Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/A211F86C4B5911F0BE7E4B20C4F9AE02.roa
File: A211F86C4B5911F0BE7E4B20C4F9AE02.roa (raw, json)
Hash identifier: XwsS2RzzCdlWi9BeOyAl8cDAZdHimA77E7p4salt3tg=
Subject key identifier: E0:12:BE:23:93:E5:A8:3E:B1:50:37:52:6A:78:C8:AA:68:13:39:56
Certificate issuer: /CN=A913F8B5/serialNumber=138F9A8CF207DA008B401C6DE8D91310FE25EA4C
Certificate serial: 0535
Authority key identifier: 13:8F:9A:8C:F2:07:DA:00:8B:40:1C:6D:E8:D9:13:10:FE:25:EA:4C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4-ajPIH2gCLQBxt6NkTEP4l6kw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/A211F86C4B5911F0BE7E4B20C4F9AE02.roa
Signing time: Tue 17 Jun 2025 09:01:19 +0000
ROA not before: Tue 17 Jun 2025 09:01:19 +0000
ROA not after: Fri 31 Oct 2025 00:00:00 +0000
asID: 56264
IP address blocks: 103.171.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Jul 2025 11:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1333 (0x535)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913F8B5, serialNumber=138F9A8CF207DA008B401C6DE8D91310FE25EA4C
Validity
Not Before: Jun 17 09:01:19 2025 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=68512edf-94d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:47:88:e7:56:78:22:7c:c1:d6:d0:05:f3:3d:
8f:34:d3:d9:bf:72:59:f1:1c:bf:13:f8:59:9c:28:
68:2a:6f:68:2d:2b:55:b2:0d:20:36:88:ce:45:75:
64:eb:13:27:13:6f:ed:c4:6e:51:17:81:bf:db:5b:
82:79:3f:84:3a:0c:24:af:eb:de:82:67:37:f5:2d:
06:59:68:02:85:a8:f4:e8:ff:14:de:34:81:bc:5c:
5e:95:e0:06:65:43:57:f5:93:ee:ba:cc:e6:90:e0:
c3:85:eb:0f:5b:a7:a0:9b:49:1b:eb:da:6a:2b:c6:
af:6c:50:6b:ea:17:7f:a8:7b:4b:1d:cd:34:52:df:
46:59:8d:5a:41:6d:0b:7f:b8:64:fb:e2:8a:25:75:
f9:9a:da:a8:70:e0:b0:82:4a:aa:2b:d0:83:15:c6:
fa:99:34:71:ae:e4:b1:eb:1f:aa:e4:7f:2b:f0:41:
77:6c:66:64:2a:78:a3:fa:85:3f:ae:58:06:b8:48:
b7:85:58:7f:6e:23:63:da:59:3a:cd:28:7c:e0:47:
f1:56:ee:62:a5:b9:bf:5d:34:ea:77:1c:20:1d:99:
68:b1:54:4d:e3:f5:ce:27:39:6f:ad:0e:b5:f2:74:
92:24:e5:f9:9c:d6:a9:a0:38:ea:29:fe:1d:53:ba:
13:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:12:BE:23:93:E5:A8:3E:B1:50:37:52:6A:78:C8:AA:68:13:39:56
X509v3 Authority Key Identifier:
keyid:13:8F:9A:8C:F2:07:DA:00:8B:40:1C:6D:E8:D9:13:10:FE:25:EA:4C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/E4-ajPIH2gCLQBxt6NkTEP4l6kw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4-ajPIH2gCLQBxt6NkTEP4l6kw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F8B5/239D2A42FFF911EBA8F74360C4F9AE02/A211F86C4B5911F0BE7E4B20C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.171.136.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:94:35:21:3c:8d:26:04:f3:4e:6b:ab:38:5f:5c:f7:bc:2f:
