Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/78F2E944251811F0A4702A22C4F9AE02.roa
File: 78F2E944251811F0A4702A22C4F9AE02.roa (raw, json)
Hash identifier: G2pcvdLa00jn+PvSpB8do3xiwLpMCz2vunivJzWgNVI=
Subject key identifier: E5:A0:C1:9F:74:4B:B7:2E:0B:14:1C:D3:77:21:2A:61:F9:7D:41:88
Certificate issuer: /CN=A916AC73/serialNumber=28CD09E650C269EC7D2BC9FEF7D566C1012D204C
Certificate serial: 03
Authority key identifier: 28:CD:09:E6:50:C2:69:EC:7D:2B:C9:FE:F7:D5:66:C1:01:2D:20:4C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/78F2E944251811F0A4702A22C4F9AE02.roa
Signing time: Tue 29 Apr 2025 16:39:09 +0000
ROA not before: Tue 29 Apr 2025 16:39:09 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 9304
IP address blocks: 163.223.30.0/23 maxlen: 23
163.223.30.0/24 maxlen: 24
163.223.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Apr 2025 07:53:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A916AC73, serialNumber=28CD09E650C269EC7D2BC9FEF7D566C1012D204C
Validity
Not Before: Apr 29 16:39:09 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=681100ac-ffcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b0:5f:f8:6a:c9:90:65:12:ea:cc:c2:1c:e6:
d5:c2:0a:1f:99:55:ec:90:96:fd:2f:6b:15:a3:16:
6d:f5:49:9f:90:ff:69:a9:fa:31:8b:17:b1:bb:70:
21:9c:3b:70:fb:88:30:a1:ab:22:c2:37:a0:09:ac:
bb:f0:d4:8a:75:22:a1:57:d5:a7:06:d2:09:11:9a:
c2:8b:02:26:c2:db:65:92:a1:b4:2d:55:9f:09:62:
53:b8:5a:34:27:b5:ab:a2:12:0a:d5:19:2c:e1:cd:
dc:87:e3:18:9d:24:c7:cf:ce:f6:07:9e:c4:8e:a6:
96:9d:b9:4e:a4:76:1e:3c:43:75:c1:55:47:db:55:
af:db:9c:f7:a6:f5:27:78:33:8e:19:71:83:18:2c:
9c:4a:c7:d1:c8:38:94:e8:ec:bb:6f:72:ed:8a:ee:
9a:d7:19:df:12:61:e5:bf:2f:bb:6b:ab:5f:90:c0:
48:29:de:10:0f:e2:76:68:5d:d9:c2:81:0b:3e:79:
2d:4e:1a:09:ad:c0:e0:eb:b7:8d:be:01:97:c1:f6:
a8:bf:e2:6b:b7:69:dd:2f:5e:a0:67:bf:1a:a0:b0:
75:f7:ad:fc:02:b5:e6:ee:8b:f8:49:1c:67:5b:f9:
47:12:87:ca:5b:de:13:04:21:c4:f1:17:8b:af:2c:
c0:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:A0:C1:9F:74:4B:B7:2E:0B:14:1C:D3:77:21:2A:61:F9:7D:41:88
X509v3 Authority Key Identifier:
keyid:28:CD:09:E6:50:C2:69:EC:7D:2B:C9:FE:F7:D5:66:C1:01:2D:20:4C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/78F2E944251811F0A4702A22C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.223.30.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:c4:40:ff:11:ab:6e:29:d4:a5:3a:83:40:ba:89:5b:34:ec:
bd:40:14:aa:63:23:5e:84:e3:51:60:db:7e:75:6a:f3:64:ca:
32:c8:b9:0f:c0:4e:7a:a6:aa:94:58:a8:29:35:0f:e7:48:85:
2e:f9:f7:51:53:1c:40:6f:1e:da:ea:45:06:d5:c0:db:c0:0d:
c3:5b:37:24:48:be:71:d0:40:de:0e:03:78:21:c7:3c:82:67:
de:e0:10:87:7d:a9:97:b6:ad:7b:6d:02:09:44:06:86:4d:e9:
15:89:88:39:d8:b4:8d:9c:b3:d8:04:97:d4:dc:65:56:66:73:
95:52:fc:37:03:db:9a:fd:ea:5d:1c:98:f3:5a:2b:fa:5b:e4:
15:7c:f9:a3:30:0d:86:8c:5b:c0:38:23:80:6f:e2:80:8c:fd:
fc:24:d2:59:34:8a:17:b2:42:a5:dd:ca:ff:2b:1d:0a:69:aa:
ea:08:95:24:00:dd:57:96:4c:fa:4b:ae:87:58:52:e8:25:33:
68:f9:3a:da:34:e1:dd:7c:bb:ac:3e:4e:b4:f5:b0:59:8f:26:
79:6c:4d:11:51:f4:4d:7f:0f:e0:5f:31:9e:72:4d:12:16:18:
b0:48:93:8f:c5:01:af:ac:6f:85:3d:f8:e5:e5:06:3a:85:42:
ca:04:b1:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 18:11:05 2025 by rpki-client