Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/12A368AEDE8811EDB3954136C4F9AE02.roa
File: 12A368AEDE8811EDB3954136C4F9AE02.roa (raw, json)
Hash identifier: ZASxQPm+aWRDTvozwAKMbN8E/hWkX0bPO15f0Dc7Zm4=
Subject key identifier: 2F:E2:12:D8:9F:41:A9:88:E7:35:75:E3:E1:61:23:6A:20:B1:1C:88
Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Certificate serial: 104D
Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/12A368AEDE8811EDB3954136C4F9AE02.roa
Signing time: Sun 01 Mar 2026 19:29:59 +0000
ROA not before: Thu 22 May 2025 20:07:14 +0000
ROA not after: Thu 30 Jul 2026 00:00:00 +0000
asID: 151193
IP address blocks: 2406:840:fed5::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 03 Mar 2026 14:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4173 (0x104d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Validity
Not Before: May 22 20:07:14 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=69a493b7-978c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d0:2d:0c:5e:6a:c8:44:f7:26:64:04:1e:a7:
40:6c:27:be:b4:03:4a:ac:fd:0c:18:e5:98:11:61:
db:32:c5:3c:85:27:f8:9d:5e:44:64:11:04:68:c9:
41:d4:51:02:52:a2:b9:cd:f9:35:0d:69:95:c6:a0:
c5:10:95:56:50:c7:b8:f1:89:31:ea:63:69:2e:f6:
e2:77:2e:fb:2e:b7:79:e6:99:fe:a6:18:43:43:7b:
16:4d:6e:d3:55:fd:62:73:4d:a1:6a:33:b6:75:a6:
80:f6:54:c0:27:af:a7:21:41:f1:89:0d:3f:2b:0c:
3c:83:97:bb:91:94:44:f7:61:26:2e:31:8d:4e:ce:
50:21:2d:35:fe:e5:76:60:81:35:7c:52:a6:4b:3b:
16:8a:96:75:98:2e:5c:5e:4f:4e:04:57:48:94:fe:
2d:7c:77:92:8a:2c:ac:6a:53:35:39:9a:a9:d2:f1:
6e:ae:a0:52:6f:33:91:e1:c8:a6:f7:1e:54:f3:74:
ad:b4:ca:92:de:b5:19:26:5d:b1:1e:e6:f4:8d:94:
61:4c:9e:26:03:35:55:74:20:e6:93:8e:32:65:9b:
47:c0:2d:83:d5:e3:1e:22:36:2d:51:ab:a8:be:af:
39:eb:39:57:6a:81:e6:02:f5:47:26:5f:70:7f:b6:
df:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:E2:12:D8:9F:41:A9:88:E7:35:75:E3:E1:61:23:6A:20:B1:1C:88
X509v3 Authority Key Identifier:
keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/12A368AEDE8811EDB3954136C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv6:
2406:840:fed5::/48
Signature Algorithm: sha256WithRSAEncryption
82:f8:5e:f2:f0:7a:e3:85:d2:3f:6e:97:cd:07:98:52:1b:0b:
41:fe:f9:e3:85:a2:45:cd:1f:9b:fb:c3:d6:01:ba:a5:fc:bc:
5d:71:9b:d7:2a:fd:d2:48:8c:03:c3:72:f8:88:70:f0:83:0c:
4c:1f:dd:93:c3:4b:09:af:4c:49:d0:b5:7a:b0:d7:a5:71:79:
35:06:ff:96:4b:ec:72:49:59:b8:33:7e:8d:72:f4:d5:f0:da:
ee:ea:c6:b3:a1:30:03:4d:c6:37:5d:ff:fc:04:1b:d6:d0:64:
7d:f0:ce:2d:50:be:3b:b0:ac:bb:e0:5c:5e:5a:df:fd:7a:b6:
80:fb:51:37:d6:d4:cd:73:f1:75:b5:6c:e4:aa:a7:b2:d3:a6:
cb:27:07:c7:1f:8c:ad:3e:c8:4e:89:5c:4b:38:29:2f:82:32:
6f:ca:5f:42:22:e6:21:c1:c8:d3:ec:8a:ee:c8:9d:cc:65:d4:
d1:69:4b:e8:bd:15:bf:c5:42:12:13:65:ae:98:90:bb:80:22:
9f:75:4c:56:db:41:4d:3b:f7:c1:dc:95:2a:c4:51:20:79:61:
22:d8:6d:88:2c:e5:e6:19:ed:0f:90:5e:61:46:cd:82:9a:28:
7e:99:c3:44:74:6b:69:de:ac:44:df:95:c6:95:2a:3e:08:40:
79:86:23:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 02:26:44 2026 by rpki-client