Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/0198CC0E53CD11F080019C7CC4F9AE02.roa
File: 0198CC0E53CD11F080019C7CC4F9AE02.roa (raw, json)
Hash identifier: eSalXKkDCPRGFaTzR4v2xv0kA8qfMrWoX0KoRiD7Gfg=
Subject key identifier: 7D:5C:74:00:51:7D:2F:44:A8:F3:52:CA:B2:AC:11:B6:D8:E2:DB:55
Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934
Certificate serial: 07F6
Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/0198CC0E53CD11F080019C7CC4F9AE02.roa
Signing time: Sat 28 Jun 2025 03:07:21 +0000
ROA not before: Sat 28 Jun 2025 03:07:21 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 134176
IP address blocks: 36.255.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Jul 2025 07:23:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2038 (0x7f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934
Validity
Not Before: Jun 28 03:07:21 2025 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=685f5c69-2aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3c:2e:7b:4f:d8:b7:88:2e:fc:60:74:1a:a8:
05:14:c7:5d:eb:c6:2f:af:40:2c:07:30:4d:ab:54:
6c:9e:de:e3:c8:6d:ce:b4:06:66:a0:cb:c2:42:26:
01:09:8e:2c:55:bd:69:60:5a:e3:d2:b0:5d:34:62:
71:5e:b6:f0:42:43:5b:11:0c:63:40:42:fc:89:f3:
98:1f:a1:e0:be:f3:0e:7a:8a:3f:56:f3:2a:a0:a5:
42:e9:13:0b:e6:6c:43:3e:58:ec:ab:82:46:6e:4e:
fd:52:e0:48:28:b3:49:cc:b3:d5:2f:f8:24:49:30:
34:bf:d4:ee:73:7c:5f:0d:b2:a6:72:69:42:5b:61:
bd:cf:65:88:6d:d0:34:1f:07:1f:03:4e:44:f7:82:
00:c0:39:1f:98:86:38:bf:dc:3e:6c:22:da:be:5f:
b1:47:e7:09:ac:09:c9:83:c3:ef:20:5b:97:b9:d1:
c5:d2:d9:56:97:80:ea:a0:74:8b:12:61:92:da:4d:
aa:2b:73:44:7a:2e:5a:24:c9:64:7a:f1:72:47:b5:
9f:5f:7e:c3:26:0b:7d:eb:05:77:26:7a:fc:51:08:
72:3e:b5:a0:13:dd:b7:a7:18:cb:de:f0:49:9a:5d:
6c:43:ee:cc:b9:dd:04:09:51:90:de:30:89:e0:a8:
b3:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:5C:74:00:51:7D:2F:44:A8:F3:52:CA:B2:AC:11:B6:D8:E2:DB:55
X509v3 Authority Key Identifier:
keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/0198CC0E53CD11F080019C7CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.255.194.0/24
Signature Algorithm: sha256WithRSAEncryption
75:f9:22:a2:97:9f:42:c7:31:8a:35:da:4e:83:31:37:75:62:
c4:e5:c4:1b:f0:46:fa:4b:5b:31:c7:33:d5:4d:31:1b:fc:f7:
b8:1d:14:ad:54:41:59:13:11:82:b6:9c:27:2d:dd:12:fb:43:
c4:40:11:b8:d3:72:06:54:13:d5:29:4f:08:c3:36:ee:19:95:
f2:e1:9f:8d:7b:7b:6e:30:8a:ff:10:9e:88:ea:f4:93:10:6d:
a6:e7:34:27:43:2b:88:7c:3e:24:cf:58:9a:93:1d:4b:7c:d6:
a9:61:6c:49:ca:73:18:41:da:c6:7e:24:42:07:e1:63:ea:1c:
30:bb:80:91:08:2f:a2:65:73:3f:53:99:02:e4:1a:ec:ba:85:
c5:ed:50:5a:db:15:12:63:88:de:be:70:56:0c:00:ab:45:5f:
d4:07:26:3e:74:b2:b2:c5:a9:68:50:a5:68:64:a8:02:d5:ee:
9b:ee:8c:81:9d:bf:d6:d1:0e:3c:d1:e9:26:9a:e9:76:72:ab:
70:b4:fa:c7:79:32:fe:57:75:a7:63:d1:bf:bd:11:36:b3:58:
c0:d5:91:48:8d:56:64:4a:b2:c5:43:f8:7b:9c:d0:fd:37:5d:
57:f9:eb:97:91:7c:1a:1f:9e:a7:60:b9:fa:a4:df:e1:0a:f8:
56:3b:be:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 07:34:16 2025 by rpki-client