Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/1F76B17039E011F0BC45E34CC4F9AE02.roa
File: 1F76B17039E011F0BC45E34CC4F9AE02.roa (raw, json)
Hash identifier: 17AlyFRQwZRsFJmkTiZKjxYNJLqX7Lzo4046byyMleg=
Subject key identifier: E6:42:CF:DE:98:61:53:B9:F6:DA:60:41:86:7D:4A:5B:93:CB:7D:16
Certificate issuer: /CN=A91BB221/serialNumber=AEE17DDB8C6B3599646187D081E7C8F79883E19D
Certificate serial: 0D
Authority key identifier: AE:E1:7D:DB:8C:6B:35:99:64:61:87:D0:81:E7:C8:F7:98:83:E1:9D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ruF924xrNZlkYYfQgefI95iD4Z0.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/1F76B17039E011F0BC45E34CC4F9AE02.roa
Signing time: Mon 26 May 2025 03:19:15 +0000
ROA not before: Mon 26 May 2025 03:19:15 +0000
ROA not after: Tue 30 Sep 2025 00:00:00 +0000
asID: 139235
IP address blocks: 103.140.44.0/24 maxlen: 24
2001:df0:a880::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 29 May 2025 07:11:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13 (0xd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BB221, serialNumber=AEE17DDB8C6B3599646187D081E7C8F79883E19D
Validity
Not Before: May 26 03:19:15 2025 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=6833ddb3-1155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:23:43:d5:a0:58:d4:62:ee:6c:23:32:1e:24:
3f:89:de:7a:d0:66:85:37:62:f8:0d:63:f5:74:16:
df:de:9b:dd:83:03:ce:a3:b1:00:e1:a0:ec:8d:da:
c7:93:db:66:e4:40:47:cc:96:28:ab:8a:e0:a3:29:
24:b6:55:81:13:2c:e3:82:b8:53:54:ab:92:34:5b:
17:7e:77:5f:a7:56:7e:86:7e:47:0a:46:9d:b0:e2:
d7:d2:e7:57:f1:50:53:46:e0:0c:45:b4:67:a8:0a:
43:38:19:e2:59:77:26:20:bd:7a:00:30:f1:74:0d:
3b:13:fb:eb:6e:ea:13:01:bb:9f:f9:a5:4b:de:a8:
3d:e4:db:7a:21:6f:82:bf:e0:7e:c4:02:49:d4:82:
52:9b:91:22:4f:d9:9a:23:56:81:2c:8d:24:96:ec:
aa:48:05:5a:60:79:17:d0:e3:7a:3c:fc:d3:bc:25:
11:95:c1:84:5c:48:05:65:b3:1e:77:28:26:df:ae:
64:b0:5f:2d:c6:6f:26:e8:dd:83:46:8a:f1:dc:08:
de:1f:0c:e0:23:1e:cf:97:76:1a:65:10:ff:8f:18:
6a:e6:42:be:1b:d1:9c:81:41:d8:16:a0:71:2c:d5:
bb:42:47:5c:16:57:2e:f5:13:c4:d4:c6:59:1f:8f:
e9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:42:CF:DE:98:61:53:B9:F6:DA:60:41:86:7D:4A:5B:93:CB:7D:16
X509v3 Authority Key Identifier:
keyid:AE:E1:7D:DB:8C:6B:35:99:64:61:87:D0:81:E7:C8:F7:98:83:E1:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/ruF924xrNZlkYYfQgefI95iD4Z0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ruF924xrNZlkYYfQgefI95iD4Z0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB221/33EAAC682D0311F083EBB37AC4F9AE02/1F76B17039E011F0BC45E34CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.140.44.0/24
IPv6:
2001:df0:a880::/48
Signature Algorithm: sha256WithRSAEncryption
71:17:48:41:a1:6e:0b:2c:73:c7:d2:59:eb:3d:89:f6:11:04:
23:92:b5:0a:d5:6f:42:49:46:07:a8:d3:d7:85:a1:1e:be:6a:
59:94:6a:b9:1d:20:17:b4:d5:f1:16:02:9d:f9:4d:34:9c:3a:
72:d4:e6:73:b0:4c:31:ed:1f:38:9a:45:1d:f4:aa:86:7f:70:
8f:56:b7:f2:b5:4b:0f:7a:ef:fd:79:23:54:9f:0b:6d:17:c6:
fd:c2:58:0b:5c:82:f2:cf:e6:00:77:aa:a4:13:87:a6:5e:80:
56:a7:4d:83:9f:15:04:07:b3:5e:9d:29:c9:8d:f9:7e:57:9a:
cf:9a:86:74:2e:a3:54:1e:b3:c1:b3:18:33:30:f1:1d:e3:d6:
79:62:78:e1:c2:23:59:b7:ac:56:ef:85:33:c5:b8:91:19:5d:
00:c4:97:d9:ff:d2:f7:8a:3f:51:d3:5c:96:51:c2:1e:77:78:
f9:eb:de:d1:ae:da:40:c6:a8:48:ab:1c:dd:88:5b:af:0d:f0:
3c:35:ad:52:10:68:ec:df:78:da:08:8b:37:12:7f:4d:17:4c:
f8:9e:c3:d6:1f:7b:a9:fa:08:72:39:57:90:a6:1d:34:03:6f:
57:a3:8b:18:85:36:c3:12:a9:a9:58:38:4b:62:42:4f:00:80:
4e:fc:35:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 00:15:28 2025 by rpki-client