Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/A366FBE45B3111F0A5345172C4F9AE02.roa
File: A366FBE45B3111F0A5345172C4F9AE02.roa (raw, json)
Hash identifier: airSYWZ4kyhYer+xOG0VcgczUkPoaPpZXI3ZxS4rFSQ=
Subject key identifier: 51:C2:3F:3D:2E:75:FD:F3:4C:34:F9:73:29:E4:2C:E9:73:B2:35:80
Certificate issuer: /CN=A911D75C/serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
Certificate serial: 0CBD
Authority key identifier: 1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/A366FBE45B3111F0A5345172C4F9AE02.roa
Signing time: Mon 07 Jul 2025 12:55:20 +0000
ROA not before: Mon 07 Jul 2025 12:55:20 +0000
ROA not after: Wed 30 Sep 2026 00:00:00 +0000
asID: 134371
IP address blocks: 103.62.140.0/22 maxlen: 24
202.136.88.0/22 maxlen: 24
2400:3dc0::/32 maxlen: 32
2400:3dc0::/36 maxlen: 36
2400:3dc0::/44 maxlen: 48
2400:3dc0:10::/44 maxlen: 48
2400:3dc0:2e::/48 maxlen: 48
2400:3dc0:2f::/48 maxlen: 48
2400:3dc0:3e::/48 maxlen: 48
2400:3dc0:3f::/48 maxlen: 48
2400:3dc0:40::/44 maxlen: 47
2400:3dc0:40::/48 maxlen: 48
2400:3dc0:43::/48 maxlen: 48
2400:3dc0:45::/48 maxlen: 48
2400:3dc0:46::/48 maxlen: 48
2400:3dc0:49::/48 maxlen: 48
2400:3dc0:4a::/47 maxlen: 48
2400:3dc0:4c::/48 maxlen: 48
2400:3dc0:50::/44 maxlen: 47
2400:3dc0:50::/45 maxlen: 48
2400:3dc0:58::/48 maxlen: 48
2400:3dc0:5a::/47 maxlen: 48
2400:3dc0:5c::/46 maxlen: 48
2400:3dc0:60::/44 maxlen: 47
2400:3dc0:60::/47 maxlen: 48
2400:3dc0:62::/48 maxlen: 48
2400:3dc0:64::/48 maxlen: 48
2400:3dc0:68::/47 maxlen: 48
2400:3dc0:6a::/48 maxlen: 48
2400:3dc0:6c::/48 maxlen: 48
2400:3dc0:6e::/47 maxlen: 48
2400:3dc0:89::/48 maxlen: 48
2400:3dc0:100::/48 maxlen: 48
2400:3dc0:101::/48 maxlen: 48
2400:3dc0:140::/48 maxlen: 48
2400:3dc0:200::/48 maxlen: 48
2400:3dc0:201::/48 maxlen: 48
2400:3dc0:300::/48 maxlen: 48
2400:3dc0:400::/48 maxlen: 48
2400:3dc0:500::/48 maxlen: 48
2400:3dc0:600::/48 maxlen: 48
2400:3dc0:700::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 12 Jul 2025 11:11:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3261 (0xcbd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A911D75C, serialNumber=1A1A40AD93A4A4307ED7264D47D252CAF62DEFFD
Validity
Not Before: Jul 7 12:55:20 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=686bc3b8-67ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5a:b6:d0:ba:dd:0f:6e:b4:2d:b2:5a:46:0a:
d3:d0:5a:98:3f:06:6d:f3:51:7c:0c:54:2a:38:b6:
b8:a7:ca:c1:9b:5a:ff:ca:f4:dd:bd:e7:06:22:c2:
44:c6:73:74:b8:8b:65:c1:f4:27:e5:50:e9:12:86:
ef:f7:7b:37:eb:35:f6:4d:f5:87:c6:46:2c:34:15:
65:90:67:15:9b:e0:91:68:91:c0:99:6f:09:64:c6:
8b:e2:90:de:f8:a4:99:4e:54:8b:d2:75:87:7f:43:
d3:3a:74:f5:46:7d:06:8b:7f:43:b9:14:41:71:5b:
51:d2:85:eb:b3:d7:82:a7:c4:77:5c:73:9f:25:27:
db:51:79:78:83:d7:e6:9c:ec:ef:11:30:9d:93:c6:
2a:80:1e:62:4e:9b:44:ed:a8:17:4e:ef:61:a5:98:
be:a0:6f:2c:99:6f:24:96:fb:2e:78:cd:55:70:de:
c6:24:63:6b:1b:f7:e4:51:80:08:27:de:53:ee:f8:
1f:5e:9b:32:75:3b:dc:e8:26:20:87:62:5a:4a:35:
bf:ce:82:5a:b1:9b:86:69:48:e0:e0:c7:f5:f6:a7:
90:0d:d8:86:35:6b:a7:3d:23:4c:01:79:cc:28:fd:
f7:19:4e:47:8a:b7:1b:2e:f0:e3:c2:63:22:77:bb:
