Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/14EBD7882A5111F09A18C233C4F9AE02.roa
File: 14EBD7882A5111F09A18C233C4F9AE02.roa (raw, json)
Hash identifier: iz1RvVKjX+j+p3ehEwXr7nQmRMSOtqlR/y6CiHCvp8I=
Subject key identifier: 65:73:47:A8:42:6B:5A:48:49:FE:71:40:45:F8:DB:B3:82:68:B1:7A
Certificate issuer: /CN=A913C432/serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32
Certificate serial: 0FCD
Authority key identifier: 32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/14EBD7882A5111F09A18C233C4F9AE02.roa
Signing time: Tue 06 May 2025 08:06:58 +0000
ROA not before: Tue 06 May 2025 08:06:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 138981
IP address blocks: 103.138.24.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 06 May 2025 08:22:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4045 (0xfcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A913C432, serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32
Validity
Not Before: May 6 08:06:58 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6819c322-ed89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:82:e8:52:20:23:02:61:ac:22:1b:4a:a8:a9:
14:25:2f:6d:98:87:c3:2a:db:bb:3e:94:7c:65:ab:
66:58:0f:bc:98:8b:80:7a:4e:92:60:6d:2e:ba:3a:
c5:98:14:96:bd:02:dc:83:ad:24:97:c5:16:c0:5e:
95:6a:51:1e:e9:25:56:c0:db:f5:d0:ce:5a:9e:8d:
ed:a8:22:59:ef:4a:30:24:71:f0:bc:0f:f5:bd:1e:
99:ac:73:4e:8f:46:c1:66:31:ec:aa:01:b5:a8:ac:
fd:27:ef:21:f0:56:46:bc:c7:b9:7f:ab:9d:3d:e1:
af:c5:1b:57:18:c1:94:75:11:b1:f0:dc:76:7b:77:
79:d9:07:3b:f7:d7:f1:f8:93:2b:25:23:30:18:87:
e7:39:45:a5:b9:ef:d2:e9:15:a6:86:01:0e:cc:cd:
8e:43:03:60:98:36:bf:d1:40:3a:4e:99:e4:86:45:
6e:a8:04:82:e0:b8:a5:bc:6c:4b:7e:6b:d0:35:57:
e9:c3:a2:a9:29:d0:e4:fa:ac:95:68:49:e4:40:20:
be:d2:8f:ff:d8:d8:a2:03:c5:2e:74:bb:be:07:f2:
a4:a1:77:2f:81:32:4f:74:0e:3d:50:ce:76:34:8b:
81:d9:6c:d3:24:a3:7b:bc:0e:07:c5:74:07:ca:64:
74:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:73:47:A8:42:6B:5A:48:49:FE:71:40:45:F8:DB:B3:82:68:B1:7A
X509v3 Authority Key Identifier:
keyid:32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/14EBD7882A5111F09A18C233C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.24.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:22:74:9c:26:d3:a1:20:57:0c:5e:1c:c5:b5:50:02:84:e3:
86:1a:e2:a3:cd:04:8f:35:70:f3:65:e3:5a:b9:e8:6a:bd:3d:
7b:91:a9:8f:cf:3a:96:b7:f2:f1:77:5c:46:d1:09:d6:58:0b:
c2:53:85:19:b7:c5:4a:4b:28:4c:62:b7:3b:39:7e:17:54:24:
09:2a:c3:e1:f8:f6:2d:69:aa:25:b4:ce:fa:e1:b1:d6:84:3c:
18:c6:09:99:29:26:7b:ca:e2:9f:bc:46:83:ae:10:fb:6c:38:
5b:e0:ca:6b:5a:ec:4f:46:26:7a:68:18:ee:4b:7b:34:d8:26:
53:60:20:14:62:14:20:c6:0c:31:e0:e3:87:c4:8f:45:92:5f:
60:ca:ad:f6:45:f9:a2:64:ff:76:04:51:f5:ff:a7:a2:de:c0:
a5:a4:54:eb:14:60:70:85:e9:1d:63:24:ba:d4:8b:5d:42:6f:
a9:38:61:56:8f:44:28:ba:86:9f:3f:5a:b5:b0:fd:d7:fe:17:
61:f8:0b:75:05:9e:15:82:87:6e:c2:e5:3e:1a:c9:c9:2a:27:
bd:57:68:9b:9e:cc:41:0d:22:57:98:31:eb:5d:32:a7:e4:67:
0e:df:02:59:15:bb:fa:66:ca:56:da:c6:32:47:91:40:62:8f:
b5:8b:b5:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:12:56 2025 by rpki-client