Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/3FC80B8036DF11F0B924980BC4F9AE02.roa
File: 3FC80B8036DF11F0B924980BC4F9AE02.roa (raw, json)
Hash identifier: Tpk7fPV4U9jIW6R72oFcDCrwlGNRfIpKfw54ruOZ46Y=
Subject key identifier: C3:BE:90:EF:ED:CA:C4:7F:CF:D3:A7:11:09:2A:B1:0D:8F:DE:21:78
Certificate issuer: /CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E
Certificate serial: 0186
Authority key identifier: 09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/3FC80B8036DF11F0B924980BC4F9AE02.roa
Signing time: Thu 22 May 2025 07:34:53 +0000
ROA not before: Thu 22 May 2025 07:34:52 +0000
ROA not after: Tue 30 Dec 2025 00:00:00 +0000
asID: 13383
IP address blocks: 2402:be0::/40 maxlen: 48
2402:be0:100::/40 maxlen: 48
2402:be0:200::/40 maxlen: 48
2402:be0:300::/40 maxlen: 48
Validation: Failed, certificate revoked on Thu 22 May 2025 07:38:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 390 (0x186)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91F17AA, serialNumber=0947051EFA50429215750A48BC031ADA926EF66E
Validity
Not Before: May 22 07:34:52 2025 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=682ed39c-35ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a4:52:f5:33:a1:37:70:f0:64:a2:59:25:07:
12:f0:c0:b4:02:d8:56:21:3a:40:01:5d:d7:e2:1c:
f1:78:1b:66:35:bb:85:5a:be:97:18:02:ec:26:b6:
24:8d:13:65:3f:e5:1f:d2:be:62:49:80:13:f4:06:
05:0b:55:dc:17:ca:2d:49:81:bd:46:fc:5d:ab:3f:
d1:bb:49:c4:2b:83:cc:25:77:ef:95:39:e9:32:01:
0f:c5:a6:9d:2e:86:02:83:8c:31:1d:5a:3e:20:10:
6a:69:31:63:e3:34:37:42:1f:71:63:6d:b8:b3:e8:
30:64:9a:00:64:34:bf:7f:a9:47:64:87:c1:61:0a:
95:a5:d6:f8:f4:bc:38:df:34:3f:2d:6a:80:0d:1a:
ee:e6:48:84:8e:dd:1c:ab:50:cd:26:24:92:83:e1:
b1:b4:09:85:bc:b2:71:43:81:0b:af:f3:65:ef:0e:
f8:e8:b4:07:10:17:52:0e:10:2e:82:47:dc:28:a4:
fc:62:fc:7e:02:42:cd:a9:6c:1d:df:70:f9:32:5e:
6c:e5:e0:51:01:2a:c1:e9:5d:95:c2:21:35:62:37:
21:c5:84:74:ec:6b:30:b0:bf:ec:82:71:a0:b4:23:
7e:41:c5:1c:a6:7d:d5:2e:b1:2a:5d:0d:60:fc:1a:
47:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:BE:90:EF:ED:CA:C4:7F:CF:D3:A7:11:09:2A:B1:0D:8F:DE:21:78
X509v3 Authority Key Identifier:
keyid:09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/3FC80B8036DF11F0B924980BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:be0::/38
Signature Algorithm: sha256WithRSAEncryption
06:60:8f:02:5b:ba:10:e4:33:0d:e8:03:4a:1e:80:dd:9e:38:
96:e4:02:d7:f7:5a:99:ec:b6:2c:6f:3d:8a:eb:27:49:41:09:
bd:25:09:81:60:e3:67:6d:4d:6a:4b:18:ec:1b:f8:b7:e5:61:
35:43:c9:c5:08:d7:d6:a1:c5:f4:a5:f8:0f:50:81:3d:f8:46:
89:e1:e0:ef:e5:55:71:48:48:76:e4:3c:67:69:16:34:fe:65:
0d:ad:4f:f7:c1:d5:f0:9c:fc:d8:55:88:ca:43:16:7d:a6:76:
e6:dc:12:c6:4b:a5:e9:cc:fc:37:0e:ed:1c:1a:7b:2e:5f:53:
14:9f:c3:3b:4d:94:92:cc:92:d0:2a:8c:65:c2:09:bb:40:96:
1c:9a:bc:7e:be:ec:fe:88:8a:bc:c0:59:b5:84:52:ba:3e:32:
b3:e8:18:b2:73:7e:35:a2:9f:5d:2a:ac:a1:61:ed:38:c9:f5:
87:26:0b:87:f9:b5:98:97:96:53:7e:b1:dd:4f:73:cd:37:a8:
b8:62:75:1f:27:d5:a2:df:16:c2:1e:45:6b:7e:85:94:7a:55:
4c:59:4c:57:55:b2:c5:cc:c6:57:b0:3b:71:de:24:1c:37:83:
3c:5f:bd:32:a6:a9:20:7b:73:f0:ac:01:a4:f0:6a:ed:44:65:
47:a7:8d:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 4 00:05:17 2025 by rpki-client