Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/FB03E8A0606111F09C6C1235C4F9AE02.roa
File: FB03E8A0606111F09C6C1235C4F9AE02.roa (raw, json)
Hash identifier: rJhYtAtmKcvpL5yXQY+LEEp+10eW84kkoHnlueEIqqg=
Subject key identifier: 19:67:07:43:B9:51:19:70:80:67:E0:58:BE:73:6B:75:BB:81:7A:97
Certificate issuer: /CN=A91A57F8/serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918
Certificate serial: 01F4
Authority key identifier: 9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/FB03E8A0606111F09C6C1235C4F9AE02.roa
Signing time: Mon 14 Jul 2025 03:23:59 +0000
ROA not before: Mon 14 Jul 2025 03:23:59 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 4826
IP address blocks: 203.22.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Jul 2025 04:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 500 (0x1f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91A57F8, serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918
Validity
Not Before: Jul 14 03:23:59 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=6874784f-f14a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:d6:93:af:13:05:62:07:cb:20:16:8c:34:16:
d9:4b:e6:2c:a6:1f:4b:a3:d0:8d:45:c1:c8:49:1f:
44:29:e4:79:a1:50:5f:75:58:f1:03:68:c3:16:b1:
e3:46:22:a1:f7:16:83:5a:c1:d6:79:04:0c:9c:06:
cb:c8:b2:be:5f:58:43:15:5c:98:65:12:20:63:ff:
bb:ec:26:49:f5:8c:4e:e3:84:00:5d:64:50:08:32:
12:20:61:c5:fc:ea:13:e1:24:85:1a:cf:76:da:82:
72:1b:42:17:3f:07:ac:9d:22:f3:a7:a1:51:da:4e:
b0:88:9f:6f:ed:a5:5d:ac:f8:53:71:41:25:77:dc:
d4:ec:19:b4:81:91:56:72:34:82:08:ba:6a:50:61:
59:f9:5f:20:a8:c5:57:61:ae:4f:4a:69:a5:c3:f2:
d9:66:13:5c:86:55:87:87:9a:e0:3c:60:c2:6f:27:
15:4f:fc:6c:d0:3f:54:86:f0:cb:64:21:d0:7e:69:
de:d1:8d:1b:66:2d:65:0c:01:e7:94:66:c6:fb:2a:
51:79:c5:55:35:55:d7:4c:e7:09:b0:d0:eb:03:c3:
5b:8e:51:0b:c3:4a:50:27:1c:67:89:71:6c:90:5f:
f5:a4:50:32:8d:1e:45:45:6f:10:42:5a:4e:97:0e:
55:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:67:07:43:B9:51:19:70:80:67:E0:58:BE:73:6B:75:BB:81:7A:97
X509v3 Authority Key Identifier:
keyid:9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/FB03E8A0606111F09C6C1235C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.22.206.0/24
Signature Algorithm: sha256WithRSAEncryption
19:bd:50:80:f3:47:11:26:a7:f9:a5:6d:a4:1a:eb:af:81:ca:
a2:40:e7:26:d5:a3:d1:9c:82:4a:87:52:43:90:51:da:d1:a5:
de:bb:05:54:93:51:d5:f1:3d:a6:3b:36:62:95:8a:ba:74:8b:
d1:d6:74:9c:28:4b:a9:3e:4a:f5:ad:7e:d6:c1:db:b4:88:53:
bd:cc:0d:d3:ac:1e:06:3a:65:8d:52:e3:c8:f2:17:92:f8:63:
87:d7:45:54:42:95:59:c7:73:6c:91:aa:d7:7d:b6:05:6e:44:
d3:17:a1:17:ea:c9:9b:7e:62:35:ea:ce:e2:8d:5d:d0:84:9f:
e7:37:42:6b:ab:f7:e6:45:e1:aa:30:7f:50:5b:50:6e:e0:1e:
3d:6b:ec:53:d8:71:39:ef:d0:58:00:e8:a4:01:45:79:0a:b4:
de:a3:4f:f0:15:cf:7f:e4:85:f5:22:1f:0c:4b:38:73:2e:88:
97:24:86:5e:09:2d:24:52:b7:6a:f5:e8:be:fd:43:a1:87:b4:
6d:58:20:2c:20:26:7c:d9:6a:d6:bf:53:62:9d:ec:b8:39:5b:
0d:04:30:ce:a1:4c:5a:c7:fd:75:30:db:98:5c:ff:43:cc:50:
2e:84:03:89:8a:5a:59:db:94:3e:23:f6:d6:45:93:b8:31:1b:
cb:bc:a7:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 08:01:49 2025 by rpki-client