Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E7DB4EFE03E011F0BF858072C4F9AE02.roa
File: E7DB4EFE03E011F0BF858072C4F9AE02.roa (raw, json)
Hash identifier: Q8iIsM/51WXIXhk4OEH+szQJayTY3s8mgXbfjznzs/w=
Subject key identifier: BB:51:4F:01:F8:10:F3:24:FC:9B:5D:EA:BC:80:B9:A7:8B:66:C2:CD
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 24BD
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E7DB4EFE03E011F0BF858072C4F9AE02.roa
Signing time: Tue 18 Mar 2025 10:08:15 +0000
ROA not before: Tue 18 Mar 2025 10:08:15 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 223.29.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Mar 2025 10:35:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9405 (0x24bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Mar 18 10:08:15 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=67d9460e-474a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f1:48:d9:52:1f:7c:30:3f:cc:9d:de:8f:db:
97:d4:ef:fc:7b:85:f2:b7:51:f6:dc:d4:33:dd:55:
27:9b:8b:41:4d:d4:2d:99:a5:77:38:87:78:29:33:
c0:35:57:af:69:1a:b8:fb:de:72:74:66:4d:22:37:
0d:8d:c2:9c:88:e2:3e:11:fa:f4:27:83:7e:38:8d:
f4:0d:e6:a6:2e:bc:71:66:81:08:a2:fe:64:7c:30:
d4:5e:d0:d9:20:e1:6a:a7:2a:d3:2f:e5:fa:a9:07:
04:d9:a5:14:e5:fe:4d:21:65:c7:f7:95:58:2a:5f:
b8:2f:d5:23:f8:e8:1a:ca:e5:3f:67:e9:d1:39:e5:
56:f7:e5:62:39:b8:2f:ec:ed:85:e9:1b:29:f2:6f:
b1:e3:d7:12:a5:2e:26:52:68:1d:82:fb:05:1c:3c:
f4:0f:e5:b2:ce:87:b4:90:e1:1e:00:42:b2:87:5d:
4d:f7:97:66:e0:90:0d:15:e5:61:be:ab:07:41:50:
dd:16:02:76:7a:db:ca:fb:1a:67:04:0b:e4:4a:9c:
02:5e:3a:c6:2f:ce:75:45:3d:83:91:36:8c:2a:d1:
6d:b3:f0:a8:ad:c9:7c:c4:33:e3:a2:03:e0:e1:5a:
35:31:3f:f7:7e:1f:ad:17:23:02:02:83:cd:c9:16:
a5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:51:4F:01:F8:10:F3:24:FC:9B:5D:EA:BC:80:B9:A7:8B:66:C2:CD
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/E7DB4EFE03E011F0BF858072C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
223.29.237.0/24
Signature Algorithm: sha256WithRSAEncryption
55:69:49:9d:d6:26:46:8e:d9:e4:5e:74:47:22:ed:bc:1d:e2:
b2:84:2a:8e:61:2e:11:d5:91:40:bf:e6:b7:fa:54:fc:3f:f3:
27:72:63:19:95:fe:c3:98:bb:18:54:1d:45:bc:46:82:4a:06:
e4:d5:fd:32:ef:0f:87:7a:d8:8e:b3:e4:ff:45:d7:95:1d:fa:
39:e9:33:a2:9c:47:e8:53:18:b6:d9:6b:18:f2:f6:f8:b5:df:
5a:27:c5:8d:a3:b9:a1:e2:37:d9:75:95:b2:00:00:aa:f2:37:
11:ee:1d:33:a4:67:1c:8f:79:ef:ab:02:20:13:3d:7d:cc:8e:
54:84:9c:96:c2:7d:e1:dd:79:b0:44:52:d3:0a:09:58:81:fb:
83:57:0c:89:70:67:04:04:f5:ab:6c:81:15:c3:08:4e:fe:d3:
65:ca:d9:e0:10:da:55:e3:57:09:af:eb:ee:2b:6e:30:53:10:
ae:e3:5b:16:9c:60:98:2a:db:43:66:a7:3b:fe:7d:14:15:9f:
d1:b4:47:24:9c:ed:ce:19:e4:4c:8e:4e:f2:b4:a5:98:53:34:
03:95:31:80:55:c2:14:23:6b:23:b5:2a:96:92:89:69:e6:d2:
04:b6:9a:9c:12:4b:66:98:9d:dc:c9:7f:76:fd:48:67:60:c4:
42:e4:b5:78
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICJL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy
MUU1QjM5QzQwHhcNMjUwMzE4MTAwODE1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02N2Q5NDYwZS00NzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAofFI2VIffDA/zJ3ej9uX1O/8e4Xyt1H23NQz3VUnm4tBTdQtmaV3OId4KTPA
NVevaRq4+95ydGZNIjcNjcKciOI+Efr0J4N+OI30DeamLrxxZoEIov5kfDDUXtDZ
IOFqpyrTL+X6qQcE2aUU5f5NIWXH95VYKl+4L9Uj+OgayuU/Z+nROeVW9+ViObgv
7O2F6Rsp8m+x49cSpS4mUmgdgvsFHDz0D+Wyzoe0kOEeAEKyh11N95dm4JANFeVh
vqsHQVDdFgJ2etvK+xpnBAvkSpwCXjrGL851RT2DkTaMKtFts/Corcl8xDPjogPg
4Vo1MT/3fh+tFyMCAoPNyRal/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLtRTwH4
EPMk/Jtd6ryAuaeLZsLNMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP
Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy
RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvRTdEQjRFRkUw
M0UwMTFGMEJGODU4MDcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBADfHe0wDQYJKoZIhvcNAQELBQADggEBAFVpSZ3WJkaO2eRe
dEci7bwd4rKEKo5hLhHVkUC/5rf6VPw/8ydyYxmV/sOYuxhUHUW8RoJKBuTV/TLv
D4d62I6z5P9F15Ud+jnpM6KcR+hTGLbZaxjy9vi131onxY2juaHiN9l1lbIAAKry
NxHuHTOkZxyPee+rAiATPX3MjlSEnJbCfeHdebBEUtMKCViB+4NXDIlwZwQE9ats
gRXDCE7+02XK2eAQ2lXjVwmv6+4rbjBTEK7jWxacYJgq20Nmpzv+fRQVn9G0RySc
7c4Z5EyOTvK0pZhTNAOVMYBVwhQjayO1KpaSiWnm0gS2mpwSS2aYndzJf3b9SGdg
xELktXg=
-----END CERTIFICATE-----
Generated at Tue Jun 3 23:45:27 2025 by rpki-client