Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/D05B8592FBFB11EF84143914C4F9AE02.roa
File: D05B8592FBFB11EF84143914C4F9AE02.roa (raw, json)
Hash identifier: lslHx4XA3ImGR8D1O/Fifd1wV0afewz3JOmQCS/8oFw=
Subject key identifier: B0:C0:17:20:78:E5:6D:7C:DC:C1:7C:A6:62:61:82:E6:8C:60:5C:46
Certificate issuer: /CN=A9175648/serialNumber=2C1C07D151271969E13E1CFD161B1F60770E290D
Certificate serial: 47
Authority key identifier: 2C:1C:07:D1:51:27:19:69:E1:3E:1C:FD:16:1B:1F:60:77:0E:29:0D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBwH0VEnGWnhPhz9FhsfYHcOKQ0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/D05B8592FBFB11EF84143914C4F9AE02.roa
Signing time: Sat 08 Mar 2025 09:01:08 +0000
ROA not before: Sat 08 Mar 2025 09:01:08 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 141385
IP address blocks: 163.61.16.0/23 maxlen: 23
2001:df5:c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 08 Mar 2025 09:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71 (0x47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9175648
Validity
Not Before: Mar 8 09:01:08 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67cc0753-4130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:12:4c:27:28:38:fe:58:a1:4e:1a:c8:57:5e:
9b:77:b0:23:5c:45:4f:42:07:07:db:52:9c:fc:b2:
71:df:27:c2:ca:cf:2a:30:f4:91:45:10:68:69:3c:
bc:4d:b3:ce:28:b5:2d:90:17:fb:70:3c:41:99:57:
49:41:62:fa:d5:c8:cd:c5:39:3b:37:1c:fb:b0:5e:
22:2d:78:a4:01:4a:bb:6e:72:c8:de:d8:ac:96:9a:
46:e4:49:4f:f8:de:36:0e:bf:6e:a4:30:56:ce:c4:
28:a0:d1:3f:cc:04:ad:68:f2:70:71:85:df:d7:41:
e8:38:9e:82:70:d1:ed:29:c7:bd:e1:28:14:54:ac:
a2:19:88:c3:65:92:85:b5:28:c5:d9:59:1f:63:c7:
62:53:d7:62:f5:e2:f5:a4:ae:37:f4:7d:f0:88:4e:
88:89:42:2c:48:1f:84:02:52:91:b9:49:68:f5:6a:
80:95:f9:b6:f1:18:21:c3:18:32:d3:a4:99:19:1e:
18:35:09:9c:5d:2c:98:91:4a:7b:17:6a:c7:29:94:
3d:31:14:f5:11:d9:76:42:9c:06:54:92:a5:9a:ab:
7a:c7:28:67:95:1f:02:53:53:8e:e0:36:c5:82:7f:
f9:0c:39:99:90:48:1c:37:15:21:7a:35:ec:93:39:
86:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C0:17:20:78:E5:6D:7C:DC:C1:7C:A6:62:61:82:E6:8C:60:5C:46
X509v3 Authority Key Identifier:
keyid:2C:1C:07:D1:51:27:19:69:E1:3E:1C:FD:16:1B:1F:60:77:0E:29:0D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/LBwH0VEnGWnhPhz9FhsfYHcOKQ0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LBwH0VEnGWnhPhz9FhsfYHcOKQ0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175648/218F268ADC9E11EF8B62DD5FC4F9AE02/D05B8592FBFB11EF84143914C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.61.16.0/23
IPv6:
2001:df5:c0::/48
Signature Algorithm: sha256WithRSAEncryption
1c:b1:d5:25:7c:fa:f4:db:6f:30:39:8d:53:40:57:96:80:05:
f0:d5:ac:7f:b7:f2:cb:8d:f7:09:1c:84:5b:eb:7c:00:46:1f:
5f:06:d3:24:2d:87:15:dd:e2:c3:a4:6b:3b:e3:fd:27:65:78:
8f:ab:8e:f7:72:d0:c1:f6:ad:5d:da:10:e4:da:6f:4f:ed:45:
c4:49:73:38:81:6c:d7:aa:2c:82:c3:a6:7b:9b:01:c7:dd:5c:
2e:cc:83:e8:40:5d:08:9f:90:45:8f:2b:26:57:79:08:82:ab:
c0:fb:92:8c:2b:cc:b2:b8:87:9b:22:32:8e:80:db:5c:56:78:
d5:26:ea:47:b7:38:1d:e3:cb:be:8e:ed:7e:cb:49:04:ed:6b:
0d:1e:f0:01:d5:10:6b:0a:5b:04:8c:86:1f:f2:54:50:1c:d7:
1b:d0:65:47:d0:a2:72:31:c3:01:ba:1d:26:4b:c1:fa:bb:fa:
cc:0a:2f:62:01:63:b3:56:b5:5e:9c:7c:bd:29:37:14:10:53:
e5:05:4b:b1:74:eb:80:13:c5:35:0e:f7:d3:77:42:4e:f1:3f:
b7:ad:54:90:53:db:b6:14:39:ba:95:61:fb:9a:f9:e5:4d:61:
65:dc:5c:20:e7:93:7a:ea:74:73:34:ad:ec:d5:3d:b4:1a:bb:
34:fc:2d:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:50:33 2025 by rpki-client