Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0DA53E6D77D11EE90D4B40AC4F9AE02.roa
File: A0DA53E6D77D11EE90D4B40AC4F9AE02.roa (raw, json)
Hash identifier: 2okFG2nvA6VtzboaPscETcETbQohUZD546W2LV4Vqbk=
Subject key identifier: 6D:13:A5:28:51:99:AD:F5:BA:A4:E6:33:9F:B6:42:F2:DA:50:50:72
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: 9095
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0DA53E6D77D11EE90D4B40AC4F9AE02.roa
Signing time: Thu 30 May 2024 16:28:34 +0000
ROA not before: Thu 30 May 2024 16:28:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 103.54.236.0/24 maxlen: 24
103.94.140.0/24 maxlen: 24
103.166.180.0/24 maxlen: 24
103.167.152.0/23 maxlen: 24
103.175.106.0/23 maxlen: 23
103.181.194.0/24 maxlen: 24
103.233.120.0/24 maxlen: 24
203.78.131.0/24 maxlen: 24
2001:df6:9580::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Feb 2025 06:19:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37013 (0x9095)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2
Validity
Not Before: May 30 16:28:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6658a931-f562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d4:cd:b2:15:05:92:35:8f:97:3c:17:1f:1a:
d4:e6:70:56:a8:0b:48:72:00:ba:a9:e1:ef:02:36:
ba:9e:e1:af:92:d8:ee:a6:77:5e:e8:e4:1e:54:39:
0d:65:c9:0e:7b:80:b0:0c:aa:72:88:59:fe:4a:dd:
2d:fd:ad:7d:a7:92:48:51:76:1d:8d:86:c1:ec:74:
42:7e:9b:9b:d2:37:87:18:cd:1e:2d:d1:60:e2:20:
61:18:31:45:31:cf:41:8a:50:5f:02:bd:6e:94:fc:
67:93:f5:ff:ae:d0:af:2d:f6:55:d4:49:11:f4:3f:
5f:bc:85:b9:3f:eb:cc:b4:4e:da:35:5f:3b:4e:5e:
08:44:c3:12:e9:7d:42:4e:62:f1:86:1e:12:41:26:
72:32:0f:73:62:d1:85:1e:a8:a7:d3:8d:a4:f3:33:
95:b2:47:dc:be:a8:e3:bb:5e:3f:a0:34:0b:a5:1b:
38:07:54:95:04:eb:cd:62:45:94:f0:96:49:52:04:
c9:92:70:c8:f1:1e:4b:88:eb:68:1e:42:1b:46:73:
30:99:18:db:63:ac:00:78:7d:fc:2b:1f:4e:46:4c:
4c:80:08:d7:7f:68:b8:28:4f:37:6a:31:36:e9:65:
e0:c9:ff:73:66:2b:81:3e:65:51:67:b3:d6:6b:c7:
b9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:13:A5:28:51:99:AD:F5:BA:A4:E6:33:9F:B6:42:F2:DA:50:50:72
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A0DA53E6D77D11EE90D4B40AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.54.236.0/24
103.94.140.0/24
103.166.180.0/24
103.167.152.0/23
103.175.106.0/23
103.181.194.0/24
103.233.120.0/24
203.78.131.0/24
IPv6:
2001:df6:9580::/48
Signature Algorithm: sha256WithRSAEncryption
54:e0:70:dc:84:68:65:10:ed:e7:71:ea:b9:48:3a:5c:04:82:
fc:9b:ba:b9:bc:19:66:16:fd:1a:e2:89:aa:4a:83:eb:0f:83:
e9:69:9a:c2:2a:a6:91:06:7a:22:f0:2b:c1:81:98:ae:ee:9c:
98:1e:0f:74:d3:49:a4:69:a9:2c:d9:66:3f:c4:1a:3d:d2:d9:
17:7b:0d:c0:81:0d:d6:32:c0:5e:c2:3d:41:bd:8a:04:95:4d:
8b:ba:e9:75:17:9e:61:d0:98:9e:af:7f:71:96:35:4e:7e:d8:
c9:8f:4c:13:a1:70:f6:6b:0d:04:c2:1b:3e:3f:69:d1:8a:fb:
1a:b5:d0:e2:99:ea:aa:75:72:1b:d8:a9:9b:dc:e3:a7:e6:7d:
60:1f:76:c7:f5:94:f4:13:a9:3a:85:7c:c4:23:ba:61:0f:6d:
7d:2c:78:a2:0e:6a:62:c1:86:36:8f:6d:8f:b7:e9:91:9a:42:
28:49:8f:c3:97:c9:83:af:91:38:dc:c9:10:33:7d:66:03:79:
e1:99:fc:5f:52:a5:e3:2d:72:5b:68:0a:3f:17:af:04:7c:4f:
c5:36:2f:02:8f:e2:fd:f4:42:e8:73:13:c8:58:48:5b:7b:5a:
eb:a3:7c:96:c7:ec:66:97:5c:c2:c7:ed:b6:ac:87:1a:ba:32:
95:12:85:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 21:56:32 2025 by rpki-client