Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/0FBAA3C0DCE511EF93443112C4F9AE02.roa
File: 0FBAA3C0DCE511EF93443112C4F9AE02.roa (raw, json)
Hash identifier: NknIjX7M2xaelETbklnbK1w3lHJycylsIYTWGjXx9Q0=
Subject key identifier: AB:EF:D0:C7:62:A5:75:96:A6:1C:04:67:5C:78:52:78:D9:72:9C:15
Certificate issuer: /CN=A9155647/serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB
Certificate serial: D3
Authority key identifier: AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/0FBAA3C0DCE511EF93443112C4F9AE02.roa
Signing time: Mon 27 Jan 2025 19:29:44 +0000
ROA not before: Mon 27 Jan 2025 19:29:44 +0000
ROA not after: Wed 28 May 2025 00:00:00 +0000
asID: 151734
IP address blocks: 103.72.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Feb 2025 08:40:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211 (0xd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9155647
Validity
Not Before: Jan 27 19:29:44 2025 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=6797dea8-ab9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:5d:8b:66:c7:ec:63:d8:5c:73:62:7b:97:17:
a8:ba:8b:7b:36:18:3f:04:d4:43:4f:61:f7:d5:eb:
82:06:8e:05:45:25:19:02:97:ea:81:bd:7f:3e:d7:
78:66:90:08:1c:80:25:2e:a3:9a:d8:55:84:78:3b:
0d:d1:9f:b3:0a:d5:7f:42:a3:c8:8f:59:ff:3e:e6:
d0:38:5b:e1:c7:46:73:bd:cf:d4:0f:ca:6f:40:ab:
ee:fe:e6:cc:04:6a:ab:da:00:a4:ec:16:64:2d:fa:
57:21:57:67:b4:d7:72:89:5a:9d:35:0e:86:8c:b6:
ca:9e:a9:25:af:ab:8e:a0:b6:57:e6:b8:bf:d8:48:
ad:a1:76:a4:54:a3:50:6c:a9:38:5d:e6:a3:5b:59:
6b:5a:35:e7:14:3c:7b:d0:4e:0f:da:b9:d4:d2:e5:
59:98:1c:db:81:9e:13:c9:f6:b7:8f:42:69:d3:e0:
6f:00:71:c8:da:04:b4:b2:6b:46:04:5c:ce:88:5d:
d5:fe:f9:f3:db:5c:63:94:f0:93:f4:a6:d8:2d:db:
34:e6:eb:26:26:c3:a5:e2:c9:ec:52:5b:45:e8:2c:
95:f2:2e:4c:91:62:89:d7:ab:62:e6:38:92:f0:ba:
8e:f4:d1:9e:98:6c:75:61:66:14:7a:d0:65:2b:91:
ed:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:EF:D0:C7:62:A5:75:96:A6:1C:04:67:5C:78:52:78:D9:72:9C:15
X509v3 Authority Key Identifier:
keyid:AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/0FBAA3C0DCE511EF93443112C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.72.195.0/24
Signature Algorithm: sha256WithRSAEncryption
48:56:54:90:8a:ec:3c:b8:54:8f:28:e9:23:c5:75:04:c8:9a:
12:b0:fa:e4:3f:b8:5d:6b:bd:53:a0:0e:40:6d:b0:01:3b:83:
d2:16:b4:bb:42:64:d8:a1:6e:db:10:a8:c6:59:64:14:97:53:
1a:5e:d2:39:c4:19:62:75:95:f6:31:47:08:7c:04:4a:66:49:
ad:5a:ba:5f:74:55:ab:77:05:3d:ff:55:58:fc:26:81:02:59:
a2:2a:84:ff:b0:0a:cf:49:57:a0:5c:77:e5:ad:53:c9:1e:ba:
90:54:92:4f:2d:50:52:35:a6:ef:08:e7:aa:aa:d2:5d:65:09:
8f:97:31:1f:77:e4:ee:16:8d:8e:55:62:fc:b0:3e:9b:27:cd:
8f:d3:84:cc:01:df:0e:6c:76:5c:80:6b:0f:e2:fd:78:64:d0:
a9:6f:7d:85:bf:34:6a:80:ea:dd:3e:ea:98:f7:ce:f5:5e:28:
01:58:d7:c5:0d:74:2e:3c:0d:77:0d:fc:de:c0:ef:a7:7a:d1:
36:eb:1b:a5:55:eb:1b:07:15:27:4c:9f:60:bc:7c:87:5d:7b:
be:a5:d5:a1:d1:45:cb:7c:35:00:85:c0:26:61:2d:6e:be:1c:
5f:b5:0a:11:03:26:50:dc:fa:ce:ac:d4:57:11:11:34:ec:c6:
3a:f0:58:91
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NTU2NDcxMTAvBgNVBAUTKEFEMzQ0NURCNDIwMTBCMTIxNUE0OUU0MjdGMUFFNzQw
MEQ3ODhCRkIwHhcNMjUwMTI3MTkyOTQ0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD
VQQDEw02Nzk3ZGVhOC1hYjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEA5V2LZsfsY9hcc2J7lxeouot7Nhg/BNRDT2H31euCBo4FRSUZApfqgb1/Ptd4
ZpAIHIAlLqOa2FWEeDsN0Z+zCtV/QqPIj1n/PubQOFvhx0Zzvc/UD8pvQKvu/ubM
BGqr2gCk7BZkLfpXIVdntNdyiVqdNQ6GjLbKnqklr6uOoLZX5ri/2EitoXakVKNQ
bKk4XeajW1lrWjXnFDx70E4P2rnU0uVZmBzbgZ4Tyfa3j0Jp0+BvAHHI2gS0smtG
BFzOiF3V/vnz21xjlPCT9KbYLds05usmJsOl4snsUltF6CyV8i5MkWKJ16ti5jiS
8LqO9NGemGx1YWYUetBlK5HtNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKvv0Mdi
pXWWphwEZ1x4UnjZcpwVMB8GA1UdIwQYMBaAFK00RdtCAQsSFaSeQn8a50ANeIv7
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY0Ny85MDVDMTA0NkYz
NkYxMUVFOTk3MkVCNzlDNEY5QUUwMi9yVFJGMjBJQkN4SVZwSjVDZnhyblFBMTRp
X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL3JUUkYyMElCQ3hJVnBKNUNmeHJuUUExNGlfcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NTU2NDcvOTA1QzEwNDZGMzZGMTFFRTk5NzJFQjc5QzRGOUFFMDIvMEZCQUEzQzBE
Q0U1MTFFRjkzNDQzMTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBABnSMMwDQYJKoZIhvcNAQELBQADggEBAEhWVJCK7Dy4VI8o
6SPFdQTImhKw+uQ/uF1rvVOgDkBtsAE7g9IWtLtCZNihbtsQqMZZZBSXUxpe0jnE
GWJ1lfYxRwh8BEpmSa1aul90Vat3BT3/VVj8JoECWaIqhP+wCs9JV6Bcd+WtU8ke
upBUkk8tUFI1pu8I56qq0l1lCY+XMR935O4WjY5VYvywPpsnzY/ThMwB3w5sdlyA
aw/i/Xhk0KlvfYW/NGqA6t0+6pj3zvVeKAFY18UNdC48DXcN/N7A76d60TbrG6VV
6xsHFSdMn2C8fIdde76l1aHRRct8NQCFwCZhLW6+HF+1ChEDJlDc+s6s1FcRETTs
xjrwWJE=
-----END CERTIFICATE-----
Generated at Fri Apr 11 11:47:27 2025 by rpki-client