Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3C9/14A7B26233FF11F098AB8F20C4F9AE02/7AD7744E340B11F0B358096BC4F9AE02.roa
File: 7AD7744E340B11F0B358096BC4F9AE02.roa (raw, json)
Hash identifier: uFREioMvrP6DIWfkzubj003W1DrS0JZhRSY11iPFVgI=
Subject key identifier: F9:BE:13:50:F3:AC:EA:16:7B:4B:9B:A3:0A:90:2E:4C:36:6A:0E:07
Certificate issuer: /CN=A91EC3C9/serialNumber=1784AF68CF76D997B99F774063780DB299B54A93
Certificate serial: 03
Authority key identifier: 17:84:AF:68:CF:76:D9:97:B9:9F:77:40:63:78:0D:B2:99:B5:4A:93
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4SvaM922Ze5n3dAY3gNspm1SpM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3C9/14A7B26233FF11F098AB8F20C4F9AE02/7AD7744E340B11F0B358096BC4F9AE02.roa
Signing time: Sun 18 May 2025 17:13:56 +0000
ROA not before: Sun 18 May 2025 17:13:56 +0000
ROA not after: Mon 31 Aug 2026 00:00:00 +0000
asID: 138575
IP address blocks: 165.99.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 May 2025 08:13:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EC3C9, serialNumber=1784AF68CF76D997B99F774063780DB299B54A93
Validity
Not Before: May 18 17:13:56 2025 GMT
Not After : Aug 31 00:00:00 2026 GMT
Subject: CN=682a1554-8930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:76:91:58:f8:73:f1:54:18:8a:1e:24:bb:5c:
4d:c6:31:f6:48:a9:88:1e:78:dc:cc:5c:75:22:73:
42:5b:c7:b7:c0:81:e7:46:09:d2:50:0c:8a:c1:c8:
24:55:7c:53:ac:b0:aa:05:51:2a:fd:ec:3b:d1:6a:
6a:0e:e0:ca:bd:d9:1a:18:74:de:b8:49:e5:ff:28:
80:df:17:90:f5:07:21:08:9b:b6:ad:46:c7:6f:18:
51:47:89:fe:a8:79:74:2b:6d:3e:3e:57:69:28:62:
bb:6c:7b:12:a3:d8:a1:c2:27:d1:a9:4e:00:5a:19:
07:f7:27:0f:f4:0f:bb:49:01:95:a1:3c:ff:0a:9c:
b3:cd:93:a2:36:3b:6b:b9:47:ad:57:35:cd:75:31:
8e:ed:93:d0:12:b4:21:32:f5:67:60:4f:14:ed:6d:
e3:ff:11:2a:da:1f:eb:b8:10:d2:54:48:b3:83:13:
6c:d8:09:e1:8e:52:d7:64:ae:30:7f:1c:97:04:31:
a0:1f:01:f0:58:49:b6:c7:1c:f2:7c:4c:76:69:02:
57:6f:7f:7a:be:2b:e1:2c:f6:93:fd:7b:09:de:02:
f9:92:8d:a2:09:1b:a6:61:95:67:f3:f1:a3:97:0f:
21:d6:6b:85:e3:a7:16:b6:f9:b1:77:86:63:6c:d5:
03:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:BE:13:50:F3:AC:EA:16:7B:4B:9B:A3:0A:90:2E:4C:36:6A:0E:07
X509v3 Authority Key Identifier:
keyid:17:84:AF:68:CF:76:D9:97:B9:9F:77:40:63:78:0D:B2:99:B5:4A:93
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EC3C9/14A7B26233FF11F098AB8F20C4F9AE02/F4SvaM922Ze5n3dAY3gNspm1SpM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4SvaM922Ze5n3dAY3gNspm1SpM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3C9/14A7B26233FF11F098AB8F20C4F9AE02/7AD7744E340B11F0B358096BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
165.99.81.0/24
Signature Algorithm: sha256WithRSAEncryption
18:8e:30:c8:dc:67:dd:40:a3:84:39:a3:b0:57:1d:4c:f1:27:
35:d6:a1:bd:91:76:b3:bf:11:bd:8d:76:80:69:f1:f5:d6:68:
05:22:42:27:fe:85:24:7e:34:9e:13:a9:76:d2:f0:e5:f5:4c:
1f:a3:2b:9e:0c:bd:da:b1:16:46:2a:f1:48:bb:fc:e4:71:4c:
7a:62:33:db:1b:6c:c0:72:99:a1:bd:8d:2a:bf:03:c7:e0:47:
07:fe:d8:d7:d7:56:02:9b:6b:f7:4e:69:55:90:32:96:67:14:
2b:fb:f5:b7:66:7d:51:de:c9:7e:e3:1b:87:96:ab:b6:fa:aa:
13:e6:17:a1:0f:27:eb:f9:1d:89:30:76:6d:c7:7b:c1:c1:51:
9b:4e:d5:d7:d0:da:2d:8f:82:b9:82:03:54:8f:3c:e6:ae:49:
d1:0a:d4:48:9a:22:28:f2:9f:a6:ac:d9:30:50:32:28:e2:3b:
08:da:84:67:8e:de:3a:00:f8:94:a6:43:08:ce:95:1f:51:ff:
c0:f2:50:5a:3b:5d:45:7f:2a:7e:b2:d2:ce:60:83:82:6a:87:
d6:ce:13:72:dc:5c:ee:0f:f4:4a:81:5a:ec:49:c6:15:fa:50:
f0:cc:d3:02:48:75:39:1f:f7:c3:c2:8a:9d:b9:8f:50:a5:a3:
44:a7:a0:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 19:14:13 2025 by rpki-client