Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/1D078D881C1611ECB6BF256CC4F9AE02.roa
File: 1D078D881C1611ECB6BF256CC4F9AE02.roa (raw, json)
Hash identifier: MMj4fZgPjUB84xzdC/Z5wNtrMEUsuFgYXi2wYTEQXJ0=
Subject key identifier: 60:D0:63:FB:2B:3A:30:6C:38:32:10:84:2D:A7:49:1B:8A:C6:3E:85
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 0685
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/1D078D881C1611ECB6BF256CC4F9AE02.roa
Signing time: Wed 01 Jun 2022 11:27:00 +0000
ROA not before: Wed 01 Jun 2022 11:27:00 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 13768
IP address blocks: 139.190.104.0/22 maxlen: 24
139.190.108.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1669 (0x685)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Jun 1 11:27:00 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=62974d03-dcf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:35:d0:93:82:55:70:da:70:be:d4:98:41:67:
92:9f:5f:25:9c:f3:bd:ce:10:cc:ff:81:33:74:c0:
c1:fa:d5:fc:9e:e7:fe:5a:6a:54:a6:1f:4b:97:58:
c8:23:af:41:7f:b0:9b:86:a5:dd:f1:38:a4:d0:f6:
9f:d7:bc:a0:44:7c:8c:f0:c6:1b:db:33:03:d6:88:
5f:89:3d:70:c9:db:85:f0:bc:74:3b:49:f7:39:80:
9d:f9:e2:50:99:d2:3c:8a:17:d6:68:a2:ca:46:cd:
9e:6e:c4:86:54:d6:47:2a:e3:40:ae:fd:52:69:f5:
4c:ba:41:be:13:03:9f:bc:c7:fc:7c:dc:1b:0d:50:
db:30:65:81:c4:96:38:6a:3a:1a:81:24:cb:40:60:
40:a2:63:d8:78:09:a2:c1:41:46:72:76:74:d8:29:
aa:b7:62:09:84:3f:47:11:3c:ab:f3:ee:f9:89:b8:
38:c0:75:7a:a9:36:50:5c:13:e1:b3:ee:64:22:98:
89:34:90:48:2d:00:e7:74:da:51:79:df:fc:19:a8:
f7:6a:a6:45:99:de:9b:6d:e6:db:57:38:85:7d:a3:
b5:b3:d7:63:fb:43:2c:9a:66:37:3f:56:93:9e:1d:
50:e4:1b:e5:5e:86:34:96:52:dd:a9:24:5c:f3:85:
52:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D0:63:FB:2B:3A:30:6C:38:32:10:84:2D:A7:49:1B:8A:C6:3E:85
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/1D078D881C1611ECB6BF256CC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.104.0/21
Signature Algorithm: sha256WithRSAEncryption
a1:bf:f6:25:e8:1d:fe:46:66:7d:64:93:44:15:b7:bd:03:85:
ff:92:13:13:fb:94:97:73:66:11:7e:d9:b7:68:96:c9:9a:d9:
ad:3c:79:1e:e7:31:7d:3e:67:20:72:23:5b:cf:39:bf:6d:f3:
da:af:b6:b1:73:d2:39:a5:3a:44:c0:61:4d:58:22:b6:1e:10:
9c:e4:9a:33:8a:b5:19:fe:19:41:56:8d:0e:95:a1:f4:aa:a5:
7f:99:c7:ca:87:c8:01:8d:01:1f:aa:7f:f7:92:f1:dd:dc:a7:
6c:2e:5a:86:ce:0e:f1:e2:0c:59:22:56:c4:c3:9f:a3:b5:b8:
8d:fe:c8:3e:be:ad:f0:ff:77:a8:c5:d3:bf:7b:75:f4:e9:47:
3a:58:e1:c4:bc:da:47:ba:ea:b0:7f:2f:73:29:8b:50:3e:d4:
38:1d:6e:2b:d6:ef:8d:90:f0:b8:ad:c8:b1:5d:44:34:01:de:
ef:62:24:ea:83:34:79:48:f6:6a:22:00:d9:ad:50:8f:7e:3e:
b6:99:d9:69:65:36:84:fd:d2:ca:08:a7:2a:8e:1b:ba:28:56:
75:76:db:7c:ce:12:3a:d8:3a:24:c0:7b:ce:8a:e4:37:3b:4c:
f3:f2:55:e1:f5:b9:a6:fa:09:cd:8d:bb:1c:6e:e4:bc:ae:0d:
d6:e9:c3:90
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1
Rjg4Mjc2RDMwHhcNMjIwNjAxMTEyNzAwWhcNMjMwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02Mjk3NGQwMy1kY2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAwDXQk4JVcNpwvtSYQWeSn18lnPO9zhDM/4EzdMDB+tX8nuf+WmpUph9Ll1jI
I69Bf7CbhqXd8Tik0Paf17ygRHyM8MYb2zMD1ohfiT1wyduF8Lx0O0n3OYCd+eJQ
mdI8ihfWaKLKRs2ebsSGVNZHKuNArv1SafVMukG+EwOfvMf8fNwbDVDbMGWBxJY4
ajoagSTLQGBAomPYeAmiwUFGcnZ02Cmqt2IJhD9HETyr8+75ibg4wHV6qTZQXBPh
s+5kIpiJNJBILQDndNpRed/8Gaj3aqZFmd6bbebbVziFfaO1s9dj+0MsmmY3P1aT
nh1Q5BvlXoY0llLdqSRc84VSEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGDQY/sr
OjBsODIQhC2nSRuKxj6FMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk
dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNTdCM0UwQkNDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvMUQwNzhEODgx
QzE2MTFFQ0I2QkYyNTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBAOLvmgwDQYJKoZIhvcNAQELBQADggEBAKG/9iXoHf5GZn1k
k0QVt70Dhf+SExP7lJdzZhF+2bdolsma2a08eR7nMX0+ZyByI1vPOb9t89qvtrFz
0jmlOkTAYU1YIrYeEJzkmjOKtRn+GUFWjQ6VofSqpX+Zx8qHyAGNAR+qf/eS8d3c
p2wuWobODvHiDFkiVsTDn6O1uI3+yD6+rfD/d6jF0797dfTpRzpY4cS82ke66rB/
L3Mpi1A+1DgdbivW742Q8LityLFdRDQB3u9iJOqDNHlI9moiANmtUI9+PraZ2Wll
NoT90soIpyqOG7ooVnV223zOEjrYOiTAe86K5Dc7TPPyVeH1uab6Cc2Nuxxu5Lyu
Ddbpw5A=
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:42:52 2025 by rpki-client