Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/41245E4A547E11F099318246C4F9AE02.roa
File: 41245E4A547E11F099318246C4F9AE02.roa (raw, json)
Hash identifier: l6LZp/Tf457DB7GsKSiExItW0/LvWTsMf1aWLcM7E3E=
Subject key identifier: 7B:BE:D0:52:7C:D7:64:1F:6A:99:30:D7:6A:46:5E:33:52:51:DE:88
Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138
Certificate serial: 03A3
Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/41245E4A547E11F099318246C4F9AE02.roa
Signing time: Sun 29 Jun 2025 00:16:09 +0000
ROA not before: Sun 29 Jun 2025 00:16:08 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 834
IP address blocks: 202.155.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Jun 2025 14:34:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 931 (0x3a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9192C18, serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138
Validity
Not Before: Jun 29 00:16:08 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=686085c8-e183
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1d:a9:36:34:d7:fb:44:1d:a8:93:d8:29:a8:
b6:d7:58:97:41:29:42:0b:dd:5d:90:e8:c0:49:2b:
99:9d:36:46:b4:85:ce:b9:59:49:b9:a0:fb:64:6a:
b1:f4:5f:ee:b1:85:75:14:77:d1:cc:7c:76:bf:36:
4d:85:b7:30:9a:a5:97:39:42:a2:04:7a:f6:01:1a:
52:8f:8a:9e:87:c6:60:a2:87:20:72:63:f7:90:29:
2b:54:68:6a:6e:80:8c:de:88:57:66:4a:37:e3:7d:
18:c8:2b:e9:3a:bb:82:43:b9:09:d2:24:e4:67:57:
d6:83:2c:72:af:9d:39:15:90:1b:3d:4a:64:48:1a:
1b:68:3d:ee:a9:58:f3:62:0c:15:c2:56:e5:29:76:
19:90:f9:b6:43:37:e8:e3:70:ea:ea:87:9d:d9:16:
43:92:c8:58:02:67:22:4c:17:f8:9d:b1:d3:f5:c0:
65:cd:cc:02:76:48:b6:fc:50:b8:6e:c7:75:4c:d1:
e2:7c:18:72:d3:58:f9:46:bf:38:28:1a:bc:24:83:
db:c9:cc:1b:88:24:c1:58:1f:04:d3:41:59:0b:3d:
e6:08:cb:57:e6:a2:91:00:f2:0f:14:22:e7:9d:13:
53:ba:23:ca:97:b5:fc:35:44:e8:ca:9e:3a:02:68:
9e:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:BE:D0:52:7C:D7:64:1F:6A:99:30:D7:6A:46:5E:33:52:51:DE:88
X509v3 Authority Key Identifier:
keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/41245E4A547E11F099318246C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.155.143.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:dc:ae:1d:1b:b0:e9:f9:c9:05:91:bf:c4:77:85:4e:f4:54:
02:d4:2b:ed:46:48:9a:9f:9c:f8:ac:4b:21:48:37:ea:64:b1:
1a:bf:37:50:1c:18:cf:84:3b:cc:2c:81:03:27:f4:03:82:c9:
0f:ca:07:d7:fe:c3:27:68:96:36:e6:66:05:5f:12:c6:6d:d3:
33:94:c9:f6:c8:68:fc:9e:59:bf:3e:e5:e0:03:0c:a6:8d:97:
2f:42:ba:f2:ee:66:6e:dc:f1:d1:46:24:9a:67:ed:75:6b:68:
43:77:5b:b0:72:75:92:e6:4a:04:4a:9d:85:ac:cb:ac:10:53:
f0:bb:2c:02:34:27:10:6e:15:48:23:37:d6:9c:7e:ef:7f:70:
f8:2b:fb:24:4b:0c:32:7d:e2:94:4e:da:05:60:5c:1f:2c:e0:
9c:79:7c:03:d2:b3:55:0f:3e:f3:83:4d:3f:3c:b7:66:17:76:
25:28:90:51:cf:52:93:33:af:8b:7e:fe:a9:44:85:5a:12:e4:
fd:6b:57:94:9f:21:01:4a:e2:96:51:75:bf:36:4b:85:37:6e:
33:a4:d5:e5:dd:1b:aa:06:f8:b7:86:5f:db:5c:93:61:88:32:
cc:f0:f0:85:c4:61:32:a5:57:f8:fc:e9:b7:4e:f3:5b:d0:e0:
3d:53:8a:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 22:40:39 2025 by rpki-client