Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/24A1F85433D611F0924E5870C4F9AE02.roa
File: 24A1F85433D611F0924E5870C4F9AE02.roa (raw, json)
Hash identifier: 3ZQWKVOGI6FxtskAeaIZMdocWAUPkCITGSKbKkTpSeY=
Subject key identifier: DE:1C:32:57:13:8C:B3:13:6B:B4:A9:57:E9:99:78:96:8A:AD:37:12
Certificate issuer: /CN=A915EFDF/serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B
Certificate serial: 082E
Authority key identifier: E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/24A1F85433D611F0924E5870C4F9AE02.roa
Signing time: Sun 18 May 2025 10:52:08 +0000
ROA not before: Sun 18 May 2025 10:52:08 +0000
ROA not after: Mon 01 Dec 2025 00:00:00 +0000
asID: 151106
IP address blocks: 103.72.100.0/24 maxlen: 24
103.72.101.0/24 maxlen: 24
103.72.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 25 May 2025 02:31:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2094 (0x82e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915EFDF, serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B
Validity
Not Before: May 18 10:52:08 2025 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=6829bbd8-9fb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:69:2b:36:c5:c4:46:36:24:7a:db:cb:97:73:
10:0e:74:6e:9c:da:a6:61:68:17:e8:08:24:5e:43:
5f:46:a3:b6:b4:13:a0:47:bd:63:35:27:c4:4f:00:
5a:fc:6b:7a:04:99:83:98:89:da:67:a3:a6:f4:6a:
db:b9:c2:c3:46:5f:f1:c5:00:64:71:03:71:90:a3:
1c:82:c7:6c:e5:de:82:15:ba:de:90:9e:31:17:9c:
eb:f2:3d:c2:11:bc:7c:c2:38:c5:74:55:d4:7b:82:
05:2e:81:56:25:e9:cc:24:35:7c:d6:11:72:97:07:
29:e4:42:bd:22:74:32:da:b4:ca:86:9c:59:b6:8c:
63:f7:17:4e:c1:b4:67:5c:9b:3a:a0:d6:72:01:00:
0c:c9:57:2e:c5:2e:ab:fb:d7:67:5c:9b:be:17:40:
05:e5:d0:93:0d:6e:78:8b:3d:f3:8a:69:ea:41:96:
0f:04:79:d5:cd:b8:7a:36:d3:dd:4d:20:f5:62:47:
74:b3:f4:bb:42:6b:31:b8:a9:d2:86:1f:0f:e8:23:
e4:d9:19:72:0f:3e:06:23:7b:2a:aa:3c:02:37:30:
81:f1:b6:7a:fa:0b:d7:22:55:0f:14:d9:27:2a:da:
5c:44:56:16:70:63:d1:43:94:1c:56:2f:be:28:a2:
12:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:1C:32:57:13:8C:B3:13:6B:B4:A9:57:E9:99:78:96:8A:AD:37:12
X509v3 Authority Key Identifier:
keyid:E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/24A1F85433D611F0924E5870C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.72.100.0-103.72.102.255
Signature Algorithm: sha256WithRSAEncryption
af:52:62:ff:19:07:73:6f:34:16:c4:9f:fb:e9:45:5e:9b:94:
d3:3d:3e:61:83:17:9d:b3:24:3b:bb:80:d1:b4:e7:76:f1:d4:
