Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/26DA9B0AF14911EF98361465C4F9AE02.roa
File: 26DA9B0AF14911EF98361465C4F9AE02.roa (raw, json)
Hash identifier: 6pqjETjZQIB3TyoKZOYMrwA4xhPBezEMFYSpxruAHo0=
Subject key identifier: A3:BA:95:7E:E4:AF:2A:9D:8E:E2:FF:B9:BE:B9:6D:CA:2D:03:E9:87
Certificate issuer: /CN=A91C09C5/serialNumber=66761CCD1B4C88384E6A404028CD9A9F809DE276
Certificate serial: ED
Authority key identifier: 66:76:1C:CD:1B:4C:88:38:4E:6A:40:40:28:CD:9A:9F:80:9D:E2:76
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZnYczRtMiDhOakBAKM2an4Cd4nY.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/26DA9B0AF14911EF98361465C4F9AE02.roa
Signing time: Sat 22 Feb 2025 18:17:17 +0000
ROA not before: Sat 22 Feb 2025 18:17:17 +0000
ROA not after: Mon 02 Mar 2026 00:00:00 +0000
asID: 147314
IP address blocks: 113.192.42.0/24 maxlen: 24
113.192.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 22 Feb 2025 19:07:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 237 (0xed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C09C5
Validity
Not Before: Feb 22 18:17:17 2025 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=67ba14ad-3912
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2e:ff:5e:7c:46:da:4f:18:1d:83:74:1c:6a:
a8:2b:99:84:cf:2a:a6:94:60:f4:d7:32:e0:44:57:
78:83:f5:a5:25:4b:3f:3f:82:5f:8b:d5:3f:51:10:
ed:4a:c4:84:91:12:a4:08:70:07:3b:0c:0a:25:e8:
b6:c0:2c:52:b3:b8:0d:cd:10:15:3f:f2:f5:f5:21:
ee:9c:76:28:b9:4f:c2:fe:2e:88:ab:4a:bb:2d:96:
8b:55:04:04:0c:ac:39:01:3f:ed:7d:ab:d0:ac:6c:
2e:20:53:5d:0c:2c:99:65:4a:72:5e:64:b1:e2:65:
65:c7:79:4e:a7:08:c7:65:6f:13:6c:d1:2f:78:8a:
f8:e2:1d:03:01:25:48:89:15:03:b8:3b:3f:f8:fc:
64:79:94:49:d0:32:41:6a:24:25:55:fa:4c:f1:9a:
65:e9:2e:53:b0:61:e9:4e:0b:8f:78:70:05:79:c2:
e6:cd:ed:87:2f:46:16:59:4c:2f:10:93:c5:4b:93:
fd:ef:2a:1f:5b:a2:aa:55:ac:7a:a9:5e:1d:4c:39:
57:44:f6:60:dc:1e:e0:27:78:2c:60:ff:32:1f:d9:
ae:e2:30:18:7b:3e:72:84:ca:8b:32:cb:2a:96:cc:
95:f6:d4:9c:17:82:c0:f2:f6:30:f1:8b:9c:77:06:
6a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:BA:95:7E:E4:AF:2A:9D:8E:E2:FF:B9:BE:B9:6D:CA:2D:03:E9:87
X509v3 Authority Key Identifier:
keyid:66:76:1C:CD:1B:4C:88:38:4E:6A:40:40:28:CD:9A:9F:80:9D:E2:76
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/ZnYczRtMiDhOakBAKM2an4Cd4nY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZnYczRtMiDhOakBAKM2an4Cd4nY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C09C5/74B16C76959911EEBA3CB275C4F9AE02/26DA9B0AF14911EF98361465C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.192.42.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:33:ee:14:85:ef:8d:4e:6e:82:ff:3e:c5:0e:74:0a:d1:95:
a6:44:9b:74:e5:c3:57:8d:03:d6:3c:0d:4a:14:4b:d8:c0:29:
2a:92:6e:4d:df:7b:b6:f4:4e:9e:7f:aa:ff:4f:7c:6b:b0:ed:
0e:e0:09:21:ca:20:2c:3a:43:99:a9:6d:9b:79:29:9f:6d:df:
cf:00:e5:92:46:fa:66:74:e7:91:f0:e6:b6:d1:09:96:5b:ae:
00:c0:2c:30:59:7a:fe:79:8c:00:40:ab:37:5f:3f:77:14:8b:
25:d1:74:1a:4f:f3:5d:09:1d:e4:45:27:4a:8a:ee:27:b2:91:
8a:af:44:07:f5:31:40:de:63:49:b2:2c:6e:82:22:a4:b1:32:
fe:3a:03:94:11:31:af:fc:72:6f:e9:9d:6e:9a:5a:de:2b:55:
21:dd:a6:82:22:33:de:0a:6c:f4:60:83:20:7e:3b:c4:1b:c8:
89:7d:8d:4e:f9:34:e6:18:c0:e2:76:24:64:3f:25:e4:c7:ac:
bf:65:6c:04:40:fb:7e:62:0e:f8:7e:b0:17:d8:3a:da:6c:30:
04:9b:55:33:04:9f:43:cd:cc:b6:ac:d7:40:d9:48:79:80:23:
8b:11:18:08:37:ce:72:32:69:19:f5:ee:c4:50:43:43:38:d9:
69:38:b3:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:00:51 2025 by rpki-client