Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/38564246ABFB11EFAC5AA210C4F9AE02.roa
File: 38564246ABFB11EFAC5AA210C4F9AE02.roa (raw, json)
Hash identifier: v9DKVOhq841vjS/ennJQrOZER/8OxCjq7N8+XhzR2w8=
Subject key identifier: 48:7F:F1:E5:6D:DD:ED:85:CA:E9:17:21:1B:57:40:3F:BF:55:C3:D9
Certificate issuer: /CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F
Certificate serial: 02E7
Authority key identifier: A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/38564246ABFB11EFAC5AA210C4F9AE02.roa
Signing time: Fri 01 Aug 2025 03:04:46 +0000
ROA not before: Fri 01 Aug 2025 03:04:46 +0000
ROA not after: Mon 31 Aug 2026 00:00:00 +0000
asID: 139057
IP address blocks: 103.137.168.0/24 maxlen: 24
103.137.169.0/24 maxlen: 24
103.137.170.0/24 maxlen: 24
103.137.171.0/24 maxlen: 24
103.138.247.0/24 maxlen: 24
103.189.255.0/24 maxlen: 24
103.243.92.0/24 maxlen: 24
103.243.93.0/24 maxlen: 24
103.243.94.0/24 maxlen: 24
103.243.95.0/24 maxlen: 24
123.108.72.0/24 maxlen: 24
123.108.73.0/24 maxlen: 24
123.108.74.0/24 maxlen: 24
2407:2440:1::/48 maxlen: 48
2407:2440:2::/48 maxlen: 48
2407:2440:3::/48 maxlen: 48
2407:2440:4::/48 maxlen: 48
2407:2440:5::/48 maxlen: 48
2407:2440:6::/48 maxlen: 48
2407:2440:7::/48 maxlen: 48
2407:2440:8::/48 maxlen: 48
2407:2440:9::/48 maxlen: 48
2407:2440:a::/48 maxlen: 48
2407:2440:b::/48 maxlen: 48
2407:2440:c::/48 maxlen: 48
2407:2440:d::/48 maxlen: 48
2407:2440:e::/48 maxlen: 48
2407:2440:f::/48 maxlen: 48
2407:2440:10::/48 maxlen: 48
2407:2440:11::/48 maxlen: 48
2407:2440:12::/48 maxlen: 48
2407:2440:13::/48 maxlen: 48
2407:2440:14::/48 maxlen: 48
2407:2440:15::/48 maxlen: 48
2407:2440:16::/48 maxlen: 48
2407:2440:17::/48 maxlen: 48
2407:2440:18::/48 maxlen: 48
2407:2440:19::/48 maxlen: 48
2407:2440:1e::/48 maxlen: 48
2407:2440:1f::/48 maxlen: 48
2407:2440:20::/48 maxlen: 48
2407:2440:22::/48 maxlen: 48
2407:2440:23::/48 maxlen: 48
2407:2440:25::/48 maxlen: 48
2407:2440:28::/48 maxlen: 48
2407:2440:2a::/48 maxlen: 48
2407:2440:2b::/48 maxlen: 48
2407:2440:2c::/48 maxlen: 48
2407:2440:2d::/48 maxlen: 48
2407:2440:a001::/48 maxlen: 48
2407:2440:a002::/48 maxlen: 48
2407:2440:a003::/48 maxlen: 48
2407:2440:b001::/48 maxlen: 48
2407:2440:b002::/48 maxlen: 48
2407:2440:b003::/48 maxlen: 48
2407:2440:e001::/48 maxlen: 48
2407:2440:e002::/48 maxlen: 48
2407:2440:e003::/48 maxlen: 48
2407:2440:e004::/48 maxlen: 48
2407:2440:e008::/48 maxlen: 48
2407:2440:e009::/48 maxlen: 48
2407:2440:e00a::/48 maxlen: 48
2407:2440:f001::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 04 Aug 2025 03:35:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 743 (0x2e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EB2B8, serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F
