Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/9CA440CEE15511EF83CBD63CC4F9AE02.roa
File: 9CA440CEE15511EF83CBD63CC4F9AE02.roa (raw, json)
Hash identifier: MkFaiBewbi1Lbwii5h/O+TE/1bcvewv7aUQF3Zd0mUw=
Subject key identifier: 8E:B7:36:89:06:39:71:E9:3D:F3:72:0C:35:9D:51:C4:AB:14:4C:27
Certificate issuer: /CN=A918213B/serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF
Certificate serial: 02EB
Authority key identifier: DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/9CA440CEE15511EF83CBD63CC4F9AE02.roa
Signing time: Sun 02 Feb 2025 11:05:29 +0000
ROA not before: Sun 02 Feb 2025 11:05:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 138640
IP address blocks: 103.185.226.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Feb 2025 11:08:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 747 (0x2eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918213B, serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF
Validity
Not Before: Feb 2 11:05:29 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=679f5179-6650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8a:a4:7b:f9:99:08:57:d2:1c:3a:22:5f:35:
df:1f:f0:ae:5f:54:4b:96:ae:b9:5c:e4:bc:16:48:
d5:26:52:75:a0:68:2b:b7:a0:c7:41:cf:4b:fb:c3:
bb:8b:df:ad:d2:49:c9:f5:32:54:a0:46:23:1a:30:
bb:05:1f:29:96:26:99:74:28:d4:1a:bf:ac:98:6f:
1f:89:05:3c:f8:1b:76:99:34:93:bb:2e:e6:22:05:
38:dd:c4:57:24:e7:62:a9:a3:6a:9c:57:f2:c5:66:
dc:ca:cf:38:8b:85:97:e6:9e:d8:cd:4e:be:bd:82:
6f:c4:e6:de:1e:b7:71:37:1c:e4:9b:c6:31:68:e5:
b0:ac:d0:c8:f8:00:9f:d0:cc:6e:63:6b:1f:90:9d:
18:55:83:13:e3:43:fd:53:cc:ab:14:76:0a:8c:a9:
26:ac:55:ba:62:1b:8e:fe:a7:7f:d9:0e:c1:e5:31:
1d:64:b7:cd:78:d2:26:22:7a:7b:03:34:fb:52:5a:
e4:2a:6c:40:c7:63:9b:5b:1a:1f:69:e2:1d:59:ab:
59:48:68:0e:8e:ef:0b:35:44:72:46:e9:29:bd:bc:
e0:69:40:6f:b9:68:04:b9:63:99:cf:86:16:18:f5:
c3:b3:db:a6:0c:0a:fd:40:fb:79:fd:f2:01:8b:eb:
f3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:B7:36:89:06:39:71:E9:3D:F3:72:0C:35:9D:51:C4:AB:14:4C:27
X509v3 Authority Key Identifier:
keyid:DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/9CA440CEE15511EF83CBD63CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.185.226.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:89:82:0c:87:66:66:29:33:4e:b5:34:4e:18:bd:d8:69:3a:
a8:b9:eb:95:83:25:21:d4:5f:4d:dc:d9:dc:fd:b7:15:44:1c:
ed:fb:61:37:06:01:54:3a:8f:35:e0:c7:5e:b9:a7:73:b0:bf:
31:20:47:cc:82:12:e4:22:45:56:c0:ea:45:f8:d3:72:0e:fc:
60:cc:f2:33:37:57:2d:20:f1:4d:38:66:0d:43:81:be:11:46:
61:04:36:43:df:18:dd:a1:b3:6d:a8:60:d6:e0:17:ee:3d:5a:
d8:1e:95:33:80:6a:34:02:53:4b:f8:38:0e:45:6d:07:66:d3:
01:fa:4f:9e:88:83:b3:66:a6:9a:41:3b:3c:e3:97:18:58:1e:
0f:e0:5f:56:cb:07:53:eb:9c:43:49:e8:7d:42:04:2e:7b:fd:
ba:e8:02:65:4f:ed:78:37:be:4c:c1:7d:72:65:a5:1a:ef:0d:
c4:6d:f1:63:1a:08:3d:c6:e7:3a:4d:a0:80:26:10:87:89:27:
45:5a:d6:44:b6:5c:21:1c:47:26:15:23:06:36:0b:3d:43:a1:
d8:dd:48:76:b8:d9:03:61:1f:33:ab:0d:09:67:29:88:7b:ad:
c7:34:5f:a2:2a:48:ff:c3:02:49:47:b7:f6:52:5e:d7:d2:94:
ae:39:8a:f1
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICAuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
ODIxM0IxMTAvBgNVBAUTKERCOTJENDNDOTA2MTI1MDVCM0FGNDZFOTY0QTY4Q0M5
RjVGM0IyQUYwHhcNMjUwMjAyMTEwNTI5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzlmNTE3OS02NjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAroqke/mZCFfSHDoiXzXfH/CuX1RLlq65XOS8FkjVJlJ1oGgrt6DHQc9L+8O7
i9+t0knJ9TJUoEYjGjC7BR8pliaZdCjUGr+smG8fiQU8+Bt2mTSTuy7mIgU43cRX
JOdiqaNqnFfyxWbcys84i4WX5p7YzU6+vYJvxObeHrdxNxzkm8YxaOWwrNDI+ACf
0MxuY2sfkJ0YVYMT40P9U8yrFHYKjKkmrFW6YhuO/qd/2Q7B5TEdZLfNeNImInp7
AzT7UlrkKmxAx2ObWxofaeIdWatZSGgOju8LNURyRukpvbzgaUBvuWgEuWOZz4YW
GPXDs9umDAr9QPt5/fIBi+vz/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFI63NokG
OXHpPfNyDDWdUcSrFEwnMB8GA1UdIwQYMBaAFNuS1DyQYSUFs69G6WSmjMn187Kv
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjEzQi8wNzA3NkZBMEQ5
QzkxMUVDQkUwMDdGNkFDNEY5QUUwMi8yNUxVUEpCaEpRV3pyMGJwWkthTXlmWHpz
cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzI1TFVQSkJoSlFXenIwYnBaS2FNeWZYenNxOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
ODIxM0IvMDcwNzZGQTBEOUM5MTFFQ0JFMDA3RjZBQzRGOUFFMDIvOUNBNDQwQ0VF
MTU1MTFFRjgzQ0JENjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAFnueIwDQYJKoZIhvcNAQELBQADggEBAAuJggyHZmYpM061
NE4YvdhpOqi565WDJSHUX03c2dz9txVEHO37YTcGAVQ6jzXgx165p3OwvzEgR8yC
EuQiRVbA6kX403IO/GDM8jM3Vy0g8U04Zg1Dgb4RRmEENkPfGN2hs22oYNbgF+49
WtgelTOAajQCU0v4OA5FbQdm0wH6T56Ig7NmpppBOzzjlxhYHg/gX1bLB1PrnENJ
6H1CBC57/broAmVP7Xg3vkzBfXJlpRrvDcRt8WMaCD3G5zpNoIAmEIeJJ0Va1kS2
XCEcRyYVIwY2Cz1DodjdSHa42QNhHzOrDQlnKYh7rcc0X6IqSP/DAklHt/ZSXtfS
lK45ivE=
-----END CERTIFICATE-----
Generated at Thu May 15 08:42:12 2025 by rpki-client