Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913F600/9F615BBE059511E99920D271C4F9AE02/45892AB6E05C11EEBE4DBD67C4F9AE02.roa
File: 45892AB6E05C11EEBE4DBD67C4F9AE02.roa (raw, json)
Hash identifier: tXjld/WmLonex1cTxfPcoCphP9ihWRPYo4TqWcQuzoE=
Subject key identifier: FA:15:1C:EA:7A:CF:8F:18:88:AE:6B:2A:82:C1:87:93:65:80:D2:0B
Certificate issuer: /CN=A913F600/serialNumber=08DB815B7310D87EEFAFCD52CF261CD15829F790
Certificate serial: 113E
Authority key identifier: 08:DB:81:5B:73:10:D8:7E:EF:AF:CD:52:CF:26:1C:D1:58:29:F7:90
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNuBW3MQ2H7vr81SzyYc0Vgp95A.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913F600/9F615BBE059511E99920D271C4F9AE02/45892AB6E05C11EEBE4DBD67C4F9AE02.roa
Signing time: Thu 20 Feb 2025 17:55:39 +0000
ROA not before: Thu 20 Feb 2025 17:55:39 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 152629
IP address blocks: 2404:5c0:8740::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 12 Mar 2025 17:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4414 (0x113e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913F600
Validity
Not Before: Feb 20 17:55:39 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67b76c9a-9230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d2:b2:eb:da:23:1c:dd:02:c5:c1:6e:42:af:
6e:ab:4d:e2:f6:b0:7d:3b:0d:93:77:5c:b6:60:16:
85:5d:d5:a8:cc:76:b5:ea:89:60:eb:85:6e:62:45:
9b:da:2f:c9:9a:fb:d2:8b:1e:b2:5e:02:11:c4:dc:
b7:02:ff:b5:80:5f:d9:ee:85:9d:d4:0a:4e:76:e7:
f3:31:c4:1f:34:5b:b7:0d:48:ea:1c:09:98:16:34:
45:ee:28:4b:f8:27:b7:96:56:2d:d0:5d:13:98:44:
db:de:a9:8f:6d:96:ad:ae:5d:4a:dc:42:e4:97:2b:
7b:d9:d1:36:86:c7:29:9b:e9:93:d5:c8:a8:74:eb:
28:4c:b1:66:bf:10:ce:af:dc:9e:2e:a5:9e:a4:d6:
00:55:a4:82:95:e8:4e:74:d2:d5:80:df:04:12:b3:
c1:80:1d:8b:4f:b6:00:89:4a:b7:6f:43:6b:95:3e:
17:e7:3d:5b:49:84:ae:13:2d:bc:53:7e:a6:c3:ac:
f1:f7:fa:d4:2d:52:a7:83:26:c5:93:e4:dc:dc:ad:
8f:80:a4:fa:ea:7b:9b:a3:cb:73:ac:cd:e0:1e:fc:
58:2c:9f:04:a5:71:52:2d:10:62:55:2d:9b:1a:19:
e2:a7:fd:3f:6c:e5:5f:a2:6c:90:63:c8:b7:1c:bb:
c1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:15:1C:EA:7A:CF:8F:18:88:AE:6B:2A:82:C1:87:93:65:80:D2:0B
X509v3 Authority Key Identifier:
keyid:08:DB:81:5B:73:10:D8:7E:EF:AF:CD:52:CF:26:1C:D1:58:29:F7:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913F600/9F615BBE059511E99920D271C4F9AE02/CNuBW3MQ2H7vr81SzyYc0Vgp95A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNuBW3MQ2H7vr81SzyYc0Vgp95A.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F600/9F615BBE059511E99920D271C4F9AE02/45892AB6E05C11EEBE4DBD67C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:5c0:8740::/48
Signature Algorithm: sha256WithRSAEncryption
d5:a0:90:34:6d:41:79:21:3f:e2:39:87:c2:e0:97:dd:d7:53:
f6:3b:10:f9:e6:60:98:35:56:58:2c:93:07:06:63:45:eb:90:
b9:0a:49:72:cc:2e:77:3c:3c:4b:45:f4:44:db:39:1f:ff:be:
32:e8:e0:72:ed:43:f3:da:42:00:8e:30:83:59:4d:70:91:26:
c5:84:48:30:85:00:83:d4:f0:fe:4c:df:cd:99:91:0e:11:f3:
b1:05:57:0e:eb:1e:c8:27:59:c7:88:99:28:47:b8:d8:12:ae:
8d:90:be:00:bd:f8:d7:7e:a4:48:6a:56:1e:86:8d:d4:85:2d:
03:65:2b:c8:79:c8:22:8a:f8:ab:b8:07:35:6a:58:64:59:81:
91:d0:55:f0:52:83:37:93:7f:c6:be:05:c3:4c:5b:bc:5c:64:
6d:84:9f:9d:ce:9e:03:02:24:9c:ae:92:f3:56:91:e1:94:fc:
a3:db:34:e8:cb:8b:1a:59:ff:db:23:ae:39:1c:ff:13:98:01:
66:45:83:95:ef:6f:63:bc:69:88:90:ac:f8:5a:d4:9c:58:45:
3c:56:69:a5:d2:37:24:d5:6b:18:d7:26:80:c4:22:a0:f6:da:
9e:58:8c:da:e1:02:f4:13:f1:96:6c:f5:c0:7a:cc:e8:08:a2:
72:62:84:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 09:04:21 2025 by rpki-client