Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/1CE288848CE011EE99837D7AC4F9AE02.roa
File: 1CE288848CE011EE99837D7AC4F9AE02.roa (raw, json)
Hash identifier: G3KFQwhifH3iBDc0PB5TyqyF0T7WoMb/oEzcncz26yI=
Subject key identifier: AB:20:5C:7C:4F:C5:31:29:44:BC:3D:A7:44:E4:A9:7F:FF:3D:E9:A1
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 0942
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/1CE288848CE011EE99837D7AC4F9AE02.roa
Signing time: Mon 27 Nov 2023 04:47:48 +0000
ROA not before: Mon 27 Nov 2023 04:47:48 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 138241
IP address blocks: 139.190.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2370 (0x942)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Nov 27 04:47:48 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65641f74-a16a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d8:2c:43:a2:ae:1e:96:cf:71:f1:0a:9c:9b:
97:22:97:3b:fa:fc:0b:f9:91:6d:50:e8:dc:13:41:
af:bb:11:9a:c2:08:f3:98:e8:fe:8f:cf:bc:83:ae:
d1:d1:e5:2a:8d:68:81:b2:d0:5f:b1:d0:f2:9e:7f:
82:a8:00:e9:c9:c8:2d:c7:f7:3e:62:63:ac:2a:d6:
8c:b8:ab:ba:82:a9:dd:ef:de:5a:27:a2:9b:9c:6f:
8e:ef:01:26:c4:4a:fd:8e:19:a9:9f:a9:67:64:be:
9e:8b:b7:1c:21:c6:63:ff:e2:6a:e9:23:39:06:3b:
5d:a9:1d:49:a7:7d:f3:37:41:f6:e8:07:b8:53:75:
37:a3:a0:ab:87:ae:a2:16:78:e9:bf:ca:7c:29:6a:
42:28:40:35:47:43:9d:f7:18:be:70:4c:84:f6:11:
74:e3:e3:be:85:0b:d4:5b:47:db:06:8a:4b:28:55:
1f:67:a3:c1:c1:aa:aa:93:96:26:a6:de:02:8f:66:
e2:88:25:af:67:a3:74:35:ac:c7:31:fd:5b:76:43:
ff:a5:47:e9:86:99:8a:f8:a2:a5:7b:fb:31:b4:cb:
99:f6:dd:94:08:9a:97:5f:08:87:11:b9:37:23:2b:
1a:fb:60:18:65:b5:29:2d:03:04:c7:67:72:de:47:
9e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:20:5C:7C:4F:C5:31:29:44:BC:3D:A7:44:E4:A9:7F:FF:3D:E9:A1
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/1CE288848CE011EE99837D7AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.32.0/22
Signature Algorithm: sha256WithRSAEncryption
cd:58:8d:01:ef:f7:97:7a:78:96:fb:fb:1c:5a:a4:cf:ff:1c:
79:36:4c:d8:56:6e:d6:85:b5:ed:83:03:3a:93:d3:34:f9:e3:
fe:9b:26:bf:2f:d1:07:c7:25:1e:07:26:c9:c2:42:04:13:43:
ea:87:c7:21:ca:33:66:75:04:ef:68:83:11:0c:18:e6:c6:16:
1d:3b:7b:da:0e:48:d3:b4:a8:cb:33:61:3b:87:9a:33:61:b2:
c3:95:41:ff:5e:02:c7:1b:be:d8:c6:a4:ce:63:3e:b4:f9:1c:
0b:7f:76:a3:c9:90:ab:75:b0:8c:ee:a2:3b:08:a9:d0:22:69:
0f:81:f1:42:00:8f:45:21:0c:00:9a:ec:da:77:fb:8e:c6:be:
ae:80:fa:3c:b6:21:76:c8:c7:4d:d0:27:cc:c6:a4:ad:c1:64:
ff:32:f4:c9:d6:86:ca:f4:36:40:e7:30:28:b0:c2:07:a4:e0:
42:e8:fb:94:c0:6c:c4:46:73:92:1d:02:03:28:56:d9:13:5a:
65:b0:77:6a:5c:c2:be:a3:86:90:78:dc:09:f4:7a:ff:5b:d0:
bc:f4:35:d0:99:96:ec:bb:76:6d:ed:f6:df:db:22:28:99:75:
21:69:30:45:2b:d2:2d:97:f1:bf:b6:45:84:6f:40:85:9e:5f:
40:5b:df:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:36:12 2025 by rpki-client