Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/6CBB13FCFCCA11EFB1B6FE7BC4F9AE02.roa
File: 6CBB13FCFCCA11EFB1B6FE7BC4F9AE02.roa (raw, json)
Hash identifier: XW/LNuSgk9TUmn5MBHbutnFSiSEPyfYH7lnRkXohLrk=
Subject key identifier: 64:86:93:FE:7B:32:9A:65:D4:90:70:38:B8:3E:A4:09:8C:73:82:0A
Certificate issuer: /CN=A9175648/serialNumber=2C1C07D151271969E13E1CFD161B1F60770E290D
Certificate serial: 53
Authority key identifier: 2C:1C:07:D1:51:27:19:69:E1:3E:1C:FD:16:1B:1F:60:77:0E:29:0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBwH0VEnGWnhPhz9FhsfYHcOKQ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/6CBB13FCFCCA11EFB1B6FE7BC4F9AE02.roa
Signing time: Sun 09 Mar 2025 09:39:41 +0000
ROA not before: Sun 09 Mar 2025 09:39:41 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 141385
IP address blocks: 163.61.16.0/24 maxlen: 24
2001:df5:c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 05 Apr 2025 08:37:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83 (0x53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9175648
Validity
Not Before: Mar 9 09:39:41 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67cd61dd-7e91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f2:af:2b:cc:70:f1:b6:1b:2a:5b:1b:9f:78:
f2:d8:cb:8b:d0:46:a6:0f:d5:3d:19:9c:0b:b1:91:
42:6e:99:bc:be:a5:7f:7b:96:c8:72:f6:2b:60:9a:
6f:bb:75:0c:3d:b4:e1:4f:c7:18:a5:b3:d3:20:59:
62:62:1c:07:c8:31:b7:7c:35:7a:7b:32:64:1c:4d:
b4:3d:02:0f:57:88:df:41:da:92:de:92:ae:95:e3:
f8:7d:f8:cc:ad:88:a9:97:93:6b:f4:a8:87:f7:b7:
0f:73:32:21:6f:52:94:ca:9f:f6:a1:da:06:6f:5d:
b8:75:6b:f0:36:50:88:0e:e6:58:e3:5a:47:e5:5a:
5c:36:37:da:d9:c6:4c:c7:49:e1:a7:38:92:58:b2:
48:45:d5:1e:c8:29:2f:8b:c4:69:3a:1a:57:02:d9:
40:90:91:dc:85:0d:ad:a9:cf:d5:2f:f1:5f:32:f4:
a6:77:4b:b8:67:8c:04:81:fb:54:a4:8a:cd:63:a5:
53:b2:78:65:ae:57:5e:a3:b3:d1:8d:71:c8:87:c7:
0f:24:3b:ba:44:cc:8b:a6:5c:54:d4:c7:30:42:40:
cc:b5:e6:55:e3:7f:ea:52:50:c9:e5:40:1e:9f:38:
fd:a9:c5:cc:fd:d4:c9:02:6c:1e:67:2d:f2:c1:b9:
b8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:86:93:FE:7B:32:9A:65:D4:90:70:38:B8:3E:A4:09:8C:73:82:0A
X509v3 Authority Key Identifier:
keyid:2C:1C:07:D1:51:27:19:69:E1:3E:1C:FD:16:1B:1F:60:77:0E:29:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/LBwH0VEnGWnhPhz9FhsfYHcOKQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBwH0VEnGWnhPhz9FhsfYHcOKQ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/6CBB13FCFCCA11EFB1B6FE7BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.61.16.0/24
IPv6:
2001:df5:c0::/48
Signature Algorithm: sha256WithRSAEncryption
7f:ab:e3:95:1b:05:6f:92:98:d2:44:c7:6f:ad:f9:23:80:1d:
f0:8a:a6:06:c7:18:0b:50:dc:cb:ba:33:f8:eb:c9:41:31:f4:
da:2c:49:de:c0:91:e3:f7:6b:03:73:b1:fb:0f:3a:5b:2d:35:
04:bb:a3:b0:d4:26:9d:f9:fa:d9:e1:d8:9a:98:47:40:90:77:
e8:30:10:49:96:fe:9b:2c:88:e3:24:1e:01:d8:7a:e0:36:73:
1b:35:f2:2e:7a:87:b9:f0:b6:82:7a:12:7a:b1:ef:c0:b2:3f:
5e:64:2e:3f:e3:f3:c2:eb:5e:f2:1b:9b:67:6f:47:ee:12:41:
5e:36:cd:7c:88:2a:7b:2f:fe:bd:75:57:0e:ae:0b:7c:69:62:
05:98:34:59:73:7c:41:11:9a:e3:65:bd:71:d0:15:a1:e4:8c:
19:dc:08:62:c7:5a:47:12:18:f4:2b:75:d6:a1:90:e4:a5:76:
94:ef:f0:ab:40:f2:d7:37:65:63:4b:ee:92:c2:a3:f3:90:91:
8c:a4:e5:8d:98:37:b9:14:f6:48:4f:df:74:5d:8e:22:2a:52:
97:62:42:4c:5c:46:e3:ad:45:67:f4:af:06:cf:0f:fe:b3:be:
08:73:42:d5:59:ad:a6:dc:57:5a:ce:e0:34:45:f2:b7:00:7c:
f5:9d:77:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:44:26 2025 by rpki-client