Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/E9FBBEEC069411F0AF759222C4F9AE02.roa
File: E9FBBEEC069411F0AF759222C4F9AE02.roa (raw, json)
Hash identifier: PfPnHj6GmBWzD4IlP9YaVN4C3nwaMcUySXmoDROspNQ=
Subject key identifier: 3D:FF:A6:BC:50:01:0C:81:10:B9:C4:E6:5B:DF:B5:B9:44:25:F0:F9
Certificate issuer: /CN=A915BC98/serialNumber=FF8CCBE618755A1F5199BD0C82760E8EDB8F85BA
Certificate serial: 19
Authority key identifier: FF:8C:CB:E6:18:75:5A:1F:51:99:BD:0C:82:76:0E:8E:DB:8F:85:BA
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/E9FBBEEC069411F0AF759222C4F9AE02.roa
Signing time: Fri 21 Mar 2025 20:42:15 +0000
ROA not before: Fri 21 Mar 2025 20:42:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215750
IP address blocks: 163.223.179.0/24 maxlen: 24
2401:f860::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 24 Mar 2025 17:27:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25 (0x19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915BC98, serialNumber=FF8CCBE618755A1F5199BD0C82760E8EDB8F85BA
Validity
Not Before: Mar 21 20:42:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=67ddcf27-8db9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b3:c4:91:b4:e8:be:1f:72:80:79:15:ae:48:
96:13:a5:c9:b5:3f:2d:e5:f8:d7:ab:b2:3a:8a:37:
04:c1:b7:8c:4e:a1:25:61:b6:de:44:a9:0b:85:29:
a4:c6:97:43:3f:a6:8d:9e:85:48:14:3c:db:4b:40:
bf:40:9b:82:32:23:cc:9f:ab:76:6d:e2:97:bd:7c:
e0:5b:f4:e0:e2:32:14:1e:c9:4e:fa:56:ce:e0:79:
11:69:af:db:88:8f:11:2e:0f:03:84:97:2d:ca:9a:
b3:0d:e2:24:07:4f:4d:e8:e2:1e:ba:7d:84:a4:b1:
7f:6d:04:72:21:d8:e0:d7:68:b2:19:13:2f:c0:1b:
22:ed:dc:05:55:2a:31:6f:3a:cc:c6:8c:68:12:eb:
f6:cc:9f:3c:54:58:e9:1b:c9:9f:26:75:1b:93:04:
8a:87:d9:e1:cf:ec:fd:95:d0:96:97:32:4f:a6:26:
e5:d8:01:89:77:7d:a9:8b:fb:3e:8d:43:54:44:87:
fb:ab:a3:ea:a1:29:6a:ba:42:4a:af:41:58:9c:57:
3d:2d:ce:3b:c8:11:b0:86:de:dc:18:a7:8a:31:7b:
b1:19:cf:8d:e6:95:6c:08:4a:30:57:96:61:4d:50:
6b:21:23:4c:d7:05:ac:f4:2d:d2:a3:6d:86:4d:1e:
1a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:FF:A6:BC:50:01:0C:81:10:B9:C4:E6:5B:DF:B5:B9:44:25:F0:F9
X509v3 Authority Key Identifier:
keyid:FF:8C:CB:E6:18:75:5A:1F:51:99:BD:0C:82:76:0E:8E:DB:8F:85:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/E9FBBEEC069411F0AF759222C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.223.179.0/24
IPv6:
2401:f860::/44
Signature Algorithm: sha256WithRSAEncryption
75:a6:9c:eb:0d:63:6e:ce:dc:83:f4:28:d4:1e:4f:9f:44:d6:
dd:b5:5a:92:f5:66:e8:a8:f7:34:b5:fe:b6:66:fc:1e:a0:fb:
