Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/EA7A8118DCCC11ECAFD2715CC4F9AE02.roa
File: EA7A8118DCCC11ECAFD2715CC4F9AE02.roa (raw, json)
Hash identifier: EVdIedcKIi6u3CpWW67iH/HMf1q5KJ9SGN4AqXPF/uk=
Subject key identifier: 96:AF:06:FD:9C:78:0E:89:5E:39:0A:22:47:99:AC:84:EB:C6:9D:91
Certificate issuer: /CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2
Certificate serial: 0A1A
Authority key identifier: 69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/EA7A8118DCCC11ECAFD2715CC4F9AE02.roa
Signing time: Mon 17 Mar 2025 09:24:30 +0000
ROA not before: Mon 17 Mar 2025 09:24:30 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 137425
IP address blocks: 103.108.60.0/22 maxlen: 22
103.108.60.0/23 maxlen: 23
103.108.60.0/24 maxlen: 24
103.108.61.0/24 maxlen: 24
103.108.62.0/23 maxlen: 23
103.108.62.0/24 maxlen: 24
103.108.63.0/24 maxlen: 24
2406:ebc0::/32 maxlen: 32
2406:ebc0::/36 maxlen: 36
2406:ebc0::/48 maxlen: 48
2406:ebc0:1::/48 maxlen: 48
2406:ebc0:2::/48 maxlen: 48
2406:ebc0:3::/48 maxlen: 48
2406:ebc0:4::/48 maxlen: 48
2406:ebc0:5::/48 maxlen: 48
2406:ebc0:6::/48 maxlen: 48
2406:ebc0:7::/48 maxlen: 48
2406:ebc0:8::/48 maxlen: 48
2406:ebc0:9::/48 maxlen: 48
2406:ebc0:a::/48 maxlen: 48
2406:ebc0:b::/48 maxlen: 48
2406:ebc0:c::/48 maxlen: 48
2406:ebc0:d::/48 maxlen: 48
2406:ebc0:e::/48 maxlen: 48
2406:ebc0:f::/48 maxlen: 48
2406:ebc0:10::/48 maxlen: 48
2406:ebc0:11::/48 maxlen: 48
2406:ebc0:12::/48 maxlen: 48
2406:ebc0:13::/48 maxlen: 48
2406:ebc0:14::/48 maxlen: 48
2406:ebc0:15::/48 maxlen: 48
2406:ebc0:16::/48 maxlen: 48
2406:ebc0:17::/48 maxlen: 48
2406:ebc0:18::/48 maxlen: 48
2406:ebc0:19::/48 maxlen: 48
2406:ebc0:1a::/48 maxlen: 48
2406:ebc0:1b::/48 maxlen: 48
2406:ebc0:1c::/48 maxlen: 48
2406:ebc0:1d::/48 maxlen: 48
2406:ebc0:1e::/48 maxlen: 48
2406:ebc0:1f::/48 maxlen: 48
2406:ebc0:20::/48 maxlen: 48
2406:ebc0:21::/48 maxlen: 48
2406:ebc0:22::/48 maxlen: 48
2406:ebc0:23::/48 maxlen: 48
2406:ebc0:24::/48 maxlen: 48
2406:ebc0:30::/48 maxlen: 48
2406:ebc0:31::/48 maxlen: 48
2406:ebc0:32::/48 maxlen: 48
2406:ebc0:33::/48 maxlen: 48
2406:ebc0:1000::/36 maxlen: 36
2406:ebc0:2000::/36 maxlen: 36
2406:ebc0:3000::/36 maxlen: 36
2406:ebc0:4000::/36 maxlen: 36
2406:ebc0:5000::/36 maxlen: 36
Validation: Failed, certificate revoked on Sun 06 Apr 2025 09:14:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2586 (0xa1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91166FC
Validity
Not Before: Mar 17 09:24:30 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67d7ea4e-ab77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:56:f3:01:7b:df:b2:6d:24:c0:18:d9:a6:13:
4a:fb:a0:05:6c:da:23:26:f9:17:05:e7:24:bc:a3:
25:8a:4a:83:57:75:5c:c3:1f:25:e3:0b:e3:33:64:
ba:e6:84:99:1a:a5:88:1e:91:f5:59:68:b2:51:08:
ae:a6:ff:8a:5c:66:ea:c0:a0:45:28:24:f6:3e:61:
39:01:ad:e2:b5:f7:d8:55:b8:b1:33:75:89:23:c1:
9f:bf:c9:1e:f2:e8:2a:88:7e:9d:7c:27:c0:10:02:
19:d6:a5:38:c4:0e:73:bc:91:0b:37:bd:d3:44:17:
61:25:ce:e4:58:74:ec:b8:66:d9:9c:44:66:88:cd:
46:0c:05:8a:bc:31:4f:36:31:8e:e2:10:57:7a:d0:
52:f1:40:94:23:d6:4d:00:b6:3b:72:4a:4a:0f:3c:
85:b5:ab:aa:d6:84:20:d3:b4:81:77:5d:5d:d0:a4:
23:45:b8:50:16:5f:e3:29:cf:5e:57:9b:42:16:3a:
a4:dd:62:68:21:f5:ca:18:b2:40:24:0d:65:cb:ed:
17:15:b3:42:37:6b:c0:96:99:6e:1d:2a:e9:b3:31:
d0:87:1d:2c:6b:6c:db:73:11:3b:26:7f:d9:15:21:
2e:cb:32:aa:eb:85:50:0b:ac:38:c9:55:e2:cf:cd:
a9:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:AF:06:FD:9C:78:0E:89:5E:39:0A:22:47:99:AC:84:EB:C6:9D:91
X509v3 Authority Key Identifier:
keyid:69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/EA7A8118DCCC11ECAFD2715CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.108.60.0/22
IPv6:
2406:ebc0::/32
Signature Algorithm: sha256WithRSAEncryption
a6:c8:66:ab:e9:69:d0:48:42:63:37:41:e1:75:83:71:e8:3d:
3f:d7:e8:1e:eb:42:26:21:c4:2e:fa:8f:72:4b:a0:51:e7:dc:
8d:7e:b7:72:ed:23:fe:f2:c2:83:6b:0a:62:18:bd:22:7a:92:
5d:0f:56:6f:14:10:91:34:ce:12:63:3e:5a:d5:d8:a0:6f:9e:
b2:ff:28:2b:82:82:8a:72:d4:74:6b:5c:6d:ca:11:d1:dc:bb:
f3:c5:03:48:8f:bc:25:61:2b:7d:47:a3:64:98:75:c6:00:2a:
e9:f2:b1:82:7c:7f:89:54:83:12:75:f3:b2:27:3e:0a:94:a6:
7e:97:11:24:a1:25:c8:a1:1b:2a:fc:cf:6b:66:7b:6a:48:2b:
91:6b:d7:9a:cc:98:69:29:75:e3:66:cd:8d:6f:f8:92:56:5b:
d4:9b:34:bc:c0:73:b5:7f:73:ce:55:36:14:df:c8:22:d3:fb:
20:93:db:d4:51:49:a1:ec:8f:23:c5:47:aa:76:94:92:9c:d2:
38:14:91:4a:7b:de:eb:4d:35:9e:01:70:a1:5d:70:f9:58:2d:
85:58:85:62:62:35:d1:23:92:94:36:89:7e:c1:2d:35:da:3a:
35:67:53:37:d7:1a:f1:47:d5:76:ae:d6:cb:c4:a7:1c:b8:8f:
f4:8e:05:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:33:29 2025 by rpki-client