Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/61096B522DB111EDA42EBE42C4F9AE02.roa
File: 61096B522DB111EDA42EBE42C4F9AE02.roa (raw, json)
Hash identifier: 24dZPAjPwsi+X/J+G66aSyT7fcYpOELO2E3lKkZX6no=
Subject key identifier: 92:DC:6B:A5:58:88:0C:DA:3E:58:E0:19:BF:AF:4F:CB:8A:9F:53:E2
Certificate issuer: /CN=A9142661/serialNumber=7AE9622F834CF4C6CF5AD1A98AF07D501545A4BF
Certificate serial: 0A4A
Authority key identifier: 7A:E9:62:2F:83:4C:F4:C6:CF:5A:D1:A9:8A:F0:7D:50:15:45:A4:BF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/euliL4NM9MbPWtGpivB9UBVFpL8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/61096B522DB111EDA42EBE42C4F9AE02.roa
Signing time: Fri 30 May 2025 20:06:19 +0000
ROA not before: Fri 30 May 2025 20:06:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58895
IP address blocks: 103.87.192.0/22 maxlen: 22
103.87.192.0/24 maxlen: 24
103.87.193.0/24 maxlen: 24
103.87.194.0/24 maxlen: 24
103.87.195.0/24 maxlen: 24
203.96.168.0/24 maxlen: 24
203.96.169.0/24 maxlen: 24
203.96.170.0/24 maxlen: 24
203.96.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Sep 2025 08:17:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2634 (0xa4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9142661, serialNumber=7AE9622F834CF4C6CF5AD1A98AF07D501545A4BF
Validity
Not Before: May 30 20:06:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=683a0fbb-5013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4c:0c:9d:0c:c3:eb:88:7f:28:3f:cc:6a:f0:
77:14:98:cf:d5:2d:20:ef:e7:54:9c:08:6a:8e:27:
ff:be:68:bb:df:e9:8c:ab:b0:a3:46:4f:2e:75:8b:
14:3d:0d:29:42:49:6e:08:d3:da:99:ee:4e:af:0a:
40:dc:98:b7:16:e0:da:3d:62:f5:3d:ed:26:5c:52:
88:28:ab:56:89:c4:46:89:11:3f:12:e5:0d:e2:7c:
eb:56:b7:05:02:f7:86:5d:e1:08:b0:85:3e:b5:cf:
6a:63:35:c1:b3:cd:57:b9:41:a8:e4:32:cb:a2:d5:
44:a8:7e:be:1f:85:5a:13:e6:71:b4:13:3d:11:ee:
6d:11:db:ee:03:77:40:61:49:f6:93:20:bd:7d:3a:
9b:7c:0b:8f:f7:0a:5f:b9:3c:bc:88:34:73:fa:d6:
df:f0:4e:d2:17:d2:a6:23:71:0c:bd:34:d4:59:a5:
d5:8e:a0:58:36:bc:f2:11:b6:bb:b1:f8:82:fa:87:
61:40:37:7c:89:d9:3c:5c:cc:f2:43:cd:2f:b1:0a:
92:88:e2:c8:48:44:fe:e7:89:4d:4e:08:f7:10:ee:
77:de:a8:06:31:b4:af:ad:41:eb:33:93:17:16:ac:
ad:ac:b8:24:00:30:27:f8:e0:0c:97:12:b1:65:38:
8a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:DC:6B:A5:58:88:0C:DA:3E:58:E0:19:BF:AF:4F:CB:8A:9F:53:E2
X509v3 Authority Key Identifier:
keyid:7A:E9:62:2F:83:4C:F4:C6:CF:5A:D1:A9:8A:F0:7D:50:15:45:A4:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/euliL4NM9MbPWtGpivB9UBVFpL8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/euliL4NM9MbPWtGpivB9UBVFpL8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/61096B522DB111EDA42EBE42C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.87.192.0/22
