Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9119010/6A7E940A0C3A11EA93557C79C4F9AE02/F597C6BA0C3A11EA8BA9C679C4F9AE02.roa
File: F597C6BA0C3A11EA8BA9C679C4F9AE02.roa (raw, json)
Hash identifier: j7ecdL2z6s8RZ1KieigSOS0/4+EV2YJtrRrSKHYN0ls=
Subject key identifier: DD:47:94:34:80:EC:EB:96:13:6C:F6:DA:3D:F6:F9:D2:F0:94:47:B5
Certificate issuer: /CN=A9119010/serialNumber=6C05EEAF3F687041D59A49BA1709B83032B74CDC
Certificate serial: 0BE9
Authority key identifier: 6C:05:EE:AF:3F:68:70:41:D5:9A:49:BA:17:09:B8:30:32:B7:4C:DC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAXurz9ocEHVmkm6Fwm4MDK3TNw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9119010/6A7E940A0C3A11EA93557C79C4F9AE02/F597C6BA0C3A11EA8BA9C679C4F9AE02.roa
Signing time: Tue 31 Dec 2024 18:47:29 +0000
ROA not before: Tue 31 Dec 2024 18:47:29 +0000
ROA not after: Thu 01 May 2025 00:00:00 +0000
asID: 139806
IP address blocks: 103.145.74.0/23 maxlen: 24
2001:df5:4680::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 19 Feb 2025 01:47:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3049 (0xbe9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9119010, serialNumber=6C05EEAF3F687041D59A49BA1709B83032B74CDC
Validity
Not Before: Dec 31 18:47:29 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=67743c40-d832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6c:cd:31:ac:ee:c9:5b:ad:ca:35:86:fe:a4:
70:69:63:e8:cc:80:8e:13:2c:1f:c6:96:f8:b1:52:
4f:3b:43:06:4d:2d:4d:7a:87:48:3b:8a:13:b4:04:
39:a5:76:ce:63:28:c5:cc:d5:4a:b9:3c:e5:4c:a8:
b2:7b:a4:65:e1:88:e6:a8:21:9c:a4:d3:be:36:bf:
29:35:17:d7:25:bd:a8:f5:31:85:a1:68:8b:84:0d:
32:9f:7a:7e:57:f2:73:38:2c:38:85:52:50:4c:ea:
7a:18:56:85:8f:97:5c:8c:89:3f:ae:95:e2:f3:b5:
7a:e5:af:29:2a:4a:f1:35:d8:ce:d9:39:b1:95:0e:
51:04:37:48:b0:ff:8e:57:f9:b2:db:c1:c3:de:54:
98:7a:33:93:4e:5d:fd:c3:31:8a:b7:46:6f:cf:bd:
f3:2c:47:c7:1a:6c:86:83:c3:cf:43:67:ce:55:0c:
b2:aa:08:26:26:ec:db:fe:c8:9b:76:f4:93:f9:6e:
21:e1:1e:a1:cc:96:36:43:19:e3:96:2e:79:f4:cd:
8e:43:d3:9c:5a:e6:e6:cf:0e:07:8a:bf:7d:d7:6e:
57:9f:2c:b1:55:43:37:19:29:5e:34:50:f5:d6:a6:
1e:a8:9c:b4:d2:f9:5d:83:16:7a:2f:bd:df:de:5c:
5f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:47:94:34:80:EC:EB:96:13:6C:F6:DA:3D:F6:F9:D2:F0:94:47:B5
X509v3 Authority Key Identifier:
keyid:6C:05:EE:AF:3F:68:70:41:D5:9A:49:BA:17:09:B8:30:32:B7:4C:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9119010/6A7E940A0C3A11EA93557C79C4F9AE02/bAXurz9ocEHVmkm6Fwm4MDK3TNw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAXurz9ocEHVmkm6Fwm4MDK3TNw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119010/6A7E940A0C3A11EA93557C79C4F9AE02/F597C6BA0C3A11EA8BA9C679C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.145.74.0/23
IPv6:
2001:df5:4680::/48
Signature Algorithm: sha256WithRSAEncryption
30:4b:62:b1:18:9d:b6:14:be:38:17:d9:dc:e0:db:57:56:74:
de:a9:9e:33:a8:d1:75:f7:1a:7b:3f:ff:c7:26:1e:04:13:96:
cf:00:05:c5:9d:7e:61:34:0e:f0:39:c5:a4:84:c6:fd:4f:db:
bc:00:02:c5:ce:3c:51:84:68:de:58:1d:aa:87:ce:ad:b3:f3:
8f:d3:1a:22:5c:a5:ca:b3:74:f5:d4:4e:8c:aa:4d:7f:3c:bd:
ae:d9:07:fe:6f:37:67:14:2c:75:8f:6c:28:b4:c8:c4:67:46:
4a:4e:46:3a:c6:0f:2b:1e:c8:b3:8f:39:fd:cc:a6:19:14:51:
42:d7:9a:08:d4:e1:47:7c:5e:06:be:af:c7:ad:8b:d6:5b:ca:
9a:5a:8c:87:ca:d1:8e:17:0d:dc:3c:53:f1:70:5b:b2:e3:aa:
90:55:58:cf:df:e4:ad:2c:72:bb:b5:ed:5e:65:9e:75:6a:74:
dd:5a:0d:d9:03:c9:1a:bb:a7:91:24:84:49:22:0a:e7:1a:6e:
31:46:03:8c:7c:e7:a6:4b:ed:92:13:ce:ff:a7:bb:cb:76:04:
59:81:1d:2c:f9:fe:27:bb:d8:fc:e7:30:f3:d2:d5:d4:bf:d9:
23:b5:5b:a8:41:e4:7d:26:2c:e5:f3:a2:1f:2d:f5:e3:f9:c2:
65:2e:51:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 23:05:17 2025 by rpki-client