Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/1895B090746811EC825C5260C4F9AE02.roa
File: 1895B090746811EC825C5260C4F9AE02.roa (raw, json)
Hash identifier: 2Y0O8zLfOmohTMMZdxuYTzXpzLV5DEV2iyH3TBx9OqU=
Subject key identifier: 90:46:3E:7B:70:48:A8:E8:90:51:8E:43:74:A7:83:A0:A0:DD:3F:D6
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 053B
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/1895B090746811EC825C5260C4F9AE02.roa
Signing time: Thu 13 Jan 2022 11:58:18 +0000
ROA not before: Thu 13 Jan 2022 11:58:18 +0000
ROA not after: Sat 30 Jul 2022 00:00:00 +0000
asID: 211252
IP address blocks: 139.190.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1339 (0x53b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Jan 13 11:58:18 2022 GMT
Not After : Jul 30 00:00:00 2022 GMT
Subject: CN=61e013da-9c06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:0b:39:3a:26:10:e4:cb:9a:a2:6b:76:31:3f:
bc:c9:13:64:0a:63:e1:f2:8c:08:5b:6d:7a:d6:65:
38:d6:47:a0:e9:46:65:05:59:93:2b:54:b7:e5:f5:
4e:02:71:0f:7f:9e:47:b9:5d:a1:68:77:42:94:da:
11:39:81:d3:75:31:ee:aa:92:69:8d:68:49:38:2d:
c0:99:59:23:2b:60:b6:3c:0a:7f:ca:e8:77:20:a1:
c5:2a:dd:82:20:35:e0:61:3c:e4:8b:cb:3f:5d:68:
87:96:e9:b1:e8:e0:42:e4:92:3c:56:20:c7:aa:2e:
df:ae:30:11:74:af:fe:45:75:3a:d2:07:66:07:b8:
fa:9c:41:d9:bb:de:57:35:fa:43:20:be:12:63:4a:
52:21:b5:dc:f0:5f:75:24:96:b9:b6:86:61:32:cd:
72:33:f2:99:dd:73:99:da:c8:5e:d4:aa:9f:a9:56:
f7:8e:da:e0:2a:d7:2a:df:44:52:99:3c:93:81:3f:
f6:05:63:da:4e:c0:f7:e8:0c:51:96:d6:97:e0:f9:
7f:19:05:7c:22:36:bd:a0:0b:6c:a0:6a:22:98:04:
9e:b9:68:d9:b6:eb:2f:d3:01:88:de:db:ce:5d:76:
44:dc:e2:05:68:0b:c6:e1:ff:cd:f7:a3:b6:a3:ed:
87:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:46:3E:7B:70:48:A8:E8:90:51:8E:43:74:A7:83:A0:A0:DD:3F:D6
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/1895B090746811EC825C5260C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.233.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:a3:ea:7f:40:b1:e1:55:c3:fb:3b:e4:61:c0:e6:7c:46:20:
32:5f:9d:a4:16:40:ae:a2:1b:c4:70:1c:a3:8e:73:9c:42:eb:
e4:85:0d:45:17:6e:02:1c:a3:70:e8:ae:7c:e5:2b:dd:49:8d:
11:a3:14:19:2a:0e:29:a8:36:f1:e4:d6:ca:ff:2e:6d:b8:77:
b4:cf:30:5c:40:8e:a8:89:89:3b:6f:23:1c:e3:ec:ce:28:86:
64:f8:41:e3:b3:0e:4c:9e:1c:32:b3:cd:5f:21:ec:d2:3a:28:
ad:1f:fa:68:ff:50:ef:ef:f7:2f:05:ed:05:5a:ef:91:ea:05:
7c:40:35:ff:ae:48:92:50:5a:c0:1e:74:d2:0f:3d:db:a8:00:
f2:db:1b:7f:46:d9:20:c0:c4:37:87:9c:b3:16:c1:ef:8c:35:
d3:78:4b:3f:70:41:58:e5:11:3f:01:c4:06:a3:c1:d2:a3:21:
c0:cd:1f:1c:fc:4a:f9:1b:c3:3e:8c:a5:8d:9c:ea:98:35:f0:
46:cc:73:f4:13:0d:08:56:d3:e0:8b:40:a0:7b:65:0d:8d:93:
54:f8:d8:a4:83:77:72:af:6d:c9:e4:e3:2d:e7:bc:07:5a:81:
92:89:73:d2:e8:a7:df:e7:b7:93:95:44:6e:14:ee:04:40:f5:
3c:f9:8d:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:40:20 2025 by rpki-client