Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF590/2F7B17C4390D11EB88BC6165C4F9AE02/E9573898390E11EBAC72036BC4F9AE02.roa
File: E9573898390E11EBAC72036BC4F9AE02.roa (raw, json)
Hash identifier: 4/D7OWEWvpNqKmmHeJpyUpKKKiBuiIw+IrPZ5+9nq6A=
Subject key identifier: EA:5E:4D:A3:1C:B9:D4:7C:2A:96:8E:F0:CA:6F:BC:75:07:9E:42:49
Certificate issuer: /CN=A91EF590/serialNumber=4D71A7A18A82ADD044BC28EF5DF2196B0FD21D5C
Certificate serial: 0710
Authority key identifier: 4D:71:A7:A1:8A:82:AD:D0:44:BC:28:EF:5D:F2:19:6B:0F:D2:1D:5C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXGnoYqCrdBEvCjvXfIZaw_SHVw.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EF590/2F7B17C4390D11EB88BC6165C4F9AE02/E9573898390E11EBAC72036BC4F9AE02.roa
Signing time: Mon 14 Apr 2025 22:02:55 +0000
ROA not before: Mon 14 Apr 2025 22:02:55 +0000
ROA not after: Thu 28 May 2026 00:00:00 +0000
asID: 137466
IP address blocks: 103.109.232.0/24 maxlen: 24
103.109.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Jul 2025 00:06:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1808 (0x710)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EF590, serialNumber=4D71A7A18A82ADD044BC28EF5DF2196B0FD21D5C
Validity
Not Before: Apr 14 22:02:55 2025 GMT
Not After : May 28 00:00:00 2026 GMT
Subject: CN=67fd860f-0a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:39:0b:e6:e5:cf:66:90:e7:d7:1b:5c:d0:1d:
9b:b6:1b:e4:da:00:df:f1:6a:8b:cf:fe:6e:51:a6:
e9:78:1e:f6:4e:ef:4e:7a:79:64:69:df:00:ff:50:
42:77:02:db:28:96:f4:9e:c8:fe:52:26:53:fa:4d:
c3:d8:c3:50:3f:ee:29:6b:c0:b7:d0:c8:c4:32:48:
9a:95:34:1f:b2:07:e1:b1:6a:1c:fc:b3:3f:39:67:
03:b4:5f:b1:96:4b:3c:9e:57:f7:e5:9b:09:1d:c8:
65:ac:56:7d:8f:fa:c9:a1:d1:74:56:6d:50:01:20:
e0:94:c9:33:94:db:1a:3a:29:09:c1:34:88:35:8e:
85:38:27:22:94:aa:0e:80:a9:3e:06:3e:f7:50:0c:
d2:94:57:61:46:96:9d:58:15:00:a1:35:b2:84:21:
3e:e6:de:74:c3:48:df:dc:a6:25:6d:9c:63:5b:57:
e8:ba:74:57:22:ea:7b:6f:28:3b:f9:d5:cc:4c:b7:
72:b9:d8:40:a6:a6:f4:8e:15:fb:1c:3f:52:59:70:
1e:7c:ec:f1:81:cb:f7:d2:11:eb:b8:29:ac:6f:b1:
58:8e:7a:1c:e6:bd:d3:27:05:65:14:49:52:db:95:
1c:62:56:14:7b:2a:20:c4:c0:13:a2:21:d1:16:8e:
b9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:5E:4D:A3:1C:B9:D4:7C:2A:96:8E:F0:CA:6F:BC:75:07:9E:42:49
X509v3 Authority Key Identifier:
keyid:4D:71:A7:A1:8A:82:AD:D0:44:BC:28:EF:5D:F2:19:6B:0F:D2:1D:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EF590/2F7B17C4390D11EB88BC6165C4F9AE02/TXGnoYqCrdBEvCjvXfIZaw_SHVw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXGnoYqCrdBEvCjvXfIZaw_SHVw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF590/2F7B17C4390D11EB88BC6165C4F9AE02/E9573898390E11EBAC72036BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.109.232.0/24
103.109.234.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:49:72:44:a4:2b:45:ff:0d:4f:39:4f:20:d2:fc:57:fb:91:
f2:29:35:f5:2f:58:e6:61:31:33:27:22:74:06:24:cc:8f:2e:
00:af:53:91:ea:0b:c1:34:c5:6a:ee:39:09:e1:15:1f:d2:e1:
4e:ed:59:6b:4d:b9:bf:87:00:17:fb:4d:9f:8b:2b:65:65:02:
be:b8:4e:48:1e:9d:b8:bc:5d:4f:e6:16:4d:f4:9f:06:24:f5:
fd:4e:02:f6:41:80:0d:56:0b:6e:44:dc:a2:eb:7b:66:e8:37:
d6:30:eb:eb:9c:85:cb:17:48:95:81:ac:60:a9:15:7f:b4:fd:
1a:aa:41:12:8e:35:ae:14:2c:24:e4:a5:f2:8d:2f:00:1f:2f:
ee:da:d3:d9:cc:ce:ae:d3:44:de:18:be:3c:62:34:ce:1b:14:
80:df:b7:4b:ef:71:2e:1f:5e:79:cd:5e:e1:ef:a5:d2:ec:6f:
18:26:7a:de:1a:43:38:18:47:db:d0:80:8e:b1:44:b4:93:ca:
05:b2:a6:af:60:01:9a:82:55:be:ff:45:45:2a:33:ef:a5:99:
f7:d5:3d:9e:28:62:38:40:13:4a:92:8e:ac:3b:e8:1a:c2:a5:
66:95:df:2a:32:c9:fa:d4:5f:be:ad:2c:53:5a:3f:14:4d:3d:
6e:22:9a:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 20 11:30:21 2025 by rpki-client