Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/C512161E3AF711ED8065EF72C4F9AE02.roa
File: C512161E3AF711ED8065EF72C4F9AE02.roa (raw, json)
Hash identifier: VMCvy2D42txsl0/aqoqVsB8PZuXPBoPnAzm2gWsBwaU=
Subject key identifier: C8:8B:A2:87:EA:11:CA:38:47:4B:4D:5D:4A:80:B9:E3:9A:0B:3E:90
Certificate issuer: /CN=A911BAD6/serialNumber=5332F9AF3052CF3F85EABDD0AAD681523952E656
Certificate serial: 01A4
Authority key identifier: 53:32:F9:AF:30:52:CF:3F:85:EA:BD:D0:AA:D6:81:52:39:52:E6:56
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzL5rzBSzz-F6r3QqtaBUjlS5lY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/C512161E3AF711ED8065EF72C4F9AE02.roa
Signing time: Wed 13 Nov 2024 01:45:00 +0000
ROA not before: Wed 13 Nov 2024 01:45:00 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 150319
IP address blocks: 103.10.194.0/23 maxlen: 23
103.10.194.0/24 maxlen: 24
103.10.195.0/24 maxlen: 24
2001:df1:4dc0::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 30 Mar 2025 08:09:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 420 (0x1a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911BAD6, serialNumber=5332F9AF3052CF3F85EABDD0AAD681523952E656
Validity
Not Before: Nov 13 01:45:00 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=6734049c-db3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:61:d5:75:87:e0:2c:9d:a3:2a:dc:f7:f2:4f:
09:f3:e4:3b:75:dd:de:9e:46:61:88:27:bf:3e:53:
54:2f:c6:d0:39:20:03:05:92:1a:93:47:52:01:98:
63:60:9c:a4:38:21:e1:fd:5c:4b:1d:ad:d0:f4:ca:
bf:49:e4:f1:59:54:72:36:65:eb:7f:0b:2d:90:4f:
2e:57:22:e8:85:9e:3a:df:f3:d1:50:e2:34:64:11:
b5:cc:ce:3c:5c:1b:da:93:2c:a2:6c:ee:33:1d:76:
21:60:2e:85:63:e3:fd:2c:d0:ae:2d:5d:ad:e8:1c:
2e:b4:3a:41:cf:ee:c1:e2:9e:dc:ed:32:e5:3b:ce:
9c:05:8d:cb:f2:4f:d6:e0:59:f9:90:bd:1c:95:31:
82:81:55:c7:f3:52:15:99:a9:11:60:e3:92:00:97:
ab:3b:33:26:6a:4e:46:13:f6:8e:4c:14:e0:0b:59:
ca:7a:82:3e:3a:5e:1a:45:57:02:4a:8a:7f:5b:b3:
8a:33:99:fb:05:37:b6:af:db:9b:02:70:ef:12:26:
d2:19:8a:f6:ca:c5:e6:f2:9c:9f:bb:0f:71:df:eb:
fa:29:4f:01:3c:62:73:ea:49:57:46:16:9b:47:92:
5a:24:6f:19:f1:c2:c7:96:b1:f4:5a:f4:f7:8f:31:
67:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:8B:A2:87:EA:11:CA:38:47:4B:4D:5D:4A:80:B9:E3:9A:0B:3E:90
X509v3 Authority Key Identifier:
keyid:53:32:F9:AF:30:52:CF:3F:85:EA:BD:D0:AA:D6:81:52:39:52:E6:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/UzL5rzBSzz-F6r3QqtaBUjlS5lY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzL5rzBSzz-F6r3QqtaBUjlS5lY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/C512161E3AF711ED8065EF72C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.10.194.0/23
