Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/33F7E1C8469211F0AD59605BC4F9AE02.roa
File: 33F7E1C8469211F0AD59605BC4F9AE02.roa (raw, json)
Hash identifier: 8uJAr0qEFiC1armEJY4Os+f+HyHxV9zksef05eWR5RM=
Subject key identifier: 86:9D:82:8C:FF:3F:F1:FB:9F:78:8A:F8:16:20:7C:6F:87:3F:80:D1
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: BDDE
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/33F7E1C8469211F0AD59605BC4F9AE02.roa
Signing time: Wed 11 Jun 2025 07:03:40 +0000
ROA not before: Wed 11 Jun 2025 07:03:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 17665
IP address blocks: 36.255.88.0/22 maxlen: 24
43.230.40.0/22 maxlen: 24
45.117.72.0/22 maxlen: 24
45.118.104.0/22 maxlen: 24
59.152.120.0/22 maxlen: 24
103.10.224.0/22 maxlen: 24
103.27.48.0/22 maxlen: 24
103.38.68.0/23 maxlen: 24
103.38.128.0/22 maxlen: 24
103.57.140.0/22 maxlen: 24
103.58.152.0/22 maxlen: 24
103.59.204.0/22 maxlen: 24
103.88.57.0/24 maxlen: 24
103.88.58.0/24 maxlen: 24
103.88.59.0/24 maxlen: 24
103.92.112.0/24 maxlen: 24
103.92.113.0/24 maxlen: 24
103.92.114.0/24 maxlen: 24
103.92.115.0/24 maxlen: 24
103.99.196.0/23 maxlen: 24
103.99.198.0/23 maxlen: 24
103.115.129.0/24 maxlen: 24
103.115.130.0/24 maxlen: 24
103.135.64.0/24 maxlen: 24
103.135.65.0/24 maxlen: 24
103.136.172.0/22 maxlen: 24
103.142.114.0/23 maxlen: 24
103.144.188.0/23 maxlen: 24
103.147.1.0/24 maxlen: 24
103.158.170.0/23 maxlen: 24
103.159.98.0/24 maxlen: 24
103.161.40.0/23 maxlen: 24
103.164.46.0/23 maxlen: 24
103.165.28.0/23 maxlen: 24
103.168.177.0/24 maxlen: 24
103.168.232.0/23 maxlen: 24
103.171.9.0/24 maxlen: 24
103.171.208.0/24 maxlen: 24
103.175.30.0/24 maxlen: 24
103.175.31.0/24 maxlen: 24
103.176.176.0/24 maxlen: 24
103.176.194.0/23 maxlen: 24
103.177.174.0/23 maxlen: 24
103.178.74.0/24 maxlen: 24
103.178.168.0/23 maxlen: 24
103.179.122.0/24 maxlen: 24
103.182.130.0/23 maxlen: 24
103.184.40.0/24 maxlen: 24
103.184.41.0/24 maxlen: 24
103.186.121.0/24 maxlen: 24
103.186.176.0/24 maxlen: 24
103.199.192.0/22 maxlen: 24
103.203.36.0/22 maxlen: 24
103.206.8.0/24 maxlen: 24
103.206.9.0/24 maxlen: 24
103.206.10.0/24 maxlen: 24
103.206.11.0/24 maxlen: 24
103.209.68.0/22 maxlen: 22
103.209.68.0/24 maxlen: 24
103.209.69.0/24 maxlen: 24
103.209.70.0/24 maxlen: 24
103.209.71.0/24 maxlen: 24
103.215.164.0/22 maxlen: 24
103.244.224.0/24 maxlen: 24
103.245.103.0/24 maxlen: 24
103.251.52.0/22 maxlen: 24
111.223.24.0/22 maxlen: 24
157.119.44.0/22 maxlen: 24
162.12.246.0/23 maxlen: 24