c0:5b:bd:1b:62:4c:cd:f7:43:c7:82:3f:da:8e:0a:57:7b:aa:
d6:f1:64:bb:c0:da:12:40:83:d7:74:f5:b2:fa:2d:46:87:be:
ef:b7:c8:fe:28:7e:9e:e5:73:9e:a9:fb:01:70:4d:3f:7b:95:
8d:65:8d:d0:c5:20:f0:1f:6d:fd:80:4e:fe:c6:7e:e1:1b:b9:
e1:c5:e0:15:b9:81:6c:cc:16:e5:2a:ea:8d:1a:6f:55:28:b9:
7a:19:22:93:8d:9b:3e:83:1f:ca:64:17:f6:f9:f4:e1:a5:be:
a7:bf:a9:74:67:45:97:50:63:49:eb:74:fe:01:39:3f:5d:22:
ef:e9:d7:33:59:4d:95:90:96:05:21:04:bf:30:be:ad:44:28:
ed:bb:68:48:59:20:4b:52:62:97:a8:8d:ff:f2:c3:fd:f7:93:
a8:04:5f:9b:03:2a:bb:80:30:0c:ab:14:2a:c8:34:07:47:24:
a7:35:98:e1:0f:67:ca:af:0e:60:f3:76:3d:58:04:9d:f2:8a:
ac:ea:0d:1a:70:41:b7:dd:b6:bb:68:60:30:6a:4f:5e:32:73:
e2:05:83:a1:e4:48:19:ee:fb:af:bf:1e:57:96:9b:6f:b3:30:
56:f6:7c:79
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICBTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
M0Y4QjUxMTAvBgNVBAUTKDEzOEY5QThDRjIwN0RBMDA4QjQwMUM2REU4RDkxMzEw
RkUyNUVBNEMwHhcNMjUwNjE3MDkwMTE5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD
VQQDEw02ODUxMmVkZi05NGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwkeI51Z4InzB1tAF8z2PNNPZv3JZ8Ry/E/hZnChoKm9oLStVsg0gNojORXVk
6xMnE2/txG5RF4G/21uCeT+EOgwkr+vegmc39S0GWWgChaj06P8U3jSBvFxeleAG
ZUNX9ZPuuszmkODDhesPW6egm0kb69pqK8avbFBr6hd/qHtLHc00Ut9GWY1aQW0L
f7hk++KKJXX5mtqocOCwgkqqK9CDFcb6mTRxruSx6x+q5H8r8EF3bGZkKnij+oU/
rlgGuEi3hVh/biNj2lk6zSh84EfxVu5ipbm/XTTqdxwgHZlosVRN4/XOJzlvrQ61
8nSSJOX5nNapoDjqKf4dU7oTbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOASviOT
5ag+sVA3Ump4yKpoEzlWMB8GA1UdIwQYMBaAFBOPmozyB9oAi0AcbejZExD+JepM
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjhCNS8yMzlEMkE0MkZG
RjkxMUVCQThGNzQzNjBDNEY5QUUwMi9FNC1halBJSDJnQ0xRQnh0Nk5rVEVQNGw2
a3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL0U0LWFqUElIMmdDTFFCeHQ2TmtURVA0bDZrdy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
M0Y4QjUvMjM5RDJBNDJGRkY5MTFFQkE4Rjc0MzYwQzRGOUFFMDIvQTIxMUY4NkM0
QjU5MTFGMEJFN0U0QjIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnq4gwDQYJKoZIhvcNAQELBQADggEBAJqUNSE8jSYE805r
qzhfXPe8L8BbvRtiTM33Q8eCP9qOCld7qtbxZLvA2hJAg9d09bL6LUaHvu+3yP4o
fp7lc56p+wFwTT97lY1ljdDFIPAfbf2ATv7GfuEbueHF4BW5gWzMFuUq6o0ab1Uo
uXoZIpONmz6DH8pkF/b59OGlvqe/qXRnRZdQY0nrdP4BOT9dIu/p1zNZTZWQlgUh
BL8wvq1EKO27aEhZIEtSYpeojf/yw/33k6gEX5sDKruAMAyrFCrINAdHJKc1mOEP
Z8qvDmDzdj1YBJ3yiqzqDRpwQbfdtrtoYDBqT14yc+IFg6HkSBnu+6+/HleWm2+z
MFb2fHk=
-----END CERTIFICATE-----
Generated at Mon Jul 21 07:00:30 2025 by rpki-client