Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/F0C772307F7E11F087D1053FC4F9AE02.roa
File: F0C772307F7E11F087D1053FC4F9AE02.roa (raw, json)
Hash identifier: DvNrhC8a3h1mD9aZVMuZoFYwKlsezNJ86QOyfNQr7Ak=
Subject key identifier: 48:B6:E0:B1:83:C2:82:50:1B:89:B4:C3:B6:7C:12:95:D8:08:39:B9
Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD
Certificate serial: 06D5
Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/F0C772307F7E11F087D1053FC4F9AE02.roa
Signing time: Fri 17 Oct 2025 14:05:26 +0000
ROA not before: Fri 17 Oct 2025 14:05:26 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 55201
IP address blocks: 2401:d3c0::/32 maxlen: 32
2401:d3c0::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 20 Oct 2025 06:03:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1749 (0x6d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91B65E6, serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD
Validity
Not Before: Oct 17 14:05:26 2025 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=68f24d25-560c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:31:1d:5a:ca:15:70:20:dd:3e:1d:ac:1e:c7:
c2:3a:46:ab:47:37:f0:ff:11:35:e8:15:35:95:e8:
6b:57:9b:04:fc:a9:3c:e3:e1:fb:6b:1f:de:ac:79:
e2:44:38:90:f2:7d:e9:61:03:d6:fd:07:22:23:35:
52:79:a8:be:0f:ff:01:c1:9f:02:5d:04:49:3b:89:
92:02:38:d5:19:00:02:69:91:89:ee:55:da:f0:01:
7c:3b:52:90:27:de:45:1b:94:31:b8:cd:ce:09:49:
28:a4:d8:60:ff:d3:99:b2:12:19:80:9b:1b:a6:3e:
81:d3:77:fe:f8:0e:f7:06:b4:48:86:8d:ed:72:e2:
e6:74:c2:79:6c:e1:2b:35:a2:78:30:f0:27:65:0c:
68:f3:d7:e1:68:8e:b3:ec:8f:9c:79:00:b6:69:96:
af:ed:c7:80:40:b7:fd:81:11:ed:1a:b5:7f:c1:3c:
1c:04:b7:bf:1e:a3:fe:35:fb:5f:43:42:47:db:6c:
d8:27:26:8c:2a:9b:86:6b:64:95:18:a6:fd:e0:f4:
35:a1:5f:67:e6:99:b2:2e:95:a8:c2:a4:e9:93:f1:
f1:c6:6d:08:ff:3d:36:56:39:79:58:c2:05:0a:39:
39:6c:10:8a:d8:51:60:bf:d0:13:5b:0f:0b:bc:58:
94:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B6:E0:B1:83:C2:82:50:1B:89:B4:C3:B6:7C:12:95:D8:08:39:B9
X509v3 Authority Key Identifier:
keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/F0C772307F7E11F087D1053FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:d3c0::/32
Signature Algorithm: sha256WithRSAEncryption
32:90:29:32:d0:21:ec:4f:f2:a5:8b:7c:16:6b:c7:26:a5:9a:
dc:18:98:ae:5d:2c:16:a4:fe:57:a3:05:11:42:b9:ed:86:03:
33:66:34:08:17:1d:60:f6:d3:c1:3c:7b:95:3b:5e:f3:2f:87:
ea:00:13:3d:09:3f:a7:2b:ba:0b:f3:1e:43:3f:70:41:48:fe:
06:17:f2:fc:05:f6:72:73:37:7b:a2:4d:f7:f3:77:b7:54:70:
b1:24:23:4c:ae:3a:5f:a1:6a:30:f2:2b:50:b8:6a:fc:39:48:
09:78:de:5b:ba:4c:c5:ad:b6:06:9f:b6:e0:9e:0a:75:86:62:
dc:c3:67:42:ce:5b:09:e8:2d:13:2f:b3:ab:37:8d:68:3b:1b:
fe:3c:f9:de:51:65:61:2d:7f:7b:99:d3:e7:3e:11:8d:14:fd:
8f:08:25:12:6d:41:74:3a:0d:0c:de:91:fc:c9:67:d3:cb:e0:
c2:fa:8c:92:72:f0:cd:0d:a9:05:9c:97:05:63:00:b8:ca:18:
45:0b:c9:7b:eb:a4:5e:d4:e3:c7:42:c7:69:2c:85:4d:d5:90:
f6:fc:7a:39:ff:f7:cd:1d:02:72:1f:5b:1a:6a:ea:fb:a9:5e:
3e:b0:76:c4:3d:7e:9c:bc:24:1b:70:e7:16:e8:f8:78:0b:8d:
8d:53:7f:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 07:54:46 2025 by rpki-client