Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/571134E859FF11EDBDFB474BC4F9AE02.roa
File: 571134E859FF11EDBDFB474BC4F9AE02.roa (raw, json)
Hash identifier: SDZAXaWThXsDcRmNI9O4xcTlZgk1KeNGDvTQ01IOhQU=
Subject key identifier: AC:EF:E2:AA:18:17:BC:3B:8E:E2:5D:C9:9A:5A:D2:86:D7:D0:22:EC
Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Certificate serial: 0F0C
Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/571134E859FF11EDBDFB474BC4F9AE02.roa
Signing time: Thu 22 May 2025 20:08:31 +0000
ROA not before: Thu 22 May 2025 20:08:31 +0000
ROA not after: Thu 30 Jul 2026 00:00:00 +0000
asID: 61302
IP address blocks: 2406:840:e240::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 27 May 2025 14:25:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3852 (0xf0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5
Validity
Not Before: May 22 20:08:31 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=682f843e-8b23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:37:48:62:6b:95:cf:a1:d4:ef:5d:0b:37:62:
39:40:6b:b6:d2:a5:47:ba:12:37:00:5d:a0:7b:45:
14:57:69:b2:c4:2f:9b:4b:4b:56:26:70:04:53:b5:
c2:a8:02:ec:cb:df:09:6d:aa:58:ce:d8:dd:d5:a6:
4b:49:85:bc:c0:e2:65:9f:83:44:8d:a3:03:a4:fe:
0e:b8:99:55:2c:e9:17:84:4a:77:74:be:10:b1:22:
9e:96:8a:41:6b:42:26:aa:13:07:13:1f:55:65:87:
89:60:70:d8:61:ad:c2:4b:c4:1f:b3:86:94:61:1d:
8b:11:fb:ce:aa:f2:c1:88:36:2c:ca:6f:14:6b:b9:
79:19:29:b6:27:54:c0:e4:11:c6:96:1f:4a:82:36:
f7:9a:16:2b:b2:e0:d7:f3:f1:89:1c:fb:40:08:87:
e6:57:d1:e2:7c:f4:9a:83:b1:d2:af:1a:f1:1a:16:
b1:74:f2:9c:65:1e:ea:bf:36:95:11:26:4d:34:5a:
79:5b:2e:51:79:74:8d:17:10:36:3a:95:0f:49:f0:
08:cd:58:4f:75:9e:ca:1c:69:37:09:cc:7d:c1:f0:
c6:7a:f4:91:63:e1:4e:e8:f1:10:5a:9b:71:42:8f:
d3:4f:ee:99:34:82:cf:be:3f:30:6e:5e:8b:15:ce:
f4:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:EF:E2:AA:18:17:BC:3B:8E:E2:5D:C9:9A:5A:D2:86:D7:D0:22:EC
X509v3 Authority Key Identifier:
keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/571134E859FF11EDBDFB474BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2406:840:e240::/44
Signature Algorithm: sha256WithRSAEncryption
4e:8c:6b:4a:18:37:50:ac:9c:8e:96:3b:75:1b:e8:a0:ab:a7:
24:b5:cc:ee:c3:f9:65:73:df:86:24:be:6e:dd:43:f4:a3:4a:
71:b7:82:c1:21:fa:5a:4e:bc:34:cb:bc:f0:26:13:f5:e9:c6:
8a:25:61:a0:d0:34:1e:f3:67:4d:3c:5d:d1:1f:65:56:52:31:
ba:48:93:2a:73:21:6d:26:26:b0:da:5c:1a:89:b7:de:08:87:
ea:ca:e8:e8:2d:3e:f5:8f:31:81:72:58:41:f0:f2:dc:0f:cd:
c6:14:b9:e2:4b:b4:9d:3e:44:bf:64:55:ed:67:7c:96:2f:83:
6e:aa:c4:38:e2:d5:7e:9a:38:86:39:c1:83:d1:91:80:0b:b6:
1f:4d:7b:fb:47:93:cb:61:60:5a:f6:91:56:9c:e9:99:e8:9f:
8c:ff:bf:97:1d:9b:27:3a:d9:d1:57:f8:55:0e:68:e6:4c:c4:
4a:fa:6b:f7:5b:5e:a0:6a:62:c0:3f:bd:ce:1a:07:e7:ea:99:
b7:ff:67:d4:66:94:a8:96:e4:72:09:19:2a:77:71:d4:f2:4e:
88:16:14:65:51:22:18:85:ef:0d:b4:68:7f:8d:13:f3:3c:e8:
95:f4:6b:26:ce:cf:3b:78:fe:55:47:34:a5:81:e2:27:28:7c:
e5:e8:eb:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 00:07:14 2025 by rpki-client