Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/04F7B6DCFC0011EFA42C1231C4F9AE02.roa
File: 04F7B6DCFC0011EFA42C1231C4F9AE02.roa (raw, json)
Hash identifier: m/Idu2NNNBVrR+7VsBgT4BiRuUiFs/2288H3tLiVtuQ=
Subject key identifier: AC:0A:A3:45:AD:0F:5B:BB:50:AF:B7:EC:AE:0E:C7:71:F9:78:B8:CC
Certificate issuer: /CN=A9175648/serialNumber=2C1C07D151271969E13E1CFD161B1F60770E290D
Certificate serial: 4C
Authority key identifier: 2C:1C:07:D1:51:27:19:69:E1:3E:1C:FD:16:1B:1F:60:77:0E:29:0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBwH0VEnGWnhPhz9FhsfYHcOKQ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/04F7B6DCFC0011EFA42C1231C4F9AE02.roa
Signing time: Sat 08 Mar 2025 09:33:48 +0000
ROA not before: Sat 08 Mar 2025 09:33:48 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 141385
IP address blocks: 163.61.16.0/23 maxlen: 23
2001:df5:c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 09 Mar 2025 09:39:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76 (0x4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9175648
Validity
Not Before: Mar 8 09:33:48 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67cc0efc-8eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:8c:b4:d1:19:d6:27:3c:7b:ee:c1:e1:02:f3:
d9:e7:75:ea:51:52:3c:eb:d7:bf:d5:9e:9d:9c:68:
37:3e:aa:97:2f:aa:16:dc:19:4f:c6:9b:82:73:76:
0f:38:e6:5b:60:ce:43:c9:f5:2c:b7:fb:bc:81:a8:
cf:cc:62:01:f1:e8:04:af:f0:11:ff:7c:94:e0:11:
c0:1b:c2:55:83:9f:d1:fc:3e:87:82:29:28:68:da:
36:8f:19:ff:e9:06:5c:6a:77:70:e3:03:87:b1:b3:
28:66:a9:42:73:ae:1e:21:f2:05:e8:e1:b0:d8:4b:
ce:dc:64:e1:e0:27:2b:ba:49:c4:28:39:7e:89:26:
95:b1:f0:21:1d:28:a8:07:dd:db:6a:23:c4:90:a7:
96:c6:f0:ee:ca:8c:30:8e:97:31:8f:40:57:15:72:
21:80:f3:7d:f2:52:fa:90:61:1d:f0:a9:63:3e:3b:
0a:7c:c8:75:b4:95:89:3a:f0:cc:cb:d2:a5:7c:6a:
99:ec:55:bb:8f:4b:7a:c1:0a:e8:cc:89:02:5d:41:
4c:e1:b7:4c:41:13:12:ef:fe:b2:48:6f:30:60:f0:
24:02:fa:59:4d:7f:5d:27:95:a6:c6:e4:10:1c:71:
c3:d5:ae:e1:38:75:48:b0:7e:2d:d6:f1:96:98:42:
9b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:0A:A3:45:AD:0F:5B:BB:50:AF:B7:EC:AE:0E:C7:71:F9:78:B8:CC
X509v3 Authority Key Identifier:
keyid:2C:1C:07:D1:51:27:19:69:E1:3E:1C:FD:16:1B:1F:60:77:0E:29:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/LBwH0VEnGWnhPhz9FhsfYHcOKQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBwH0VEnGWnhPhz9FhsfYHcOKQ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/04F7B6DCFC0011EFA42C1231C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.61.16.0/23
IPv6:
2001:df5:c0::/48
Signature Algorithm: sha256WithRSAEncryption
c9:15:97:d9:1f:2d:82:68:0e:b5:d0:49:c0:59:0a:22:4c:9e:
46:c7:ce:ae:ca:0d:c4:22:29:89:28:4c:f7:02:2c:55:57:6d:
a4:be:23:73:02:16:80:a7:40:41:54:33:a8:a2:91:33:4f:19:
ef:6c:92:f3:1f:d5:cc:a2:11:70:09:9c:4f:97:47:13:73:85:
61:c7:e3:24:c5:49:39:06:c5:b2:76:09:cc:67:59:50:47:6d:
b4:b2:30:ab:77:e1:8a:b8:79:bd:9b:17:5f:0f:b4:d5:7c:cc:
ec:f8:99:fb:09:ad:9d:bb:9f:b2:f1:d8:3b:f8:1f:3d:6e:e3:
59:83:6f:b4:5a:6f:8d:7c:f5:63:8b:71:06:49:da:c9:1f:f9:
d5:e3:da:98:69:7a:18:c3:35:cf:2f:28:1d:aa:17:86:6f:01:
b0:78:a5:7a:bb:d3:16:5e:cf:e1:07:01:63:03:f8:11:9c:02:
2f:1c:44:ff:e7:52:58:04:5e:4b:01:b9:74:67:71:ee:90:40:
88:71:be:52:d2:19:14:7b:db:e9:20:a6:20:8f:12:23:0f:e8:
76:6c:22:c3:cd:e2:2f:83:6d:a0:5b:0b:8e:bb:c6:ff:0e:6b:
7c:08:a5:d5:d8:c3:32:7f:a4:a5:e0:8b:65:e3:f1:be:de:5c:
11:32:08:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 05:20:23 2025 by rpki-client