Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C23A5982E81311ED8E3D6035C4F9AE02.roa
File: C23A5982E81311ED8E3D6035C4F9AE02.roa (raw, json)
Hash identifier: 3Wmj2tyid3Yst/BjETefJRPGl7xWvU3k6qXQBfGOhes=
Subject key identifier: C3:9C:60:73:D5:BA:F4:A4:41:E4:D2:30:7F:9A:22:DE:D5:2F:19:E2
Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Certificate serial: BBEF
Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C23A5982E81311ED8E3D6035C4F9AE02.roa
Signing time: Mon 26 May 2025 11:26:29 +0000
ROA not before: Mon 26 May 2025 11:26:29 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 134343
IP address blocks: 103.110.102.0/23 maxlen: 24
103.113.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 May 2025 07:56:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48111 (0xbbef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823
Validity
Not Before: May 26 11:26:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68344fe5-c771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5c:c0:2b:a9:c9:f9:4a:35:b2:c3:5e:8a:37:
28:22:d4:01:c6:f3:f6:83:2e:50:ba:4b:3c:2a:dd:
30:f0:34:8e:9a:a8:fa:68:68:43:0f:3a:89:b9:de:
7c:9b:7e:35:58:8f:b9:76:6d:f1:2e:79:51:b8:a9:
a3:02:fa:92:63:97:9f:20:fd:b1:67:e2:a4:bf:1f:
1c:dc:3a:a2:ab:4c:55:32:ec:a4:e4:80:dc:b4:74:
f9:f4:68:a7:e2:46:61:9d:8a:51:5d:5d:04:b5:e0:
f7:6c:77:f8:35:e2:83:4e:25:74:eb:e8:49:91:8b:
d1:0a:ee:ea:3c:57:be:17:17:e5:d1:0f:a5:ed:be:
f3:e9:ee:3e:08:d8:3d:78:45:84:ac:12:c7:7d:15:
48:18:35:2d:35:cd:62:61:f0:dc:30:41:27:8c:69:
7f:33:d8:a1:72:04:a6:a5:f6:1c:c7:44:68:6e:77:
2b:81:96:eb:5e:c3:98:12:15:52:87:3a:63:9c:71:
65:4e:b9:c6:d2:54:47:da:66:de:e7:ca:56:1b:e0:
5b:ff:e3:27:f0:5f:5c:95:09:fb:03:c4:0a:d4:c3:
8b:87:7b:34:81:5e:59:5a:75:6f:9f:ae:c9:39:02:
cb:6a:5b:6d:6d:2c:5f:a3:b3:7c:72:17:c5:e2:8d:
1e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:9C:60:73:D5:BA:F4:A4:41:E4:D2:30:7F:9A:22:DE:D5:2F:19:E2
X509v3 Authority Key Identifier:
keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C23A5982E81311ED8E3D6035C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.110.102.0/23
103.113.252.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:19:dc:3b:8a:a3:60:8d:e3:f7:ac:6a:59:36:30:3e:25:6e:
5b:c4:c2:8a:79:3b:f5:66:84:df:c1:56:6d:48:e3:25:2d:a3:
49:a3:ae:7d:69:48:dd:29:b0:87:c6:24:ac:19:24:90:de:46:
6e:75:e2:07:b0:f0:20:09:a0:b2:1b:1a:a9:d6:35:75:45:1a:
db:86:e2:d6:98:b7:b5:4a:f2:a6:6d:bd:c9:f1:ae:52:cc:b5:
fa:c0:4f:79:d5:f0:ac:96:db:ff:0c:f5:aa:c5:1c:05:7f:17:
75:e7:c9:59:72:f8:67:1a:b1:75:e7:ee:01:44:14:3e:b2:d6:
4a:da:b2:e1:ae:28:e3:e1:53:ae:17:46:b2:11:03:a4:30:8d:
50:70:05:45:fc:2b:79:02:c6:42:e2:5e:ce:de:50:ca:4b:dc:
d5:56:81:8e:54:60:6a:ca:dc:b9:3f:e7:46:f2:5d:f2:3b:ff:
97:1a:b6:a3:f8:1d:15:ff:37:d4:45:e2:93:89:c3:4f:25:9d:
d5:92:6b:68:ac:60:69:31:4d:94:87:67:18:a4:1a:8e:e6:5d:
fd:3f:7a:75:30:91:07:52:38:87:ce:53:74:24:b5:54:af:35:
5b:b9:e0:92:ac:e9:c3:88:ee:01:a0:21:6c:d7:57:1e:49:1e:
4d:94:55:dc
-----BEGIN CERTIFICATE-----
MIIFeDCCBGCgAwIBAgIDALvvMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4
M0UzQUJDODIzMB4XDTI1MDUyNjExMjYyOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG
A1UEAxMNNjgzNDRmZTUtYzc3MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALNcwCupyflKNbLDXoo3KCLUAcbz9oMuULpLPCrdMPA0jpqo+mhoQw86ibne
fJt+NViPuXZt8S55UbipowL6kmOXnyD9sWfipL8fHNw6oqtMVTLspOSA3LR0+fRo
p+JGYZ2KUV1dBLXg92x3+DXig04ldOvoSZGL0Qru6jxXvhcX5dEPpe2+8+nuPgjY
PXhFhKwSx30VSBg1LTXNYmHw3DBBJ4xpfzPYoXIEpqX2HMdEaG53K4GW617DmBIV
Uoc6Y5xxZU65xtJUR9pm3ufKVhvgW//jJ/BfXJUJ+wPECtTDi4d7NIFeWVp1b5+u
yTkCy2pbbW0sX6OzfHIXxeKNHpUCAwEAAaOCApswggKXMB0GA1UdDgQWBBTDnGBz
1br0pEHk0jB/miLe1S8Z4jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI
IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3
MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y
eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr
aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3
MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB
/wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu
aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF
BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0MyM0E1OTgy
RTgxMzExRUQ4RTNENjAzNUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6
Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/
BBYwFDASBAIAATAMAwQBZ25mAwQCZ3H8MA0GCSqGSIb3DQEBCwUAA4IBAQCqGdw7
iqNgjeP3rGpZNjA+JW5bxMKKeTv1ZoTfwVZtSOMlLaNJo659aUjdKbCHxiSsGSSQ
3kZudeIHsPAgCaCyGxqp1jV1RRrbhuLWmLe1SvKmbb3J8a5SzLX6wE951fCsltv/
DPWqxRwFfxd158lZcvhnGrF15+4BRBQ+stZK2rLhrijj4VOuF0ayEQOkMI1QcAVF
/Ct5AsZC4l7O3lDKS9zVVoGOVGBqyty5P+dG8l3yO/+XGraj+B0V/zfUReKTicNP
JZ3VkmtorGBpMU2Uh2cYpBqO5l39P3p1MJEHUjiHzlN0JLVUrzVbueCSrOnDiO4B
oCFs11ceSR5NlFXc
-----END CERTIFICATE-----
Generated at Sat Jun 14 15:26:17 2025 by rpki-client