2d:e2:9e:07:82:30:ea:89:86:b1:99:f7:69:90:33:d2:b7:fb:
27:2d:30:12:a2:6b:1f:91:af:7a:5a:18:88:0a:32:5e:0d:63:
d0:07:a4:20:b1:0f:96:89:31:98:dc:d5:05:ea:4a:7d:32:89:
5e:24:27:7a:15:4e:11:2d:0f:8c:bf:bb:2e:d0:b9:80:31:1f:
40:51:34:c5:35:c5:2f:08:9d:72:99:a0:12:50:22:99:bb:2a:
13:7a:53:7f:03:da:8e:1e:c7:44:0c:56:dd:2f:e0:ce:d3:10:
6d:89:21:66:41:22:d9:b8:a6:0c:c1:1a:eb:46:e0:a8:40:95:
8e:c2:b3:6a:e2:ac:6d:3b:b6:19:9b:2a:67:f7:02:6d:98:79:
68:88:20:be:43:8e:9c:7a:6f:09:f1:ec:a6:8c:fe:48:54:21:
fa:ef:32:dd:26:c8:de:4b:f2:3d:80:dc:1c:5c:8c:e7:d8:da:
13:eb:cf:98:26:46:5d:52:ed:78:43:96:26:a3:72:d5:45:09:
6d:a9:40:d4:9b:b4:fe:a2:43:1a:fa:96:38:b6:bf:18:24:f7:
8f:4f:7f:00
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1
QkM5ODExMC8GA1UEBRMoRkY4Q0NCRTYxODc1NUExRjUxOTlCRDBDODI3NjBFOEVE
QjhGODVCQTAeFw0yNTAzMjEyMDQyMTVaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV
BAMTDTY3ZGRjZjI3LThkYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCps8SRtOi+H3KAeRWuSJYTpcm1Py3l+NersjqKNwTBt4xOoSVhtt5EqQuFKaTG
l0M/po2ehUgUPNtLQL9Am4IyI8yfq3Zt4pe9fOBb9ODiMhQeyU76Vs7geRFpr9uI
jxEuDwOEly3KmrMN4iQHT03o4h66fYSksX9tBHIh2ODXaLIZEy/AGyLt3AVVKjFv
OszGjGgS6/bMnzxUWOkbyZ8mdRuTBIqH2eHP7P2V0JaXMk+mJuXYAYl3famL+z6N
Q1REh/uro+qhKWq6QkqvQVicVz0tzjvIEbCG3twYp4oxe7EZz43mlWwISjBXlmFN
UGshI0zXBaz0LdKjbYZNHhqpAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUPf+mvFAB
DIEQucTmW9+1uUQl8PkwHwYDVR0jBBgwFoAU/4zL5hh1Wh9Rmb0MgnYOjtuPhbow
DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVCQzk4L0FCQUZGNUVBMDYx
MjExRjA4RTlBRTUyOUM0RjlBRTAyL180ekw1aGgxV2g5Um1iME1nbllPanR1UGhi
by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG
RDFGRjIvXzR6TDVoaDFXaDlSbWIwTWduWU9qdHVQaGJvLmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw
C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1
QkM5OC9BQkFGRjVFQTA2MTIxMUYwOEU5QUU1MjlDNEY5QUUwMi9FOUZCQkVFQzA2
OTQxMUYwQUY3NTkyMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v
cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh
MB8wDAQCAAEwBgMEAKPfszAPBAIAAjAJAwcEJAH4YAAAMA0GCSqGSIb3DQEBCwUA
A4IBAQB1ppzrDWNuztyD9CjUHk+fRNbdtVqS9WboqPc0tf62ZvweoPst4p4HgjDq
iYaxmfdpkDPSt/snLTASomsfka96WhiICjJeDWPQB6QgsQ+WiTGY3NUF6kp9Mole
JCd6FU4RLQ+Mv7su0LmAMR9AUTTFNcUvCJ1ymaASUCKZuyoTelN/A9qOHsdEDFbd
L+DO0xBtiSFmQSLZuKYMwRrrRuCoQJWOwrNq4qxtO7YZmypn9wJtmHloiCC+Q46c
em8J8eymjP5IVCH67zLdJsjeS/I9gNwcXIzn2NoT68+YJkZdUu14Q5Ymo3LVRQlt
qUDUm7T+okMa+pY4tr8YJPePT38A
-----END CERTIFICATE-----
Generated at Sat Apr 12 23:55:36 2025 by rpki-client