Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912968B/FC1D2736E12A11EE8684C217C4F9AE02/57810624E12B11EEA7895018C4F9AE02.roa
File: 57810624E12B11EEA7895018C4F9AE02.roa (raw, json)
Hash identifier: q3XEkc4n0fhPXnjUfBQmuX3+q62B1OwD2xcJBa5Ar4E=
Subject key identifier: F5:83:F1:AA:59:F8:23:B2:AE:1B:E7:DE:5A:F3:2E:55:C5:93:F8:F3
Certificate issuer: /CN=A912968B/serialNumber=42E665E11104D8CD083FB19D3C6F355C7628C445
Certificate serial: 9C
Authority key identifier: 42:E6:65:E1:11:04:D8:CD:08:3F:B1:9D:3C:6F:35:5C:76:28:C4:45
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QuZl4REE2M0IP7GdPG81XHYoxEU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912968B/FC1D2736E12A11EE8684C217C4F9AE02/57810624E12B11EEA7895018C4F9AE02.roa
Signing time: Tue 07 Jan 2025 04:49:08 +0000
ROA not before: Tue 07 Jan 2025 04:49:08 +0000
ROA not after: Tue 31 Mar 2026 00:00:00 +0000
asID: 137231
IP address blocks: 103.105.148.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 11 Apr 2025 08:27:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156 (0x9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912968B, serialNumber=42E665E11104D8CD083FB19D3C6F355C7628C445
Validity
Not Before: Jan 7 04:49:08 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=677cb244-8db9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f7:ac:1d:a6:dc:61:38:c6:c3:dd:f7:7e:92:
84:62:a7:df:65:de:db:5e:df:5d:cf:74:8e:9e:20:
be:cb:c2:13:2d:d3:45:76:65:ce:5c:08:09:4b:f8:
1d:5d:63:61:50:cb:a1:82:97:76:a6:4a:f1:81:de:
2c:4c:d2:13:99:79:ee:ba:5c:08:ee:87:ba:bc:c6:
82:d8:ee:43:74:4b:c2:41:b9:de:30:62:95:b5:37:
6e:37:a4:80:b7:ce:b0:b6:fa:c7:42:68:6b:e0:da:
7f:4f:af:a5:f3:4a:19:a4:c7:9f:b2:62:b6:b2:a6:
47:8c:69:e8:aa:e3:56:0c:0b:3b:15:05:7a:00:bd:
17:d3:83:06:58:e2:c1:cf:55:b0:5b:23:d3:8c:50:
10:2a:e7:ea:d8:18:26:9e:aa:95:72:7f:3a:67:38:
9d:2b:0c:a9:7e:a6:bf:75:cf:a4:7b:3c:c4:0c:1b:
2e:fa:7e:f6:95:83:89:38:6f:03:2b:5a:5a:5d:7a:
51:24:e1:c0:ed:8c:5e:06:4b:7a:44:e6:0f:3a:9e:
90:02:47:17:db:d6:36:81:6a:10:74:a0:a1:d7:a8:
5c:c4:a7:23:72:95:0e:f0:c1:1e:08:b2:e8:79:1d:
5d:54:10:7a:68:c3:82:9c:f2:88:6c:1b:95:da:f7:
60:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:83:F1:AA:59:F8:23:B2:AE:1B:E7:DE:5A:F3:2E:55:C5:93:F8:F3
X509v3 Authority Key Identifier:
keyid:42:E6:65:E1:11:04:D8:CD:08:3F:B1:9D:3C:6F:35:5C:76:28:C4:45
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912968B/FC1D2736E12A11EE8684C217C4F9AE02/QuZl4REE2M0IP7GdPG81XHYoxEU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QuZl4REE2M0IP7GdPG81XHYoxEU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912968B/FC1D2736E12A11EE8684C217C4F9AE02/57810624E12B11EEA7895018C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.105.148.0/22
Signature Algorithm: sha256WithRSAEncryption
60:a0:a5:fb:91:fc:96:cf:05:81:a6:93:c1:8d:68:fe:16:8e:
20:07:98:bb:60:b5:8e:ca:b9:88:59:26:67:1a:98:70:c0:4d:
2d:35:b9:ab:5c:00:b1:21:02:7f:dc:c3:0a:b3:4e:55:74:24:
cb:5e:94:e2:b7:4b:14:15:29:7f:fb:a7:fd:ad:3a:99:ed:de:
c7:68:cf:91:d6:93:dd:a3:17:ac:77:2b:ee:92:e3:3e:30:ea:
f4:c9:33:a6:8b:83:db:14:4a:24:7d:d2:ec:54:07:30:f1:9d:
35:b2:83:b0:d4:31:35:a8:87:fd:04:2a:0c:ff:e8:81:30:96:
87:25:be:52:7f:07:e2:f1:be:38:77:1b:e1:d8:48:b8:5c:6c:
c4:06:d6:f3:7f:9f:18:c4:db:ac:3c:50:6e:f4:10:60:5a:ae:
e6:ee:96:64:92:ca:3b:bd:02:66:40:c6:46:c2:99:d1:58:6f:
f6:56:57:aa:9e:20:42:bc:74:23:93:16:91:d0:df:9a:4c:de:
a4:8e:64:0b:29:d1:1f:36:2c:a6:89:a1:b1:50:fd:fe:e0:a1:
8c:12:ee:ad:0b:39:bd:be:d0:12:07:e9:49:92:cd:e4:b2:b1:
4c:9c:ed:72:40:b7:73:fc:48:cb:17:8e:c9:2e:8a:6b:f4:8f:
89:db:20:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 06:04:57 2025 by rpki-client