Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/28722BE0BE0411EF99CA5361C4F9AE02.roa
File: 28722BE0BE0411EF99CA5361C4F9AE02.roa (raw, json)
Hash identifier: lxcCZnc0kKJjD5J2pbZ3y9DLUar2+O8Pvm8kq5NVP+Q=
Subject key identifier: 70:67:DD:B2:F0:87:85:D9:F2:A8:75:CA:6E:9A:69:44:8C:84:D6:93
Certificate issuer: /CN=A918213B/serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF
Certificate serial: 02E5
Authority key identifier: DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/28722BE0BE0411EF99CA5361C4F9AE02.roa
Signing time: Tue 28 Jan 2025 11:32:46 +0000
ROA not before: Tue 28 Jan 2025 11:32:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 149765
IP address blocks: 103.185.226.0/23 maxlen: 24
2400:6ae0::/32 maxlen: 36
Validation: Failed, certificate revoked on Sat 22 Mar 2025 07:59:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 741 (0x2e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918213B
Validity
Not Before: Jan 28 11:32:46 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6798c05e-46c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cf:9c:e5:a3:63:d8:93:ab:72:98:01:6f:9b:
00:16:88:80:79:78:05:2d:26:8d:fa:76:18:a6:43:
b8:d1:96:08:99:39:0e:88:c5:f2:9e:e0:30:6d:fa:
8f:92:15:2c:90:59:f7:d5:d1:01:37:04:d3:91:06:
4b:26:b1:ff:03:a8:58:8d:47:8c:51:69:b2:4d:28:
92:32:8e:e8:37:2e:33:d4:de:b6:16:f1:37:d2:69:
34:d4:f4:11:67:9f:b3:88:73:5f:77:21:26:03:37:
84:e6:a6:55:2f:c7:d3:d9:67:91:68:dd:81:4a:d1:
61:6f:d8:19:3f:50:b1:19:16:58:7e:51:d8:d1:32:
b6:07:58:e3:e4:ee:77:a5:9f:2c:09:2c:31:91:0e:
cc:0e:0e:dd:32:d4:58:8d:88:27:0c:b4:f1:24:d3:
70:9e:9d:ef:6b:55:11:9f:41:f7:e3:c2:d9:ca:99:
89:bf:9a:98:d0:29:4a:6e:17:97:89:3a:0e:a0:66:
4b:2f:30:70:88:3c:bc:33:2c:73:8f:e7:d4:31:21:
6a:08:5e:cf:69:5e:75:85:cf:34:99:36:1b:e6:c2:
e5:df:f5:0a:88:63:e7:3d:b5:4c:7e:45:05:8a:a1:
16:1b:44:13:f6:20:3f:dc:2f:40:7e:8f:b7:e2:6c:
22:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:67:DD:B2:F0:87:85:D9:F2:A8:75:CA:6E:9A:69:44:8C:84:D6:93
X509v3 Authority Key Identifier:
keyid:DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/28722BE0BE0411EF99CA5361C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.185.226.0/23
IPv6:
2400:6ae0::/32
Signature Algorithm: sha256WithRSAEncryption
3f:d0:e7:e7:5e:46:0e:e9:77:07:f6:21:2f:db:a2:86:f0:95:
f9:5a:2c:33:ad:c7:0e:7e:f1:81:5f:5d:dd:bd:45:35:01:be:
ba:72:5a:3a:4a:fb:de:1a:37:cd:bd:7a:ce:5c:e2:3e:14:e5:
27:5d:7d:14:77:c5:85:20:6f:9b:54:93:36:0e:d9:b0:8d:8e:
29:8b:44:9d:c8:42:7f:18:32:43:0b:69:36:3e:de:c9:88:b5:
eb:b5:24:de:c8:c9:9b:3c:3c:90:3b:53:84:49:1d:ed:92:74:
7c:d4:b7:16:ba:0d:57:ca:06:e6:7b:db:57:8b:2d:c7:fd:94:
f4:63:c4:0c:ac:f6:d7:11:c3:46:8e:7f:62:76:02:6d:33:41:
cf:33:89:f9:e8:85:ff:2b:50:77:b3:89:01:dd:00:96:0f:19:
3e:00:49:da:96:22:58:ca:b4:e8:b0:e1:f7:62:65:67:f3:e0:
29:0c:28:0d:44:72:b2:83:9d:c1:f7:f9:eb:7f:1d:a8:8c:89:
37:2d:a7:a9:ff:24:34:c1:32:8c:64:4f:30:cf:74:b2:5f:bc:
b7:85:3f:c3:e7:d4:31:cf:9d:7e:f2:67:53:1b:82:11:7a:45:
90:0a:31:9e:67:a4:30:01:03:19:3d:2e:8d:29:1b:4f:72:e7:
ac:67:97:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 09:40:11 2025 by rpki-client