ee:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:C2:3F:3D:2E:75:FD:F3:4C:34:F9:73:29:E4:2C:E9:73:B2:35:80
X509v3 Authority Key Identifier:
keyid:1A:1A:40:AD:93:A4:A4:30:7E:D7:26:4D:47:D2:52:CA:F6:2D:EF:FD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/GhpArZOkpDB-1yZNR9JSyvYt7_0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhpArZOkpDB-1yZNR9JSyvYt7_0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D75C/2BC5FD4006C011EABC43B709C4F9AE02/A366FBE45B3111F0A5345172C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.62.140.0/22
202.136.88.0/22
IPv6:
2400:3dc0::/32
Signature Algorithm: sha256WithRSAEncryption
56:05:12:f5:60:28:7f:e9:cc:f2:23:f4:29:41:1e:2c:8d:db:
77:fc:ce:6d:01:ea:6b:19:bb:ca:10:11:d7:90:33:2e:50:47:
f9:5b:bd:49:0b:99:35:6c:51:f2:99:b2:95:08:aa:f4:2e:af:
79:5e:eb:95:e5:ee:c6:a7:65:d9:b5:86:79:90:94:ea:9f:b5:
45:f6:c0:fa:85:cb:79:8c:19:07:72:2e:63:eb:ac:2e:58:76:
48:a7:ce:65:97:29:ea:46:32:5d:be:6a:32:24:c7:eb:62:41:
3b:a2:9d:86:3a:df:f4:ce:d1:df:2f:8d:15:8f:11:de:41:f3:
65:64:30:1a:e5:6e:30:9f:08:9d:ba:f3:f9:a2:f0:6d:01:f3:
6e:99:0e:6c:cb:2d:cf:ac:ab:cd:ad:5d:f8:7b:87:c3:2c:30:
8d:38:70:8c:8e:08:c5:78:85:26:ec:90:cd:04:76:f4:f4:09:
ff:7a:2e:ef:9b:11:15:11:de:c5:b5:9c:24:2e:11:2f:28:fa:
58:8c:ac:27:d0:dd:5d:33:81:e8:8d:94:df:06:7a:a4:3d:f0:
67:0f:e1:ed:56:42:11:c4:e5:6d:49:34:c7:8d:58:1e:41:04:
8e:25:18:d7:86:e5:5a:0a:d4:b8:96:65:a3:5c:2c:b6:33:0b:
f1:55:c8:0c
-----BEGIN CERTIFICATE-----
MIIFhjCCBG6gAwIBAgICDL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
MUQ3NUMxMTAvBgNVBAUTKDFBMUE0MEFEOTNBNEE0MzA3RUQ3MjY0RDQ3RDI1MkNB
RjYyREVGRkQwHhcNMjUwNzA3MTI1NTIwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02ODZiYzNiOC02N2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAtFq20LrdD260LbJaRgrT0FqYPwZt81F8DFQqOLa4p8rBm1r/yvTdvecGIsJE
xnN0uItlwfQn5VDpEobv93s36zX2TfWHxkYsNBVlkGcVm+CRaJHAmW8JZMaL4pDe
+KSZTlSL0nWHf0PTOnT1Rn0Gi39DuRRBcVtR0oXrs9eCp8R3XHOfJSfbUXl4g9fm
nOzvETCdk8YqgB5iTptE7agXTu9hpZi+oG8smW8klvsueM1VcN7GJGNrG/fkUYAI
J95T7vgfXpsydTvc6CYgh2JaSjW/zoJasZuGaUjg4Mf19qeQDdiGNWunPSNMAXnM
KP33GU5HircbLvDjwmMid7vu6QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFFHCPz0u
df3zTDT5cynkLOlzsjWAMB8GA1UdIwQYMBaAFBoaQK2TpKQwftcmTUfSUsr2Le/9
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDc1Qy8yQkM1RkQ0MDA2
QzAxMUVBQkM0M0I3MDlDNEY5QUUwMi9HaHBBclpPa3BEQi0xeVpOUjlKU3l2WXQ3
XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0docEFyWk9rcERCLTF5Wk5SOUpTeXZZdDdfMC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
MUQ3NUMvMkJDNUZENDAwNkMwMTFFQUJDNDNCNzA5QzRGOUFFMDIvQTM2NkZCRTQ1
QjMxMTFGMEE1MzQ1MTcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E
JTAjMBIEAgABMAwDBAJnPowDBALKiFgwDQQCAAIwBwMFACQAPcAwDQYJKoZIhvcN
AQELBQADggEBAFYFEvVgKH/pzPIj9ClBHiyN23f8zm0B6msZu8oQEdeQMy5QR/lb
vUkLmTVsUfKZspUIqvQur3le65Xl7sanZdm1hnmQlOqftUX2wPqFy3mMGQdyLmPr
rC5YdkinzmWXKepGMl2+ajIkx+tiQTuinYY63/TO0d8vjRWPEd5B82VkMBrlbjCf
CJ268/mi8G0B826ZDmzLLc+sq82tXfh7h8MsMI04cIyOCMV4hSbskM0EdvT0Cf96
Lu+bERUR3sW1nCQuES8o+liMrCfQ3V0zgeiNlN8GeqQ98GcP4e1WQhHE5W1JNMeN
WB5BBI4lGNeG5VoK1LiWZaNcLLYzC/FVyAw=
-----END CERTIFICATE-----
Generated at Mon Jul 21 07:11:01 2025 by rpki-client