Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/BEB7408EE83B11EFB1605849C4F9AE02.roa
File: BEB7408EE83B11EFB1605849C4F9AE02.roa (raw, json)
Hash identifier: Z4p7v+ZhnIE2qLITgrfMscCjgPC2t5Fxz57vHwAzBcc=
Subject key identifier: 25:65:09:D2:D9:AB:27:F4:F3:10:6D:F1:55:C7:63:DF:44:DD:FC:B5
Certificate issuer: /CN=A9111FFD/serialNumber=104CF87063B5EABF34DE4E25FECE9AB5AF736C14
Certificate serial: 0A
Authority key identifier: 10:4C:F8:70:63:B5:EA:BF:34:DE:4E:25:FE:CE:9A:B5:AF:73:6C:14
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/BEB7408EE83B11EFB1605849C4F9AE02.roa
Signing time: Tue 11 Feb 2025 05:47:57 +0000
ROA not before: Tue 11 Feb 2025 05:47:57 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 153557
IP address blocks: 163.61.14.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 12 Feb 2025 08:20:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9111FFD
Validity
Not Before: Feb 11 05:47:57 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67aae48d-9660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:12:07:73:78:88:ab:38:55:6d:00:13:69:b5:
d6:a8:c7:17:6e:16:e6:22:d5:8d:f8:5f:77:0a:10:
8f:2a:ef:a5:fb:34:6f:42:a0:dd:c5:32:c2:2e:df:
6d:40:29:28:03:f7:3c:8a:e9:2d:e7:bf:dc:ae:47:
fe:bf:4c:dd:55:99:4d:3b:eb:f8:e9:2d:8a:5a:62:
7c:ef:35:e9:24:31:83:b3:a2:03:90:fd:1a:7d:6e:
9d:fa:7e:06:7e:30:ec:0d:ec:5b:9a:2d:1a:7d:9c:
fc:59:9b:20:e0:dc:50:69:89:2d:e8:e0:53:a6:62:
10:74:3f:d7:b6:dd:74:2a:52:ef:21:35:c3:76:8a:
2d:de:30:c5:ff:9f:07:5d:50:ca:86:a5:99:58:8f:
c2:1d:ed:5f:6b:52:fb:31:90:be:3a:47:8c:fd:f3:
21:8e:b4:2e:d8:0b:d8:1c:20:b0:68:1f:a7:21:70:
5f:7f:ea:38:60:44:5c:53:f4:ef:39:8f:62:f5:01:
2c:f6:be:3c:ae:d2:ca:0d:b3:b5:ab:74:af:cc:a1:
40:8f:e9:3b:68:59:c9:68:d0:34:36:ee:fa:18:0d:
67:8d:61:17:86:b4:b2:0c:ad:5f:57:88:4f:13:cb:
b9:16:5a:17:d9:5c:f1:58:b4:ea:84:a5:c6:90:a2:
6a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:65:09:D2:D9:AB:27:F4:F3:10:6D:F1:55:C7:63:DF:44:DD:FC:B5
X509v3 Authority Key Identifier:
keyid:10:4C:F8:70:63:B5:EA:BF:34:DE:4E:25:FE:CE:9A:B5:AF:73:6C:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/EEz4cGO16r803k4l_s6ata9zbBQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EEz4cGO16r803k4l_s6ata9zbBQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111FFD/42EB0534DD3811EF9C346745C4F9AE02/BEB7408EE83B11EFB1605849C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.61.14.0/23
Signature Algorithm: sha256WithRSAEncryption
19:3f:99:32:2e:cb:7e:a2:2c:8c:4d:ce:54:9b:87:cd:55:ec:
92:00:47:ae:d2:9b:b8:29:b1:48:69:d2:42:15:6d:31:a3:1f:
47:8f:5f:8f:6d:1d:96:83:f0:5a:b2:1b:6d:f0:95:8a:14:82:
5b:75:fe:23:00:09:00:c6:1e:9c:1e:5a:d4:60:19:13:eb:ea:
cf:e7:d8:9c:a8:b4:89:05:f7:72:57:ee:90:c4:54:b6:55:33:
7a:97:cf:dc:02:83:1c:ea:dc:c4:bb:f3:d7:d9:fa:3b:ba:ac:
5f:49:e2:05:b7:fa:03:87:f6:b5:de:42:d5:9c:34:17:3d:78:
b6:ad:7c:fa:c4:61:42:11:f9:7a:bd:6e:58:f7:a9:ff:f1:08:
de:5c:3f:f2:3d:00:25:0a:8c:4d:4b:f2:dd:42:95:91:c3:28:
4f:19:48:89:fe:b8:6f:d4:08:b3:aa:35:f1:68:e4:a3:90:3d:
f3:78:20:61:f2:85:4d:5d:2a:5a:bb:2b:1f:ae:69:1d:9d:a0:
ad:58:f0:7d:27:77:41:97:ba:b4:48:ad:30:99:2d:53:2f:dd:
9e:c7:e5:60:4e:f6:63:36:ca:d6:ea:f9:8d:57:75:f5:b7:5c:
a4:71:ca:a4:28:5e:f2:02:f5:93:b0:26:96:74:b4:2e:3a:b2:
56:fd:31:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 05:43:46 2025 by rpki-client