Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/6DDC856A564611F083825A3EC4F9AE02.roa
File: 6DDC856A564611F083825A3EC4F9AE02.roa (raw, json)
Hash identifier: uHbgXhVUmCD/ruu4Qmt/hxHWIaecXt5WJo5eJwn25ys=
Subject key identifier: 92:BC:FB:E0:FB:44:E8:AB:B0:18:6B:49:36:F9:E2:18:76:A7:3E:8C
Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
Certificate serial: 0C89
Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/6DDC856A564611F083825A3EC4F9AE02.roa
Signing time: Tue 01 Jul 2025 06:41:34 +0000
ROA not before: Tue 01 Jul 2025 06:41:34 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 134371
IP address blocks: 103.62.140.0/22 maxlen: 24
202.136.88.0/22 maxlen: 24
2400:3dc0::/32 maxlen: 32
2400:3dc0::/36 maxlen: 36
2400:3dc0::/44 maxlen: 48
2400:3dc0:10::/44 maxlen: 48
2400:3dc0:2e::/48 maxlen: 48
2400:3dc0:2f::/48 maxlen: 48
2400:3dc0:3e::/48 maxlen: 48
2400:3dc0:3f::/48 maxlen: 48
2400:3dc0:40::/44 maxlen: 47
2400:3dc0:40::/48 maxlen: 48
2400:3dc0:42::/47 maxlen: 48
2400:3dc0:45::/48 maxlen: 48
2400:3dc0:46::/47 maxlen: 48
2400:3dc0:48::/45 maxlen: 48
2400:3dc0:50::/44 maxlen: 47
2400:3dc0:50::/45 maxlen: 48
2400:3dc0:58::/48 maxlen: 48
2400:3dc0:5a::/47 maxlen: 48
2400:3dc0:5c::/46 maxlen: 48
2400:3dc0:60::/44 maxlen: 47
2400:3dc0:60::/45 maxlen: 48
2400:3dc0:68::/46 maxlen: 48
2400:3dc0:6c::/48 maxlen: 48
2400:3dc0:6e::/47 maxlen: 48
2400:3dc0:89::/48 maxlen: 48
2400:3dc0:100::/48 maxlen: 48
2400:3dc0:101::/48 maxlen: 48
2400:3dc0:140::/48 maxlen: 48
2400:3dc0:200::/48 maxlen: 48
2400:3dc0:201::/48 maxlen: 48
2400:3dc0:300::/48 maxlen: 48
2400:3dc0:400::/48 maxlen: 48
2400:3dc0:500::/48 maxlen: 48
2400:3dc0:600::/48 maxlen: 48
2400:3dc0:700::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 02 Jul 2025 08:28:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3209 (0xc89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911D75C, serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
Validity
Not Before: Jul 1 06:41:34 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=6863831e-1378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f0:51:b8:e0:9c:fa:ea:5e:06:a6:d1:60:b6:
1c:a4:79:5b:b9:c8:05:a8:d4:6c:72:ff:1a:f5:50:
41:6c:d8:f3:27:dd:78:05:a5:8e:00:32:cb:62:70:
36:95:5d:84:6b:9c:c4:2c:bb:f3:8f:6a:cd:e6:60:
36:e4:6f:81:30:b3:f1:b6:17:d7:2b:89:1c:11:43:
31:28:6a:f7:26:2d:ef:9e:cf:d4:42:34:1c:8b:02:
1c:89:ce:fc:06:96:f8:09:e0:33:d7:d4:19:d3:dd:
0e:4b:03:f3:3d:6c:75:8c:ae:17:10:52:fa:22:85:
17:0a:89:17:1a:35:e9:b8:57:ef:b9:d9:b0:d0:74:
a7:f0:2b:13:b9:91:67:1c:a8:d2:b3:0d:00:c7:97:
f2:1d:e1:c1:9c:69:ee:55:cc:70:2f:30:39:bf:18:
5c:7f:e5:51:7c:80:1a:c5:23:41:10:02:ee:4a:74:
f1:fd:e0:54:c0:64:62:c6:c7:c6:c6:fe:4f:55:4f:
98:57:6a:f0:21:4f:da:11:82:44:b6:5a:6c:4c:00:
50:91:0f:22:54:9f:80:32:9d:10:07:d2:28:e1:fc:
e7:f7:87:4e:e5:de:ac:bf:61:c2:90:7b:da:5d:02:
57:8e:93:b4:de:17:ad:32:a4:e8:87:aa:e6:58:20:
03:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:BC:FB:E0:FB:44:E8:AB:B0:18:6B:49:36:F9:E2:18:76:A7:3E:8C
X509v3 Authority Key Identifier:
keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/6DDC856A564611F083825A3EC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.62.140.0/22
202.136.88.0/22
IPv6:
2400:3dc0::/32
Signature Algorithm: sha256WithRSAEncryption
14:b8:ab:d0:0d:6e:71:f0:b8:ac:f1:1a:8f:50:ab:c7:9f:4f:
5a:49:20:f5:dd:83:e7:7f:19:52:ac:e1:85:82:dd:70:8b:0c:
ae:f7:dc:17:19:a2:c8:da:38:36:c8:f0:b1:e3:87:ea:d0:03:
fb:4f:2a:99:cd:99:90:60:9d:63:b5:cf:e8:e3:ce:b6:39:a0:
b2:80:bc:c2:2a:cb:55:e8:9b:e4:7b:f9:74:b2:d2:c0:cc:96:
f3:22:17:fc:4f:a8:99:c8:59:c7:70:4a:37:91:0b:68:34:00:
d3:c7:e0:cd:d8:ae:e0:02:9a:f3:6a:5e:5c:1f:86:c6:72:1f:
14:3c:b3:21:bd:8e:06:bb:41:b3:f1:9e:36:42:e9:13:46:04:
10:d4:e2:51:17:02:52:50:b9:07:80:1c:6e:f6:3e:7a:e7:f1:
56:a3:e4:02:1a:48:cd:62:2e:33:73:fe:d4:ee:5a:38:01:a9:
5a:db:fe:76:62:49:e2:ca:62:d6:02:f4:a5:eb:a8:43:fd:8b:
6c:d1:b5:f1:c4:f4:87:22:d4:d0:0a:27:66:29:fc:a7:fb:66:
6f:5c:f8:da:ec:9f:ab:39:64:94:97:bb:94:f6:35:2e:e6:47:
a8:bf:63:a8:d8:90:5d:ce:76:ae:69:a2:89:07:9e:38:8b:ef:
8b:93:c8:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 07:16:03 2025 by rpki-client