Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/4453D9B0622011F086A0A93FC4F9AE02.roa
File: 4453D9B0622011F086A0A93FC4F9AE02.roa (raw, json)
Hash identifier: fMRTjNNXarclht5uAI8A00UPoC408WMkw2+YLOOBEdw=
Subject key identifier: D9:35:1F:07:80:76:F0:0A:06:B0:B1:5E:84:16:40:DC:F9:D9:FA:49
Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
Certificate serial: 0CD3
Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/4453D9B0622011F086A0A93FC4F9AE02.roa
Signing time: Wed 16 Jul 2025 08:38:37 +0000
ROA not before: Wed 16 Jul 2025 08:38:37 +0000
ROA not after: Wed 30 Sep 2026 00:00:00 +0000
asID: 134371
IP address blocks: 103.62.140.0/22 maxlen: 24
202.136.88.0/22 maxlen: 24
2400:3dc0::/32 maxlen: 32
2400:3dc0::/36 maxlen: 36
2400:3dc0::/44 maxlen: 48
2400:3dc0:10::/44 maxlen: 48
2400:3dc0:2e::/48 maxlen: 48
2400:3dc0:2f::/48 maxlen: 48
2400:3dc0:3e::/48 maxlen: 48
2400:3dc0:3f::/48 maxlen: 48
2400:3dc0:40::/44 maxlen: 47
2400:3dc0:40::/48 maxlen: 48
2400:3dc0:43::/48 maxlen: 48
2400:3dc0:45::/48 maxlen: 48
2400:3dc0:46::/48 maxlen: 48
2400:3dc0:49::/48 maxlen: 48
2400:3dc0:4a::/47 maxlen: 48
2400:3dc0:4c::/48 maxlen: 48
2400:3dc0:50::/44 maxlen: 47
2400:3dc0:52::/47 maxlen: 48
2400:3dc0:54::/46 maxlen: 48
2400:3dc0:58::/48 maxlen: 48
2400:3dc0:5a::/47 maxlen: 48
2400:3dc0:5c::/47 maxlen: 48
2400:3dc0:5e::/48 maxlen: 48
2400:3dc0:60::/44 maxlen: 47
2400:3dc0:60::/47 maxlen: 48
2400:3dc0:62::/48 maxlen: 48
2400:3dc0:64::/48 maxlen: 48
2400:3dc0:68::/47 maxlen: 48
2400:3dc0:6a::/48 maxlen: 48
2400:3dc0:6c::/48 maxlen: 48
2400:3dc0:6e::/47 maxlen: 48
2400:3dc0:89::/48 maxlen: 48
2400:3dc0:100::/48 maxlen: 48
2400:3dc0:101::/48 maxlen: 48
2400:3dc0:140::/48 maxlen: 48
2400:3dc0:200::/48 maxlen: 48
2400:3dc0:201::/48 maxlen: 48
2400:3dc0:300::/48 maxlen: 48
2400:3dc0:400::/48 maxlen: 48
2400:3dc0:500::/48 maxlen: 48
2400:3dc0:600::/48 maxlen: 48
2400:3dc0:700::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 16 Jul 2025 09:16:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3283 (0xcd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911D75C, serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
Validity
Not Before: Jul 16 08:38:37 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=6877650d-538e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:91:79:3f:a0:9a:fa:5b:59:96:af:b1:f3:27:
93:4b:ef:41:50:bb:ef:eb:17:e7:6d:3e:23:39:8a:
9d:ce:8b:38:48:fb:bf:a0:b8:60:36:15:d2:15:35:
3f:6b:c7:7f:cc:51:59:57:db:2c:03:e2:0d:bf:d8:
3a:88:32:0c:cd:d8:3b:b3:c8:97:5a:52:0d:db:19:
10:62:54:9b:72:46:40:1c:2f:df:b8:6f:2b:de:e6:
9f:e8:6b:7e:9c:36:96:37:54:4a:85:4a:97:fb:ce:
01:8f:e9:49:37:55:76:6e:8c:78:17:7d:37:95:fd:
97:ee:02:fb:89:97:6e:0c:ae:01:0d:37:86:ee:32:
ab:e5:10:7f:e7:3e:e7:80:4d:b6:88:d7:50:5b:2e:
d9:c7:13:45:71:18:4a:e1:e4:1f:b6:95:59:7e:ed:
f0:2e:90:33:27:b2:29:8a:9f:bb:e3:40:18:84:20:
dd:09:8a:95:18:46:29:77:22:de:23:e0:94:f3:9d:
69:ad:43:f7:37:97:9d:0f:a2:92:67:1f:d1:40:9b:
8e:ea:9e:56:b8:b3:6b:94:49:11:36:3c:0e:79:82:
ef:53:05:47:5b:29:f6:98:9c:16:5c:4f:76:b6:97:
a9:43:18:a2:5e:3e:ff:5a:b9:75:fe:c9:84:af:d3:
9d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:35:1F:07:80:76:F0:0A:06:B0:B1:5E:84:16:40:DC:F9:D9:FA:49
X509v3 Authority Key Identifier:
keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/4453D9B0622011F086A0A93FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.62.140.0/22
202.136.88.0/22
IPv6:
2400:3dc0::/32
Signature Algorithm: sha256WithRSAEncryption
0f:7e:f2:e8:d7:2d:c1:34:8e:a1:12:78:e5:06:ec:2a:b3:a6:
be:fb:ee:1b:4c:be:d1:3a:9a:cd:a8:4a:29:c7:db:55:74:29:
09:01:7f:35:60:1a:2a:03:56:02:98:0e:f1:e4:4f:54:d5:d9:
ff:c2:9a:e1:25:b2:a5:77:50:71:6f:ae:eb:fa:f1:2a:5c:8e:
1d:3b:3d:01:b5:95:b7:45:b1:27:f1:0a:61:e2:64:e6:45:96:
be:83:fe:16:7f:51:a6:6b:f9:59:ff:b4:e4:f6:c6:23:d5:4d:
f0:63:12:e8:5c:e6:97:cd:55:cd:0b:ff:15:26:82:b4:9b:fc:
7f:fa:63:f6:80:51:ce:5f:e4:ca:4b:25:7d:23:42:12:e7:95:
e9:be:45:ff:a6:de:82:07:d4:82:cc:59:57:1f:8c:7b:3c:0c:
ae:0b:4e:50:0e:6b:fa:6e:9c:28:9d:95:3d:9d:df:59:f3:ed:
c6:18:ab:80:86:76:e4:9d:fc:d0:10:ba:fb:13:f3:d2:82:d4:
b4:db:11:93:4c:1c:d8:ac:b9:73:eb:26:ae:ee:48:86:2f:3d:
1b:10:79:af:0a:06:84:50:a9:b6:56:e8:5e:a1:ff:1a:aa:86:
df:e2:63:68:52:06:fb:ed:94:1b:db:a1:a1:87:16:a4:b8:e2:
3a:63:f3:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 07:02:18 2025 by rpki-client