03:08:19:3f:af:dd:9e:c4:a1:34:3e:e6:3c:95:bd:be:78:be:
55:d7:12:7f:a6:33:7a:27:2f:68:6f:84:dd:e4:02:24:e1:77:
f8:a6:13:b6:32:69:23:49:a0:13:1c:74:3b:ed:fd:0d:0c:d9:
e4:cd:4b:78:1f:d3:bb:29:42:3a:ab:79:0c:58:5d:1d:0f:e5:
a8:af:38:51:f1:48:d4:62:e5:74:24:3a:81:6c:45:72:26:e3:
78:ad:32:55:b0:4b:fa:58:b2:63:6c:ac:8a:c6:8c:99:d4:42:
01:60:03:f6:e3:a3:c1:53:4a:fa:f7:2f:50:a0:da:c7:fd:f2:
da:56:6e:75:fb:36:a9:f6:9f:94:99:0e:01:7b:20:e8:47:06:
c7:31:a0:bc:35:1b:39:65:73:6b:80:fc:b2:aa:d5:ad:d4:6c:
4f:6f:f8:66:68:7e:2b:0d:db:a1:dc:2c:17:14:6a:07:b2:36:
00:46:c2:c4:7c:c2:91:53:06:69:8a:82:e9:f5:9f:fa:04:81:
bd:52:64:50:2d:ed:65:0c:ad:de:dd:82:18:6a:13:21:5b:4b:
cc:fb:7a:9c
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgICCC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
NUVGREYxMTAvBgNVBAUTKEU4QzIxQjAzQjY1MDgzQjIxQkZBMzc1MjZEMTJCMzQx
RjI0OUNDOEIwHhcNMjUwNTE4MTA1MjA4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD
VQQDEw02ODI5YmJkOC05ZmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAz2krNsXERjYketvLl3MQDnRunNqmYWgX6AgkXkNfRqO2tBOgR71jNSfETwBa
/Gt6BJmDmInaZ6Om9GrbucLDRl/xxQBkcQNxkKMcgsds5d6CFbrekJ4xF5zr8j3C
Ebx8wjjFdFXUe4IFLoFWJenMJDV81hFylwcp5EK9InQy2rTKhpxZtoxj9xdOwbRn
XJs6oNZyAQAMyVcuxS6r+9dnXJu+F0AF5dCTDW54iz3zimnqQZYPBHnVzbh6NtPd
TSD1Ykd0s/S7QmsxuKnShh8P6CPk2RlyDz4GI3sqqjwCNzCB8bZ6+gvXIlUPFNkn
KtpcRFYWcGPRQ5QcVi++KKISEwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFN4cMlcT
jLMTa7SpV+mZeJaKrTcSMB8GA1UdIwQYMBaAFOjCGwO2UIOyG/o3Um0Ss0HyScyL
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUZERi8wQkREN0VBMkU5
MEMxMUVBOTY1QzJBMkZDNEY5QUUwMi82TUliQTdaUWc3SWItamRTYlJLelFmSkp6
SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyLzZNSWJBN1pRZzdJYi1qZFNiUkt6UWZKSnpJcy5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
NUVGREYvMEJERDdFQTJFOTBDMTFFQTk2NUMyQTJGQzRGOUFFMDIvMjRBMUY4NTQz
M0Q2MTFGMDkyNEU1ODcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E
GDAWMBQEAgABMA4wDAMEAmdIZAMEAGdIZjANBgkqhkiG9w0BAQsFAAOCAQEAr1Ji
/xkHc280FsSf++lFXpuU0z0+YYMXnbMkO7uA0bTndvHUAwgZP6/dnsShND7mPJW9
vni+VdcSf6YzeicvaG+E3eQCJOF3+KYTtjJpI0mgExx0O+39DQzZ5M1LeB/TuylC
Oqt5DFhdHQ/lqK84UfFI1GLldCQ6gWxFcibjeK0yVbBL+liyY2ysisaMmdRCAWAD
9uOjwVNK+vcvUKDax/3y2lZudfs2qfaflJkOAXsg6EcGxzGgvDUbOWVza4D8sqrV
rdRsT2/4Zmh+Kw3bodwsFxRqB7I2AEbCxHzCkVMGaYqC6fWf+gSBvVJkUC3tZQyt
3t2CGGoTIVtLzPt6nA==
-----END CERTIFICATE-----
Generated at Wed Jun 4 00:00:00 2025 by rpki-client