Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/3C726724C06211EC93514712C4F9AE02.roa
File: 3C726724C06211EC93514712C4F9AE02.roa (raw, json)
Hash identifier: NXaA2jcAP4nG6vQzw7iy/OSf8MlJp0fg+3EVelxuZOk=
Subject key identifier: F1:83:62:38:9E:9A:11:88:6D:7D:D0:C6:DE:D2:07:5A:56:C7:D8:28
Certificate issuer: /CN=A91C3B8A/serialNumber=4550C69051BAA18AF112DC76B5F5DF9E6B7940D5
Certificate serial: 0C03
Authority key identifier: 45:50:C6:90:51:BA:A1:8A:F1:12:DC:76:B5:F5:DF:9E:6B:79:40:D5
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/3C726724C06211EC93514712C4F9AE02.roa
Signing time: Thu 26 Feb 2026 19:16:01 +0000
ROA not before: Thu 26 Feb 2026 19:16:01 +0000
ROA not after: Sat 01 May 2027 00:00:00 +0000
asID: 397373
IP address blocks: 103.229.198.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 27 Feb 2026 07:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3075 (0xc03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91C3B8A, serialNumber=4550C69051BAA18AF112DC76B5F5DF9E6B7940D5
Validity
Not Before: Feb 26 19:16:01 2026 GMT
Not After : May 1 00:00:00 2027 GMT
Subject: CN=69a09bf1-4e97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:1d:30:59:70:10:6b:4e:ca:b2:61:41:13:b9:
44:d1:bb:c2:62:55:66:c2:fb:46:0d:16:ae:48:53:
29:75:49:6a:f0:9b:fe:e8:24:25:41:4d:83:08:81:
00:75:4a:d7:ba:cb:c0:1a:ee:04:81:12:7d:1b:c4:
a3:8e:1a:d9:2d:15:a9:59:0a:af:8d:0b:4c:49:03:
17:3b:f3:72:a6:5a:e5:64:1b:56:38:31:d1:74:b5:
1b:3b:a8:b1:94:c2:eb:94:50:da:16:b2:53:0e:c9:
62:d1:a1:bf:3b:53:c5:3d:d7:ba:ac:92:b4:4c:85:
a2:58:3b:24:08:c6:86:2b:49:6f:04:60:56:70:5a:
cf:17:e4:45:e4:89:cf:d9:42:07:31:a5:42:a7:21:
57:21:3f:0a:a3:39:1c:85:e4:e0:09:d7:b2:bd:cf:
f5:af:2e:bf:ad:40:19:45:c0:26:b3:11:7a:1d:86:
50:b4:23:0d:0f:f0:d9:f6:65:b4:a2:9e:be:1a:59:
0c:75:29:3d:64:4f:2c:09:8c:9b:3d:9d:93:61:d5:
23:b0:58:01:c7:90:d7:65:88:4b:80:88:c0:c1:a6:
d5:d2:d5:f2:2c:f7:06:58:cb:12:bf:c5:88:f6:09:
c9:b9:49:1a:0f:83:9e:0c:f7:de:ed:3b:86:d4:96:
36:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:83:62:38:9E:9A:11:88:6D:7D:D0:C6:DE:D2:07:5A:56:C7:D8:28
X509v3 Authority Key Identifier:
keyid:45:50:C6:90:51:BA:A1:8A:F1:12:DC:76:B5:F5:DF:9E:6B:79:40:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/3C726724C06211EC93514712C4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.229.198.0/23
Signature Algorithm: sha256WithRSAEncryption
c1:fb:c7:3d:06:52:23:f3:fd:94:57:b8:13:48:8f:37:45:d7:
c4:6f:4c:d9:be:ca:47:6b:20:6e:84:6c:e2:b0:29:08:b3:80:
e9:80:db:38:7a:43:ed:38:6a:89:db:f3:2e:3c:18:5c:9a:0a:
49:de:38:f3:e3:9d:9a:9d:35:9e:a2:0f:94:25:af:02:2a:3d:
48:41:c3:db:3a:e1:99:3a:a0:27:9f:fb:6c:f8:38:2f:61:eb:
06:82:a0:ee:2a:8a:ce:4e:df:de:c0:9d:f5:b5:ad:d9:ef:0f:
ca:0e:d8:4a:3c:88:95:ff:6f:d2:7e:cd:7c:f9:d8:5e:53:8a:
c7:95:16:ba:b3:82:1b:ce:3f:9b:5b:a7:50:0b:23:37:c4:b8:
96:f7:9c:aa:f9:0c:21:87:e1:9b:98:d0:e7:c6:80:07:e9:e8:
78:51:d5:da:ba:3f:8c:17:51:64:d3:06:94:d1:a7:b7:7b:34:
05:67:81:f4:19:36:c4:53:10:5e:68:6a:09:9b:81:25:8f:ed:
35:5e:5b:06:f2:4c:04:f2:72:75:cd:dc:0c:1d:df:fe:c1:db:
1e:95:3d:38:3b:f3:b0:cd:b8:77:28:7a:bd:67:61:f8:97:7b:
44:93:fb:7d:c7:2a:d6:19:8a:ec:f5:e0:00:d2:91:e2:06:4c:
9e:92:ec:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 5 13:49:39 2026 by rpki-client