202.148.60.0/22 maxlen: 24
203.189.248.0/22 maxlen: 24
203.192.192.0/20 maxlen: 24
203.192.208.0/22 maxlen: 24
203.192.212.0/24 maxlen: 24
203.192.213.0/24 maxlen: 24
203.192.214.0/24 maxlen: 24
203.192.215.0/24 maxlen: 24
203.192.216.0/24 maxlen: 24
203.192.217.0/24 maxlen: 24
203.192.218.0/24 maxlen: 24
203.192.219.0/24 maxlen: 24
203.192.220.0/22 maxlen: 24
203.192.224.0/23 maxlen: 24
203.192.226.0/24 maxlen: 24
203.192.227.0/24 maxlen: 24
203.192.228.0/22 maxlen: 24
203.192.232.0/22 maxlen: 24
203.192.236.0/24 maxlen: 24
203.192.237.0/24 maxlen: 24
203.192.238.0/23 maxlen: 24
203.192.240.0/20 maxlen: 20
203.192.240.0/24 maxlen: 24
203.192.241.0/24 maxlen: 24
203.192.242.0/24 maxlen: 24
203.192.243.0/24 maxlen: 24
203.192.244.0/24 maxlen: 24
203.192.245.0/24 maxlen: 24
203.192.246.0/24 maxlen: 24
203.192.247.0/24 maxlen: 24
203.192.248.0/24 maxlen: 24
203.192.249.0/24 maxlen: 24
203.192.250.0/24 maxlen: 24
203.192.251.0/24 maxlen: 24
203.192.252.0/24 maxlen: 24
203.192.253.0/24 maxlen: 24
203.192.254.0/24 maxlen: 24
203.192.255.0/24 maxlen: 24
203.194.96.0/24 maxlen: 24
203.194.97.0/24 maxlen: 24
203.194.98.0/24 maxlen: 24
203.194.99.0/24 maxlen: 24
203.194.100.0/24 maxlen: 24
203.194.101.0/24 maxlen: 24
203.194.102.0/24 maxlen: 24
203.194.103.0/24 maxlen: 24
203.194.104.0/24 maxlen: 24
203.194.105.0/24 maxlen: 24
203.194.106.0/24 maxlen: 24
203.194.107.0/24 maxlen: 24
203.194.108.0/24 maxlen: 24
203.194.109.0/24 maxlen: 24
203.194.110.0/24 maxlen: 24
203.194.111.0/24 maxlen: 24
2001:df1:9980::/48 maxlen: 48
2001:df1:9980:1::/64 maxlen: 64
2001:df1:9980:2::/64 maxlen: 64
2001:df1:9980:3::/64 maxlen: 64
2001:df1:9980:4::/64 maxlen: 64
2001:df1:9980:5::/64 maxlen: 64
2001:df2:4c0::/48 maxlen: 48
2404:ba00::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 12 Jun 2025 05:16:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48606 (0xbdde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: Jun 11 07:03:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68492a4c-d43d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e0:83:8a:c8:e8:a8:94:71:71:92:84:c2:2f:
86:13:ee:74:da:24:95:28:38:9f:21:a0:ea:32:71:
21:fb:89:65:5d:10:6f:48:57:23:f7:6a:5e:73:8e:
58:6a:15:7f:4d:92:ed:e5:69:ab:e4:e2:bf:c1:5a:
f8:13:5e:80:a5:e7:d6:5a:7b:4c:34:20:fb:08:53:
b7:52:43:ca:47:19:59:6b:b2:29:07:8d:3a:6a:19:
1a:78:20:68:fa:14:ab:84:c1:39:90:63:e5:fa:d5:
5e:47:55:b8:0e:4b:20:3b:4f:97:cf:55:ca:0c:fe:
f7:56:49:bb:bc:67:14:d0:e9:a4:cd:a6:c4:7b:c9:
5b:49:78:18:1d:c8:d6:02:9d:80:b8:74:80:c5:ff:
