Route Origin Authorization
$ rpki-client -vvf rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa
File: 3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa (raw, json)
Hash identifier: mecf2sfynvTxkZEeUlfKj6E8An76xny+3p1x+/fmF0k=
Subject key identifier: 4B:80:90:95:38:E3:6D:C1:E6:BF:AF:62:47:B3:1D:CA:68:3A:17:3E
Certificate issuer: /CN=A91872ED0001/serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1
Certificate serial: 1C7383E5A5E53843539F1E85E815E2A2A68230CC
Authority key identifier: C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer
Subject info access: rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa
Signing time: Sat 18 Oct 2025 12:00:02 +0000
ROA not before: Sat 18 Oct 2025 11:55:02 +0000
ROA not after: Sat 17 Oct 2026 12:00:02 +0000
asID: 45163
IP address blocks: 203.147.108.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 20 Oct 2025 00:00:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:73:83:e5:a5:e5:38:43:53:9f:1e:85:e8:15:e2:a2:a6:82:30:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91872ED0001, serialNumber=C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1
Validity
Not Before: Oct 18 11:55:02 2025 GMT
Not After : Oct 17 12:00:02 2026 GMT
Subject: CN=4B80909538E36DC1E6BFAF6247B31DCA683A173E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:68:eb:b2:04:25:6f:1e:1a:3e:fc:ca:ca:2a:
3a:68:53:7c:7d:39:3a:f8:7b:9c:41:9c:bb:41:22:
4d:f7:5e:56:bb:01:f0:2a:bd:f3:1f:d4:3e:dd:1e:
c2:74:c6:94:c9:a6:f8:f8:89:26:65:26:12:21:1d:
dc:31:a3:af:9c:d3:d3:ae:b4:4d:4e:ef:23:6d:d4:
32:ea:aa:3a:87:49:91:51:f5:d0:5d:dc:a7:19:43:
a0:d5:13:7b:66:69:ef:e0:8a:75:d3:37:92:54:a9:
eb:b7:90:81:fe:e4:9d:93:0d:a0:6d:47:c8:b9:10:
9f:f5:17:57:d3:e0:2e:9f:3c:9d:a3:8e:c6:45:8a:
f9:03:61:e5:36:e1:68:8e:46:2f:5b:09:65:12:aa:
3d:ae:ac:5d:f7:bc:e1:3f:30:a3:0f:ec:32:7c:dd:
b4:eb:1f:ae:67:00:2c:be:59:a8:ed:e6:3c:d4:ec:
83:25:2e:9f:7c:82:46:be:38:52:c7:45:05:8e:f4:
8d:64:d8:7c:7e:aa:ec:ee:61:b5:af:1a:a2:bf:58:
7b:7e:84:91:42:82:b3:c6:a1:6e:31:ae:5c:15:17:
63:79:44:9c:4a:ea:ea:a2:92:b6:4c:4b:17:e9:f3:
89:ce:3e:57:b0:c0:60:d7:cd:fa:8d:9d:32:63:a1:
62:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:80:90:95:38:E3:6D:C1:E6:BF:AF:62:47:B3:1D:CA:68:3A:17:3E
X509v3 Authority Key Identifier:
keyid:C0:90:6A:19:A7:DE:34:9B:FA:2B:32:B3:C3:EB:4C:2D:17:76:0C:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/C0906A19A7DE349BFA2B32B3C3EB4C2D17760CE1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJBqGafeNJv6KzKzw-tMLRd2DOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.rand.apnic.net/repo/A91872ED0001/0/3230332e3134372e3130382e302f32332d3233203d3e203435313633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.147.108.0/23
