Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A912CD21/38C261E41C3811F0AA857D27C4F9AE02/9524483E202111F0B932530FC4F9AE02.roa
File: 9524483E202111F0B932530FC4F9AE02.roa (raw, json)
Hash identifier: 4ZMBtOWuNkBSgdgVweCckLiEHkMezAJL/JAzNmtNmHs=
Subject key identifier: 9D:5C:0E:4D:75:DE:79:E1:FF:1F:22:D4:87:3D:F4:BD:DC:6D:50:B7
Certificate issuer: /CN=A912CD21/serialNumber=818BB90332717F935730DAF14708FFC2F605F05F
Certificate serial: 0A
Authority key identifier: 81:8B:B9:03:32:71:7F:93:57:30:DA:F1:47:08:FF:C2:F6:05:F0:5F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYu5AzJxf5NXMNrxRwj_wvYF8F8.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A912CD21/38C261E41C3811F0AA857D27C4F9AE02/9524483E202111F0B932530FC4F9AE02.roa
Signing time: Wed 23 Apr 2025 09:01:46 +0000
ROA not before: Wed 23 Apr 2025 09:01:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 18024
IP address blocks: 163.227.28.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 23 Apr 2025 10:13:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10 (0xa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A912CD21, serialNumber=818BB90332717F935730DAF14708FFC2F605F05F
Validity
Not Before: Apr 23 09:01:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6808ac79-f01e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b1:80:18:2f:30:a9:4b:8b:f5:36:4d:d0:42:
e3:4e:ef:87:8d:92:6d:55:58:e9:35:92:bf:ff:b4:
5d:d7:50:72:f3:c5:da:27:a4:4d:62:2f:dd:0b:44:
ac:cc:66:f8:03:80:0c:04:1a:da:2e:23:b2:f6:ac:
ff:e6:75:d7:8e:ae:fd:2c:5d:3d:5f:80:c3:8a:c7:
79:c9:42:92:f0:cc:77:20:70:06:33:48:a4:3a:90:
dc:88:dc:03:e2:c8:68:00:12:a2:27:2d:85:b6:dc:
a2:b1:4c:20:59:8c:2b:f0:e9:b3:14:c1:95:97:75:
3e:3b:a8:58:b4:79:fb:76:64:20:b2:12:43:ae:90:
6e:04:c0:e7:05:ee:86:1b:93:51:3e:47:ab:c8:e2:
c1:54:f8:fe:a3:1c:75:68:9c:09:bc:42:8a:82:b5:
07:7e:41:0b:63:bc:20:3e:0d:9f:a5:4b:86:90:32:
27:f9:63:4e:84:bf:1e:72:b9:0b:d1:e4:b3:cd:02:
cb:62:a8:7d:35:9d:f3:f3:94:d0:a2:0c:c1:2e:f7:
6f:a7:6d:a1:1d:12:64:17:d5:f3:ef:a1:d7:6c:77:
11:b7:2e:e0:a3:b3:8a:83:7f:5b:6c:3a:da:0c:b5:
2e:8a:7e:dc:cc:5e:14:da:ba:73:61:93:c3:a8:9a:
bf:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:5C:0E:4D:75:DE:79:E1:FF:1F:22:D4:87:3D:F4:BD:DC:6D:50:B7
X509v3 Authority Key Identifier:
keyid:81:8B:B9:03:32:71:7F:93:57:30:DA:F1:47:08:FF:C2:F6:05:F0:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A912CD21/38C261E41C3811F0AA857D27C4F9AE02/gYu5AzJxf5NXMNrxRwj_wvYF8F8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYu5AzJxf5NXMNrxRwj_wvYF8F8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CD21/38C261E41C3811F0AA857D27C4F9AE02/9524483E202111F0B932530FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
163.227.28.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:93:bc:5e:1d:34:33:70:94:02:29:b1:94:44:a0:02:b3:5b:
af:20:cc:28:61:5d:17:0e:10:ec:4e:28:28:e1:89:b8:70:98:
b8:71:63:56:f9:3d:f0:98:f8:d3:8a:a6:02:76:44:55:ce:5e:
8e:ca:03:7a:f5:6f:a2:cf:87:91:6c:f6:6b:e0:dd:bf:e0:4b:
cb:84:05:5f:c0:0a:cc:5b:cf:2d:ed:63:33:07:9e:09:aa:42:
c4:6f:39:ce:c7:a9:6e:c3:00:ce:23:75:f1:45:e7:c9:80:07:
39:40:c2:1e:c7:b3:80:b6:56:43:d9:38:78:23:d9:c3:3b:34:
f3:49:d9:a3:fc:6d:5d:36:71:ba:20:d1:d1:2d:df:33:0b:16:
da:6f:d4:9a:27:74:a8:5c:48:b0:92:63:be:fe:39:54:32:9f:
96:9d:1d:9d:94:5f:03:e4:e5:cb:b8:f8:4e:9a:86:d4:e0:0a:
ef:63:5b:26:3b:d6:6d:ca:59:57:7d:32:3d:4f:26:11:6a:e2:
4f:1a:89:bf:fb:b8:6f:c3:af:17:9c:5c:cc:ae:7c:62:1f:ab:
67:78:5f:99:c4:0a:09:8d:2a:eb:58:fa:6c:d3:2c:b4:6d:be:
d6:26:a7:72:c9:24:7d:a1:62:56:63:a1:b8:04:47:96:ad:2d:
c4:a4:2b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 13:31:14 2025 by rpki-client on console.sobornost.net