rIa9S0=
Subject key identifier: 26:7F:D6:9E:9C:DC:FF:60:F5:4D:E2:DB:7A:BD:CF:CC:1F:3E:10:52
Certificate issuer: /CN=A916AC73/serialNumber=28CD09E650C269EC7D2BC9FEF7D566C1012D204C
Certificate serial: 02
Authority key identifier: 28:CD:09:E6:50:C2:69:EC:7D:2B:C9:FE:F7:D5:66:C1:01:2D:20:4C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/787BD9B2251811F0A4702A22C4F9AE02.roa
Signing time: Tue 29 Apr 2025 16:39:08 +0000
ROA not before: Tue 29 Apr 2025 16:39:08 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 17639
IP address blocks: 163.223.30.0/23 maxlen: 23
163.223.30.0/24 maxlen: 24
163.223.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Apr 2025 07:53:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916AC73, serialNumber=28CD09E650C269EC7D2BC9FEF7D566C1012D204C
Validity
Not Before: Apr 29 16:39:08 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=681100ac-9ee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:61:83:95:67:bc:ac:d7:0c:46:54:67:6a:fd:
ad:53:10:52:c8:09:94:25:47:50:18:35:94:4f:91:
60:c6:61:45:a7:36:91:ac:5a:34:2c:34:b6:03:44:
18:69:84:c7:f5:99:c2:35:03:08:cf:ff:aa:26:99:
08:d6:45:5d:ca:4a:63:bc:47:ee:25:79:39:bc:19:
18:57:67:4d:b9:54:45:77:f4:bb:85:d4:ef:ac:4a:
7e:66:3b:31:80:c7:b2:7c:4e:e0:27:77:44:50:ef:
1b:a8:43:37:e5:76:5f:4c:94:b5:a9:7c:cd:80:8b:
09:1a:99:92:d0:d9:37:6b:48:35:1d:4e:d8:83:98:
9d:f1:bd:7a:c7:6f:ed:8a:9a:cf:07:44:f8:e1:3b:
2d:c2:fd:d6:20:77:da:82:fa:ea:15:8f:f4:62:34:
18:2e:f8:62:06:95:85:67:e0:41:67:c5:ad:c4:8e:
21:48:43:30:4b:f9:d2:02:2e:d9:3c:66:1d:28:83:
bc:cb:c7:58:89:6c:d6:19:72:bc:4a:26:12:4c:87:
1f:1b:78:04:2c:0a:4f:77:0c:16:2d:97:2c:a1:6b:
fe:21:f8:a3:44:94:df:64:ce:3e:57:92:4e:56:75:
9d:ad:51:96:fa:37:70:60:77:ce:0a:6b:24:c9:90:
e3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:7F:D6:9E:9C:DC:FF:60:F5:4D:E2:DB:7A:BD:CF:CC:1F:3E:10:52
X509v3 Authority Key Identifier:
keyid:28:CD:09:E6:50:C2:69:EC:7D:2B:C9:FE:F7:D5:66:C1:01:2D:20:4C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/787BD9B2251811F0A4702A22C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.223.30.0/23
Signature Algorithm: sha256WithRSAEncryption
59:2d:39:69:a9:86:9e:a1:a9:ac:99:07:2b:4d:50:01:68:d5:
5a:3f:43:77:32:18:fe:0a:93:37:12:a4:dc:a2:47:25:c4:fa:
b3:ab:3a:05:59:1d:37:45:d2:04:0b:be:3d:dc:92:06:28:42:
8d:bb:d8:d7:14:5e:cf:4f:08:7b:09:d9:38:c1:92:38:e4:05:
fc:d6:84:05:60:76:65:32:c7:b3:17:58:d6:22:2b:49:34:d7:
1b:58:97:b2:0b:7d:35:74:a0:78:35:da:40:3d:4f:f9:f0:49:
49:13:7c:82:c3:d2:4c:19:c3:d4:cc:75:0b:ea:68:87:d1:5a:
17:57:fd:25:84:fc:f4:8b:5b:d9:d5:0c:96:80:51:24:60:b0:
31:4a:62:5a:e6:ba:b9:47:53:b3:ac:84:06:5c:ff:0f:65:99:
64:ea:89:f9:53:b8:33:7c:c6:95:53:c0:6a:e6:03:41:26:f5:
f6:db:64:74:cb:03:32:43:08:72:0e:6c:1e:68:91:6f:67:53:
23:68:78:18:d6:9b:91:ac:ce:3e:2a:68:d4:3c:92:b2:23:f1:
8f:52:ce:20:6c:fd:40:98:a4:76:5d:67:e0:0f:6f:7b:ca:b6:
a2:7c:72:f0:49:8b:2c:f8:45:8d:a7:46:6d:a5:56:90:10:8a:
21:58:8d:ee
-----BEGIN CERTIFICATE-----
MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2
QUM3MzExMC8GA1UEBRMoMjhDRDA5RTY1MEMyNjlFQzdEMkJDOUZFRjdENTY2QzEw
MTJEMjA0QzAeFw0yNTA0MjkxNjM5MDhaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV
BAMTDTY4MTEwMGFjLTllZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDTYYOVZ7ys1wxGVGdq/a1TEFLICZQlR1AYNZRPkWDGYUWnNpGsWjQsNLYDRBhp
hMf1mcI1AwjP/6ommQjWRV3KSmO8R+4leTm8GRhXZ025VEV39LuF1O+sSn5mOzGA
x7J8TuAnd0RQ7xuoQzfldl9MlLWpfM2AiwkamZLQ2TdrSDUdTtiDmJ3xvXrHb+2K
ms8HRPjhOy3C/dYgd9qC+uoVj/RiNBgu+GIGlYVn4EFnxa3EjiFIQzBL+dICLtk8
Zh0og7zLx1iJbNYZcrxKJhJMhx8beAQsCk93DBYtlyyha/4h+KNElN9kzj5Xkk5W
dZ2tUZb6N3Bgd84KayTJkOPnAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJn/Wnpzc
/2D1TeLber3PzB8+EFIwHwYDVR0jBBgwFoAUKM0J5lDCaex9K8n+99VmwQEtIEww
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBQzczLzc3NTEyREMyMjUx
NzExRjBCMDdGODYxREM0RjlBRTAyL0tNMEo1bERDYWV4OUs4bi05OVZtd1FFdElF
dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvS00wSjVsRENhZXg5SzhuLTk5Vm13UUV0SUV3LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2
QUM3My83NzUxMkRDMjI1MTcxMUYwQjA3Rjg2MURDNEY5QUUwMi83ODdCRDlCMjI1
MTgxMUYwQTQ3MDJBMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAaPfHjANBgkqhkiG9w0BAQsFAAOCAQEAWS05aamGnqGprJkH
K01QAWjVWj9DdzIY/gqTNxKk3KJHJcT6s6s6BVkdN0XSBAu+PdySBihCjbvY1xRe
z08IewnZOMGSOOQF/NaEBWB2ZTLHsxdY1iIrSTTXG1iXsgt9NXSgeDXaQD1P+fBJ
SRN8gsPSTBnD1Mx1C+poh9FaF1f9JYT89Itb2dUMloBRJGCwMUpiWua6uUdTs6yE
Blz/D2WZZOqJ+VO4M3zGlVPAauYDQSb19ttkdMsDMkMIcg5sHmiRb2dTI2h4GNab
kazOPipo1DySsiPxj1LOIGz9QJikdl1n4A9ve8q2onxy8EmLLPhFjadGbaVWkBCK
IViN7g==
-----END CERTIFICATE-----
Generated at Sun May 18 01:00:28 2025 by rpki-client