Signature Algorithm: sha256WithRSAEncryption
59:9d:4b:d7:0e:06:bd:9b:68:6f:f3:53:15:cb:5b:ab:a7:14:
9c:83:a0:6b:06:19:b4:e8:5b:ac:61:9e:b3:ed:71:34:93:6e:
ec:13:32:23:c9:22:d0:3f:62:0a:41:4a:e2:d1:10:ed:5b:bd:
0b:6d:ec:f0:76:cf:68:90:2d:48:57:82:de:19:57:8d:de:66:
56:e4:63:69:ce:19:1a:40:bc:6b:5b:19:d6:33:7f:f2:db:8a:
0b:fb:f9:11:46:fe:d3:a1:75:d5:0b:19:dc:ff:af:d6:86:07:
f4:b3:62:33:79:43:e0:93:32:61:2b:69:85:d2:f0:7b:cf:95:
95:88:b3:99:80:e6:c8:78:b2:5d:55:73:14:25:bd:75:02:95:
c2:b2:62:de:b6:97:5d:4c:f0:c5:34:5e:36:b8:c3:09:3c:e3:
72:17:4d:47:2a:47:29:22:9b:c6:3b:79:76:5e:dc:5f:12:5b:
c3:8b:f2:f2:f6:bb:0f:a5:3d:11:27:1f:dd:21:d7:34:e7:a5:
eb:73:50:b1:c2:4e:13:cc:e2:24:7b:38:50:1c:6a:d5:d4:45:
08:9f:e8:fd:1b:5e:c5:d4:6c:ca:bb:90:b4:b6:89:e4:c0:7e:
e8:35:1a:4e:ba:c6:d6:6c:2a:a6:0a:17:25:65:f4:a0:58:17:
e4:87:41:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgIUHHOD5aXlOENTnx6F6BXioqaCMMwwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODcyRUQwMDAxMTEwLwYDVQQFEyhDMDkwNkExOUE3
REUzNDlCRkEyQjMyQjNDM0VCNEMyRDE3NzYwQ0UxMB4XDTI1MTAxODExNTUwMloX
DTI2MTAxNzEyMDAwMlowMzExMC8GA1UEAxMoNEI4MDkwOTUzOEUzNkRDMUU2QkZB
RjYyNDdCMzFEQ0E2ODNBMTczRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBANdo67IEJW8eGj78ysoqOmhTfH05Ovh7nEGcu0EiTfdeVrsB8Cq98x/UPt0e
wnTGlMmm+PiJJmUmEiEd3DGjr5zT0660TU7vI23UMuqqOodJkVH10F3cpxlDoNUT
e2Zp7+CKddM3klSp67eQgf7knZMNoG1HyLkQn/UXV9PgLp88naOOxkWK+QNh5Tbh
aI5GL1sJZRKqPa6sXfe84T8wow/sMnzdtOsfrmcALL5ZqO3mPNTsgyUun3yCRr44
UsdFBY70jWTYfH6q7O5hta8aor9Ye36EkUKCs8ahbjGuXBUXY3lEnErq6qKStkxL
F+nzic4+V7DAYNfN+o2dMmOhYh8CAwEAAaOCAgkwggIFMB0GA1UdDgQWBBRLgJCV
OONtwea/r2JHsx3KaDoXPjAfBgNVHSMEGDAWgBTAkGoZp940m/orMrPD60wtF3YM
4TAOBgNVHQ8BAf8EBAMCB4AwbQYDVR0fBGYwZDBioGCgXoZccnN5bmM6Ly9ycGtp
LnJhbmQuYXBuaWMubmV0L3JlcG8vQTkxODcyRUQwMDAxLzAvQzA5MDZBMTlBN0RF
MzQ5QkZBMkIzMkIzQzNFQjRDMkQxNzc2MENFMS5jcmwwfgYIKwYBBQUHAQEEcjBw
MG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkv
QjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvd0pCcUdhZmVOSnY2S3pL
enctdE1MUmQyRE9FLmNlcjCBiAYIKwYBBQUHAQsEfDB6MHgGCCsGAQUFBzALhmxy
c3luYzovL3Jwa2kucmFuZC5hcG5pYy5uZXQvcmVwby9BOTE4NzJFRDAwMDEvMC8z
MjMwMzMyZTMxMzQzNzJlMzEzMDM4MmUzMDJmMzIzMzJkMzIzMzIwM2QzZTIwMzQz
NTMxMzYzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcB
BwEB/wQQMA4wDAQCAAEwBgMEAcuTbDANBgkqhkiG9w0BAQsFAAOCAQEAWZ1L1w4G
vZtob/NTFctbq6cUnIOgawYZtOhbrGGes+1xNJNu7BMyI8ki0D9iCkFK4tEQ7Vu9
C23s8HbPaJAtSFeC3hlXjd5mVuRjac4ZGkC8a1sZ1jN/8tuKC/v5EUb+06F11QsZ
3P+v1oYH9LNiM3lD4JMyYStphdLwe8+VlYizmYDmyHiyXVVzFCW9dQKVwrJi3raX
XUzwxTReNrjDCTzjchdNRypHKSKbxjt5dl7cXxJbw4vy8va7D6U9EScf3SHXNOel
63NQscJOE8ziJHs4UBxq1dRFCJ/o/RtexdRsyruQtLaJ5MB+6DUaTrrG1mwqpgoX
JWX0oFgX5IdBZg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 13:59:34 2025 by rpki-client