Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/91BCB8BC622411F0BF290F6CC4F9AE02.roa
File: 91BCB8BC622411F0BF290F6CC4F9AE02.roa (raw, json)
Hash identifier: c39va5p2TwsZXgwRmgVn98Um+b/TzdVtcPd6WdZZhGA=
Subject key identifier: BB:98:E6:8A:C5:D3:78:79:81:A2:18:22:12:22:C8:B3:DA:66:E2:F6
Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D
Certificate serial: 01F2
Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/91BCB8BC622411F0BF290F6CC4F9AE02.roa
Signing time: Wed 16 Jul 2025 09:09:25 +0000
ROA not before: Wed 16 Jul 2025 09:09:25 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 149296
IP address blocks: 103.96.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 20 Jul 2025 13:55:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 498 (0x1f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91991D3, serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D
Validity
Not Before: Jul 16 09:09:25 2025 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=68776c45-c84f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6a:04:6d:55:3d:eb:b9:39:e2:c7:a7:d1:82:
75:e7:66:f1:76:a3:d9:73:6a:6c:49:26:ea:4d:a2:
4e:ba:34:54:fe:f8:85:23:a6:ad:7c:2b:c5:aa:21:
cc:c1:dd:1e:c1:28:46:ff:e8:66:27:7a:f7:4d:a8:
b8:cb:76:e6:ed:fa:df:be:73:42:64:f6:a6:dc:b7:
08:fb:6c:44:9d:c0:17:37:08:da:55:17:7d:ab:80:
89:9d:8a:34:ea:f5:07:4d:14:49:6b:13:5f:22:78:
eb:82:42:05:71:f3:6e:b7:a4:09:90:3e:01:5f:f7:
1a:9f:8c:f6:c0:5b:63:72:ea:74:8f:23:db:a6:69:
47:51:df:33:68:df:c1:80:75:80:3f:07:ab:d3:18:
31:ef:c4:73:26:ed:88:2c:85:05:cf:36:db:e9:69:
37:e3:74:ca:bd:54:99:f7:c0:56:83:eb:65:b8:cb:
f0:d7:dd:d6:93:6c:07:84:9a:3d:1d:28:9d:64:91:
60:7b:8f:a5:41:ba:57:b6:7c:98:47:e2:a3:a7:8a:
73:4d:d1:90:d3:74:10:24:90:5a:5a:58:72:b7:0f:
59:1d:03:d3:b7:24:d2:13:a3:3f:eb:c9:cd:78:59:
da:94:cd:eb:21:ce:22:96:1b:53:90:5d:93:b0:54:
6f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:98:E6:8A:C5:D3:78:79:81:A2:18:22:12:22:C8:B3:DA:66:E2:F6
X509v3 Authority Key Identifier:
keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/91BCB8BC622411F0BF290F6CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.96.1.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:f1:35:f1:cc:55:28:1d:68:18:6f:e8:c3:f7:61:c8:b3:d8:
98:fe:54:d6:d7:29:14:0e:3f:c0:1b:a1:27:1d:68:d7:ed:16:
68:70:89:4b:ba:10:74:f9:f0:c1:91:3a:cd:14:cb:d4:d5:3d:
75:a7:3c:89:e7:c0:9c:2f:d6:f4:ce:b4:1a:67:e9:cb:69:91:
77:6c:e4:c7:b1:a8:e3:99:14:ba:b6:e1:47:78:ea:16:3c:ea:
9c:41:a7:71:18:ea:de:ec:fb:ee:e2:7b:89:c3:e7:f9:fe:57:
46:df:b5:49:ed:47:fb:f7:54:e0:59:20:99:2a:06:86:e8:7c:
a6:a3:90:4e:18:b8:a6:8f:4f:2c:52:3c:b8:a8:f8:d6:60:14:
bc:65:93:47:8a:30:4a:4e:b8:c9:0d:04:db:ca:e4:0a:f9:51:
39:78:66:ea:ea:06:60:05:84:49:93:98:de:d7:01:2b:ca:4b:
6e:c6:32:ca:0f:18:f0:6f:86:0b:d1:97:0a:b5:19:bc:b3:ae:
c2:d2:f3:80:ff:ba:e1:ed:17:b6:5c:91:ee:37:cf:8f:9c:3b:
53:b9:43:33:bc:af:71:66:55:7d:cc:c5:b4:46:0d:0d:d0:be:
50:8b:28:20:9a:02:12:63:17:3c:72:8f:48:9c:31:61:4f:32:
45:ae:8d:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 19:05:51 2025 by rpki-client