Validity
Not Before: Aug 1 03:04:46 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=688c2ece-2960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ac:4c:54:26:ee:5c:cd:a8:9d:5a:9b:42:cc:
72:c5:63:e5:56:b2:e0:b6:12:85:73:53:f0:0f:93:
cf:f6:eb:ba:54:1d:1a:48:5d:75:55:e2:45:71:55:
fc:15:fe:8e:89:78:f0:e0:de:5a:ae:47:8b:3c:06:
6f:20:90:e0:5a:8c:8f:49:09:50:40:2c:0e:22:65:
86:49:1e:6f:36:e1:6c:8e:f8:77:9f:8e:3f:0b:df:
a2:b1:5a:19:47:97:dd:ea:76:9d:59:b0:4d:a6:84:
51:bf:18:34:52:24:a0:3d:e4:95:a9:51:87:2f:04:
72:0f:07:99:16:15:c8:ae:55:1e:a7:33:2e:ab:63:
7c:c1:58:4d:9a:a2:7e:78:b2:86:c0:9b:d2:bc:aa:
a1:2c:5c:98:53:b9:12:07:78:1d:06:ad:3d:83:4b:
80:79:76:8b:1a:1b:f3:cd:1b:63:65:25:e1:fa:c8:
55:d6:68:e1:ef:77:f0:c7:91:f3:bb:93:ce:f5:8b:
79:27:29:d7:2e:3e:a9:1a:42:37:92:21:a6:66:76:
e4:a0:65:65:10:1d:28:2e:17:6d:ca:3c:70:b6:c0:
63:24:6c:db:65:58:d2:ad:bb:a8:f0:c0:50:b5:85:
62:aa:68:23:13:da:26:64:54:cd:ad:7b:67:b1:c3:
d9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:7F:F1:E5:6D:DD:ED:85:CA:E9:17:21:1B:57:40:3F:BF:55:C3:D9
X509v3 Authority Key Identifier:
keyid:A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/38564246ABFB11EFAC5AA210C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.137.168.0/22
103.138.247.0/24
103.189.255.0/24
103.243.92.0/22
123.108.72.0-123.108.74.255
IPv6:
2407:2440:1::-2407:2440:19:ffff:ffff:ffff:ffff:ffff
2407:2440:1e::-2407:2440:20:ffff:ffff:ffff:ffff:ffff
2407:2440:22::/47
2407:2440:25::/48
2407:2440:28::/48
2407:2440:2a::-2407:2440:2d:ffff:ffff:ffff:ffff:ffff
2407:2440:a001::-2407:2440:a003:ffff:ffff:ffff:ffff:ffff
2407:2440:b001::-2407:2440:b003:ffff:ffff:ffff:ffff:ffff
2407:2440:e001::-2407:2440:e004:ffff:ffff:ffff:ffff:ffff
2407:2440:e008::-2407:2440:e00a:ffff:ffff:ffff:ffff:ffff
2407:2440:f001::/48
Signature Algorithm: sha256WithRSAEncryption
59:b7:21:e8:f8:e9:a0:0f:5b:62:a6:73:29:00:92:2c:d4:1c:
3a:ff:f1:2e:74:49:19:0e:3b:61:56:88:3b:5b:a9:39:e4:c2:
cc:dd:ac:54:d4:15:ce:6b:33:00:b5:55:95:b5:00:7b:5b:ed:
59:86:f6:7f:b7:b1:9d:ee:25:98:62:da:9e:fc:fb:90:ff:e9:
1f:bb:26:77:68:ab:aa:fe:29:b1:27:ec:8c:8a:a6:49:cd:9d:
97:e4:25:44:b3:bf:29:5c:ca:28:6f:fb:ed:34:b7:cb:87:ed:
09:f2:ca:4e:15:69:7c:a0:91:b9:3a:9c:b2:24:e7:f6:70:67:
7f:67:a2:66:6b:76:9a:0c:9f:ba:65:53:e1:b8:11:34:e8:5d:
61:f4:e7:d2:c4:84:00:4a:31:af:01:41:29:bf:03:73:2c:66:
df:6d:b6:08:61:f7:04:bf:67:4d:95:a6:c8:dd:6f:66:4b:04:
6e:d6:7c:68:c8:7c:c9:28:d7:36:dd:b4:c9:8c:76:1d:0b:23:
ff:f1:19:35:61:0a:04:f8:d0:21:fb:91:4c:8b:ac:82:53:07:
10:63:58:a4:6f:b7:fd:2a:4f:0f:68:f7:02:31:36:3b:c6:ff:
7b:27:3b:66:9f:0f:ef:44:36:0d:ae:40:21:c7:b7:a8:fb:be:
28:f0:45:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 3 18:28:51 2025 by rpki-client