Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B729ACD6013711EE962F0B23C4F9AE02.roa
File: B729ACD6013711EE962F0B23C4F9AE02.roa (raw, json)
Hash identifier: 00qmwQuQ2XAeg2kZICeakiYlqxY+4VPsBDwux7PEMJE=
Subject key identifier: FB:37:B2:2C:F7:DD:64:3E:D4:BD:0E:F5:8A:27:D3:A8:79:A5:A7:81
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 8E37
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B729ACD6013711EE962F0B23C4F9AE02.roa
Signing time: Thu 30 May 2024 16:18:47 +0000
ROA not before: Thu 30 May 2024 16:18:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 146847
IP address blocks: 103.171.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Mar 2025 08:31:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36407 (0x8e37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: May 30 16:18:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658a6e7-114b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ac:ff:3f:5f:e0:de:14:8d:d7:28:bb:d5:75:
5d:7d:f3:54:78:8a:7a:dd:da:67:d3:c2:f1:9d:50:
70:69:95:85:f9:13:0a:ce:24:fa:c6:29:91:0c:60:
51:3f:e3:b3:09:9e:0c:a1:ef:2a:30:2a:4d:f9:8b:
4c:39:46:a6:71:91:b1:17:ce:4d:a9:ef:9e:e4:c1:
af:58:47:8e:0b:cb:b4:d6:2b:d0:34:e0:1d:1e:5b:
64:ae:8d:ed:1c:2e:84:d3:a4:fc:ad:12:8c:18:1b:
1d:30:d1:61:b9:08:9e:66:d8:26:c5:10:1d:8b:19:
45:c8:bd:3a:22:91:36:af:90:78:de:e0:75:46:88:
21:14:ea:d9:d6:bb:24:01:02:0d:3d:b7:57:46:f2:
8c:a5:c3:44:da:0a:7c:b7:24:21:40:00:89:92:0b:
a1:dd:5e:29:84:af:43:5c:a0:bf:b9:35:b6:04:11:
57:1b:a7:61:ed:1a:1e:cf:9e:b5:07:3b:7a:ec:75:
41:4d:7f:cf:c6:9b:26:ce:3c:4b:17:db:d9:1c:78:
7b:d7:9c:9c:d3:79:9f:85:0e:88:1a:f9:72:70:a2:
f7:ab:97:e8:74:9c:0c:a1:21:04:a1:80:b3:1b:05:
e7:0a:4d:aa:78:fc:11:f1:f9:70:80:2b:b3:25:04:
29:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:37:B2:2C:F7:DD:64:3E:D4:BD:0E:F5:8A:27:D3:A8:79:A5:A7:81
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B729ACD6013711EE962F0B23C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.171.208.0/24
Signature Algorithm: sha256WithRSAEncryption
01:eb:86:34:86:51:07:2e:ee:b0:f5:d4:61:8d:0d:17:8d:8d:
87:3d:44:88:9f:a1:83:1e:2e:d6:b2:93:9d:33:36:7c:d5:9f:
da:c7:09:a4:d3:b1:f1:62:69:45:06:b0:a5:5e:ac:7f:fe:e9:
66:0d:b1:cf:3c:e0:2f:b8:a0:e8:0c:ba:65:0d:8e:17:34:ca:
19:7a:4d:3a:9c:2e:f5:9e:bb:47:1a:6b:e5:37:e6:59:b8:09:
29:c2:7c:56:9d:52:7b:b6:5f:2a:33:10:eb:39:31:04:3a:0b:
19:1e:b7:a1:c2:d2:64:c0:e6:cf:1b:92:87:56:b0:c4:fe:cb:
b9:99:a6:5d:f2:61:93:7d:b2:2f:91:76:ea:85:59:df:2c:0e:
8e:4b:d4:98:42:f0:70:ce:a0:50:db:4f:21:62:e6:65:22:28:
e2:30:b7:b0:6a:08:d8:4a:80:50:84:66:f5:7a:1d:a0:1d:67:
da:8f:05:fb:f8:2e:67:f7:d2:ce:ee:04:95:6c:09:ac:09:a6:
a7:b0:e6:b6:59:9f:44:6e:c0:80:fe:59:c9:3c:b3:4d:0b:27:
2a:61:2d:01:20:1a:34:30:e8:b5:f1:55:04:99:0b:d0:fb:58:
96:8c:51:5a:9f:73:5e:bb:45:b9:5b:43:c7:3d:21:4c:4b:d6:
99:7f:46:d0
-----BEGIN CERTIFICATE-----
MIIFcjCCBFqgAwIBAgIDAI43MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4
M0UzQUJDODIzMB4XDTI0MDUzMDE2MTg0N1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG
A1UEAxMNNjY1OGE2ZTctMTE0YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAMms/z9f4N4Ujdcou9V1XX3zVHiKet3aZ9PC8Z1QcGmVhfkTCs4k+sYpkQxg
UT/jswmeDKHvKjAqTfmLTDlGpnGRsRfOTanvnuTBr1hHjgvLtNYr0DTgHR5bZK6N
7RwuhNOk/K0SjBgbHTDRYbkInmbYJsUQHYsZRci9OiKRNq+QeN7gdUaIIRTq2da7
JAECDT23V0byjKXDRNoKfLckIUAAiZILod1eKYSvQ1ygv7k1tgQRVxunYe0aHs+e
tQc7eux1QU1/z8abJs48Sxfb2Rx4e9ecnNN5n4UOiBr5cnCi96uX6HScDKEhBKGA
sxsF5wpNqnj8EfH5cIArsyUEKekCAwEAAaOCApUwggKRMB0GA1UdDgQWBBT7N7Is
991kPtS9DvWKJ9OoeaWngTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI
IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3
MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y
eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3
MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB
/wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu
aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF
BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0I3MjlBQ0Q2
MDEzNzExRUU5NjJGMEIyM0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6
Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/
BBAwDjAMBAIAATAGAwQAZ6vQMA0GCSqGSIb3DQEBCwUAA4IBAQAB64Y0hlEHLu6w
9dRhjQ0XjY2HPUSIn6GDHi7WspOdMzZ81Z/axwmk07HxYmlFBrClXqx//ulmDbHP
POAvuKDoDLplDY4XNMoZek06nC71nrtHGmvlN+ZZuAkpwnxWnVJ7tl8qMxDrOTEE
OgsZHrehwtJkwObPG5KHVrDE/su5maZd8mGTfbIvkXbqhVnfLA6OS9SYQvBwzqBQ
208hYuZlIijiMLewagjYSoBQhGb1eh2gHWfajwX7+C5n99LO7gSVbAmsCaansOa2
WZ9EbsCA/lnJPLNNCycqYS0BIBo0MOi18VUEmQvQ+1iWjFFan3Neu0W5W0PHPSFM
S9aZf0bQ
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:15:08 2025 by rpki-client