203.96.168.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:f2:4f:da:2b:5c:18:9f:35:31:1d:a8:a8:4f:5d:16:58:bd:
c3:f9:95:0f:b6:63:5b:e7:0b:80:34:03:4d:6d:16:93:53:3f:
e7:a5:c1:f4:13:13:a3:b6:13:4b:83:63:42:b4:68:b8:7d:78:
4c:ae:02:26:86:ca:eb:bf:f2:08:82:a4:60:4d:83:4d:41:13:
17:35:29:b4:c1:31:3f:e5:fb:5f:0f:2c:f3:94:19:bd:f6:0b:
c8:a9:d6:61:50:bc:a7:01:ba:d2:4b:61:0f:cd:fb:23:ca:9a:
3b:37:1a:38:de:25:cc:59:04:29:74:2a:f2:c2:86:47:ca:0c:
d2:1d:58:ef:c1:11:3c:fe:b0:9f:34:50:92:56:a3:f4:96:90:
56:46:b0:5c:64:7e:c2:3c:52:25:0a:01:39:37:b0:e7:32:91:
40:49:a4:c7:b1:24:76:b3:ad:f1:c0:a9:9c:db:2c:33:05:d4:
67:16:f7:d3:0a:48:bd:f3:6c:43:20:22:43:9d:25:70:0a:d7:
43:76:b1:46:22:de:07:0e:48:66:43:5f:b7:3c:73:ee:cc:49:
3b:02:47:cf:dd:b9:72:e5:aa:e1:d7:d7:44:2b:f6:22:4f:97:
49:7c:2e:f4:eb:e6:bb:f1:10:be:85:23:84:39:80:1c:83:66:
25:90:8a:7e
-----BEGIN CERTIFICATE-----
MIIFdzCCBF+gAwIBAgICCkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NDI2NjExMTAvBgNVBAUTKDdBRTk2MjJGODM0Q0Y0QzZDRjVBRDFBOThBRjA3RDUw
MTU0NUE0QkYwHhcNMjUwNTMwMjAwNjE5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02ODNhMGZiYi01MDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAq0wMnQzD64h/KD/MavB3FJjP1S0g7+dUnAhqjif/vmi73+mMq7CjRk8udYsU
PQ0pQkluCNPame5OrwpA3Ji3FuDaPWL1Pe0mXFKIKKtWicRGiRE/EuUN4nzrVrcF
AveGXeEIsIU+tc9qYzXBs81XuUGo5DLLotVEqH6+H4VaE+ZxtBM9Ee5tEdvuA3dA
YUn2kyC9fTqbfAuP9wpfuTy8iDRz+tbf8E7SF9KmI3EMvTTUWaXVjqBYNrzyEba7
sfiC+odhQDd8idk8XMzyQ80vsQqSiOLISET+54lNTgj3EO533qgGMbSvrUHrM5MX
FqytrLgkADAn+OAMlxKxZTiKewIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJLca6VY
iAzaPljgGb+vT8uKn1PiMB8GA1UdIwQYMBaAFHrpYi+DTPTGz1rRqYrwfVAVRaS/
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjY2MS80Q0M3NzI3NjY5
QkMxMUVBQUYxQjlGNjlDNEY5QUUwMi9ldWxpTDROTTlNYlBXdEdwaXZCOVVCVkZw
TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2V1bGlMNE5NOU1iUFd0R3BpdkI5VUJWRnBMOC5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NDI2NjEvNENDNzcyNzY2OUJDMTFFQUFGMUI5RjY5QzRGOUFFMDIvNjEwOTZCNTIy
REIxMTFFREE0MkVCRTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E
FjAUMBIEAgABMAwDBAJnV8ADBALLYKgwDQYJKoZIhvcNAQELBQADggEBAEvyT9or
XBifNTEdqKhPXRZYvcP5lQ+2Y1vnC4A0A01tFpNTP+elwfQTE6O2E0uDY0K0aLh9
eEyuAiaGyuu/8giCpGBNg01BExc1KbTBMT/l+18PLPOUGb32C8ip1mFQvKcButJL
YQ/N+yPKmjs3GjjeJcxZBCl0KvLChkfKDNIdWO/BETz+sJ80UJJWo/SWkFZGsFxk
fsI8UiUKATk3sOcykUBJpMexJHazrfHAqZzbLDMF1GcW99MKSL3zbEMgIkOdJXAK
10N2sUYi3gcOSGZDX7c8c+7MSTsCR8/duXLlquHX10Qr9iJPl0l8LvTr5rvxEL6F
I4Q5gByDZiWQin4=
-----END CERTIFICATE-----
Generated at Wed Sep 17 23:18:17 2025 by rpki-client