Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/16E86AEABF7D11EF9A1F1863C4F9AE02.roa
File: 16E86AEABF7D11EF9A1F1863C4F9AE02.roa (raw, json)
Hash identifier: /pAjotqNCqGgQS+QooleuGBdrzsXMuIxLNUQF9J8Jfg=
Subject key identifier: 52:42:D0:98:0A:6E:14:B4:54:A9:FE:BE:05:66:D3:E0:4A:35:A6:3A
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 0C90
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/16E86AEABF7D11EF9A1F1863C4F9AE02.roa
Signing time: Mon 23 Dec 2024 07:49:19 +0000
ROA not before: Mon 23 Dec 2024 07:49:19 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 138241
IP address blocks: 139.190.0.0/21 maxlen: 24
139.190.32.0/21 maxlen: 24
139.190.40.0/24 maxlen: 24
139.190.41.0/24 maxlen: 24
139.190.42.0/24 maxlen: 24
139.190.43.0/24 maxlen: 24
139.190.44.0/24 maxlen: 24
139.190.45.0/24 maxlen: 24
139.190.46.0/24 maxlen: 24
139.190.47.0/24 maxlen: 24
139.190.48.0/24 maxlen: 24
139.190.49.0/24 maxlen: 24
139.190.50.0/24 maxlen: 24
139.190.51.0/24 maxlen: 24
139.190.52.0/24 maxlen: 24
139.190.53.0/24 maxlen: 24
139.190.54.0/24 maxlen: 24
139.190.55.0/24 maxlen: 24
139.190.56.0/22 maxlen: 22
139.190.56.0/24 maxlen: 24
139.190.57.0/24 maxlen: 24
139.190.58.0/24 maxlen: 24
139.190.59.0/24 maxlen: 24
139.190.60.0/24 maxlen: 24
139.190.61.0/24 maxlen: 24
139.190.62.0/24 maxlen: 24
139.190.63.0/24 maxlen: 24
139.190.68.0/22 maxlen: 24
139.190.80.0/21 maxlen: 24
139.190.88.0/21 maxlen: 21
139.190.124.0/24 maxlen: 24
139.190.125.0/24 maxlen: 24
139.190.126.0/24 maxlen: 24
139.190.127.0/24 maxlen: 24
139.190.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Dec 2024 11:10:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3216 (0xc90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Dec 23 07:49:19 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=676915ff-cdf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0a:c1:5a:ce:9d:c7:8b:e0:95:3b:8f:d2:5f:
ba:0e:e0:8a:e4:6f:12:e1:6d:39:a0:58:72:9f:a2:
45:e2:29:10:13:5c:cf:9f:ba:c6:58:a7:af:53:c5:
fe:d6:61:88:3d:cf:d6:f3:02:43:75:df:c6:82:f3:
cf:d0:4e:7c:ea:2f:b5:25:08:25:39:98:10:31:c0:
83:a5:8b:d8:9c:ea:9a:d5:b5:c0:bd:a2:bf:7a:c8:
3a:20:ef:68:7a:b6:a1:52:e6:ed:9e:59:5e:59:6b:
16:93:89:6d:04:38:2a:ed:cd:f5:ab:21:62:7d:17:
06:54:d0:1b:58:6f:94:9b:17:d8:ef:59:4d:9b:27:
c9:5c:cb:f8:89:f2:a1:03:e7:0a:82:30:74:ca:65:
aa:6c:60:76:1d:c0:ed:3d:b5:f1:7a:6b:67:c3:2b:
81:71:05:b8:ea:d4:bd:64:3f:50:df:74:90:12:1a:
63:a4:8f:ee:d9:3a:f8:6a:1e:43:d7:62:e1:e6:eb:
b3:96:25:28:cb:ca:4d:82:ae:81:f6:49:99:eb:a2:
93:db:f9:a7:c6:f4:cb:5b:38:3d:7f:22:99:dc:35:
e7:d0:26:89:60:2a:62:dd:31:2c:79:54:a0:0e:5e:
1b:35:d5:5a:b9:63:2b:ae:1a:77:7c:aa:ba:59:ab:
48:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:42:D0:98:0A:6E:14:B4:54:A9:FE:BE:05:66:D3:E0:4A:35:A6:3A
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/16E86AEABF7D11EF9A1F1863C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.0.0/21
139.190.32.0/19
139.190.68.0/22
139.190.80.0/20
139.190.124.0/22
139.190.239.0/24
Signature Algorithm: sha256WithRSAEncryption
64:99:43:f4:cf:9c:0d:86:5c:53:3e:46:67:2b:24:13:77:84:
52:97:9d:38:bc:48:b4:02:2a:63:d5:6c:0e:f9:5a:05:e7:30:
10:29:12:77:ec:93:53:5b:b1:ca:b4:97:4b:49:13:b7:4c:71:
ab:b4:c1:57:f3:b6:6d:ab:5d:47:cd:15:d2:f7:9f:0a:bc:29:
13:23:e9:9e:8e:c2:0d:0a:69:80:63:cf:3e:e7:ce:20:ee:d1:
85:59:10:88:45:3b:85:56:68:d5:34:19:71:17:a7:a4:d8:d2:
1b:71:bc:ba:5e:00:b3:36:0b:e5:d9:02:c7:16:c1:9a:08:a3:
1f:c2:f5:7d:1e:7e:5a:72:34:d6:6a:0b:7b:47:7a:f6:33:c0:
db:98:3f:04:1e:11:07:89:1a:aa:e5:85:53:da:1e:fc:35:d0:
82:a2:4c:c1:f1:11:c5:f2:cb:0a:07:39:4c:21:a8:65:35:9c:
ca:15:a3:73:5a:d5:cf:62:16:c8:fd:d8:b1:b4:90:49:31:f9:
7b:61:95:bc:17:05:1e:d8:b1:1c:3e:cb:d2:46:b1:67:c4:34:
d8:bc:4f:72:ed:3b:9e:46:09:de:05:e5:19:9f:30:7e:6f:54:
6e:f3:7c:ac:57:c3:bc:e2:51:e8:76:31:07:15:46:99:f0:a1:
ee:21:f8:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:43:28 2025 by rpki-client