IPv6:
2001:df1:4dc0::/48
Signature Algorithm: sha256WithRSAEncryption
a3:10:bd:d6:ad:fa:a4:15:cf:bb:b0:c6:ce:e6:fe:8d:bc:f0:
1e:27:37:26:25:bc:2f:58:38:6e:5e:98:88:ff:4d:cd:6a:c5:
64:ac:10:99:91:e9:24:ac:75:b7:be:9e:b1:c7:f7:fa:46:0c:
74:ce:b0:6f:58:eb:f1:cd:64:ee:bd:5b:bf:e7:eb:12:fb:ad:
44:88:3d:30:5b:19:3b:42:60:44:af:40:25:1c:73:ef:c9:de:
43:7c:28:87:40:f4:c0:13:20:0c:b2:85:06:37:1a:30:b1:72:
46:c4:dc:05:44:7d:b7:0d:5f:1c:a6:bb:d9:fc:e5:56:bd:36:
17:4c:e9:15:25:d5:cc:1b:73:1d:25:5d:59:04:ec:6c:8d:a6:
28:bc:0c:79:34:cb:1a:17:41:cd:b0:71:04:da:9e:de:11:64:
05:41:0c:b7:23:41:21:d2:83:50:49:3d:8a:12:4e:fb:af:fd:
a2:75:d5:84:98:c8:37:af:f3:1b:b6:cb:ef:93:ac:99:f5:65:
ab:e0:e4:67:88:1f:60:48:e3:e9:3a:df:03:15:77:9c:6a:b8:
4a:45:66:86:18:a3:00:f8:a1:6f:7c:53:79:8a:c3:66:f6:d4:
3c:6b:62:72:84:94:75:b5:98:df:e2:a1:7d:e5:16:6f:6c:6c:
1b:43:72:1a
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUJBRDYxMTAvBgNVBAUTKDUzMzJGOUFGMzA1MkNGM0Y4NUVBQkREMEFBRDY4MTUy
Mzk1MkU2NTYwHhcNMjQxMTEzMDE0NTAwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NzM0MDQ5Yy1kYjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAqmHVdYfgLJ2jKtz38k8J8+Q7dd3enkZhiCe/PlNUL8bQOSADBZIak0dSAZhj
YJykOCHh/VxLHa3Q9Mq/SeTxWVRyNmXrfwstkE8uVyLohZ463/PRUOI0ZBG1zM48
XBvakyyibO4zHXYhYC6FY+P9LNCuLV2t6BwutDpBz+7B4p7c7TLlO86cBY3L8k/W
4Fn5kL0clTGCgVXH81IVmakRYOOSAJerOzMmak5GE/aOTBTgC1nKeoI+Ol4aRVcC
Sop/W7OKM5n7BTe2r9ubAnDvEibSGYr2ysXm8pyfuw9x3+v6KU8BPGJz6klXRhab
R5JaJG8Z8cLHlrH0WvT3jzFnRwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMiLoofq
Eco4R0tNXUqAueOaCz6QMB8GA1UdIwQYMBaAFFMy+a8wUs8/heq90KrWgVI5UuZW
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkFENi9ENjRGNEU5QzNB
RjIxMUVEQTg0MkM1NzZDNEY5QUUwMi9Vekw1cnpCU3p6LUY2cjNRcXRhQlVqbFM1
bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL1V6TDVyekJTenotRjZyM1FxdGFCVWpsUzVsWS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MUJBRDYvRDY0RjRFOUMzQUYyMTFFREE4NDJDNTc2QzRGOUFFMDIvQzUxMjE2MUUz
QUY3MTFFRDgwNjVFRjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E
ITAfMAwEAgABMAYDBAFnCsIwDwQCAAIwCQMHACABDfFNwDANBgkqhkiG9w0BAQsF
AAOCAQEAoxC91q36pBXPu7DGzub+jbzwHic3JiW8L1g4bl6YiP9NzWrFZKwQmZHp
JKx1t76escf3+kYMdM6wb1jr8c1k7r1bv+frEvutRIg9MFsZO0JgRK9AJRxz78ne
Q3woh0D0wBMgDLKFBjcaMLFyRsTcBUR9tw1fHKa72fzlVr02F0zpFSXVzBtzHSVd
WQTsbI2mKLwMeTTLGhdBzbBxBNqe3hFkBUEMtyNBIdKDUEk9ihJO+6/9onXVhJjI
N6/zG7bL75OsmfVlq+DkZ4gfYEjj6TrfAxV3nGq4SkVmhhijAPihb3xTeYrDZvbU
PGticoSUdbWY3+KhfeUWb2xsG0NyGg==
-----END CERTIFICATE-----
Generated at Sat Apr 12 20:33:21 2025 by rpki-client