24:57:75:d7:e6:13:5f:34:4f:16:2b:12:e1:c7:f0:
ec:82:81:ee:33:4c:9b:3f:b3:00:85:cf:85:e9:7f:
e7:0a:83:5c:af:31:2e:49:c2:08:b9:19:81:03:0b:
44:15:87:2d:a7:29:e4:cf:9b:49:90:30:ab:ec:0b:
2a:81:01:39:9b:42:0c:37:a3:0f:53:99:39:e2:2f:
43:2c:a0:75:d8:4d:65:37:5e:c8:6b:cf:0e:0d:48:
b4:b5:80:d0:77:1c:41:e6:d3:09:5b:22:d7:95:8a:
b4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:9D:82:8C:FF:3F:F1:FB:9F:78:8A:F8:16:20:7C:6F:87:3F:80:D1
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/33F7E1C8469211F0AD59605BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
36.255.88.0/22
43.230.40.0/22
45.117.72.0/22
45.118.104.0/22
59.152.120.0/22
103.10.224.0/22
103.27.48.0/22
103.38.68.0/23
103.38.128.0/22
103.57.140.0/22
103.58.152.0/22
103.59.204.0/22
103.88.57.0-103.88.59.255
103.92.112.0/22
103.99.196.0/22
103.115.129.0-103.115.130.255
103.135.64.0/23
103.136.172.0/22
103.142.114.0/23
103.144.188.0/23
103.147.1.0/24
103.158.170.0/23
103.159.98.0/24
103.161.40.0/23
103.164.46.0/23
103.165.28.0/23
103.168.177.0/24
103.168.232.0/23
103.171.9.0/24
103.171.208.0/24
103.175.30.0/23
103.176.176.0/24
103.176.194.0/23
103.177.174.0/23
103.178.74.0/24
103.178.168.0/23
103.179.122.0/24
103.182.130.0/23
103.184.40.0/23
103.186.121.0/24
103.186.176.0/24
103.199.192.0/22
103.203.36.0/22
103.206.8.0/22
103.209.68.0/22
103.215.164.0/22
103.244.224.0/24
103.245.103.0/24
103.251.52.0/22
111.223.24.0/22
157.119.44.0/22
162.12.246.0/23
202.148.60.0/22
203.189.248.0/22
203.192.192.0/18
203.194.96.0/20
IPv6:
2001:df1:9980::/48
2001:df2:4c0::/48
2404:ba00::/32
Signature Algorithm: sha256WithRSAEncryption
06:0c:af:d1:86:7a:28:5f:82:73:c0:97:44:43:7c:28:5c:01:
32:11:00:a0:96:58:c4:e9:f0:18:9c:09:e5:88:d4:be:c8:8e:
07:8d:e7:73:a3:0a:b5:4e:4c:cc:00:b4:3a:64:84:cc:81:3c:
57:cc:46:62:9e:0f:ba:02:e1:09:e4:e2:2d:20:04:23:66:b2:
76:e5:6e:33:83:14:b2:69:5c:83:7f:1b:43:a5:2f:32:20:29:
1e:05:b1:37:6c:30:81:4e:8f:d3:c3:24:e7:02:50:97:29:c8:
9c:0a:4f:7e:b8:c3:ae:83:5e:c3:8a:8c:25:61:15:17:bf:7e:
72:ba:3e:5e:18:bf:e0:eb:d7:df:de:58:24:0e:95:61:cf:e8:
98:0a:8b:d6:80:f9:81:25:f6:e6:2c:88:e2:b2:6b:36:56:ee:
f6:78:a9:c9:9c:9c:24:19:79:d1:86:69:b0:31:30:c2:98:25:
6a:51:02:eb:92:45:6d:b0:40:05:51:33:d5:c8:71:7c:85:3d:
96:55:a3:32:ee:23:1e:bf:00:90:60:da:46:f6:8c:23:bf:3b:
65:49:db:69:7a:4e:18:32:90:29:42:e9:29:b6:6e:24:88:3c:
4c:22:5f:09:26:18:9a:b0:9e:43:66:d0:b6:a2:fe:52:13:35:
1b:6b:a7:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 19:19:14 2025 by rpki-client