Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/1D64A2F092F611ECB6F3BC52C4F9AE02.roa
File: 1D64A2F092F611ECB6F3BC52C4F9AE02.roa (raw, json)
Hash identifier: GtoVvNY9fmJ2BDshPX4rOO+yY5uJt9Vh20VQtmoxVAw=
Subject key identifier: F6:9F:59:8B:2B:39:FB:5D:9A:6A:DE:62:19:D9:F6:63:80:E6:3B:03
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 05A6
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/1D64A2F092F611ECB6F3BC52C4F9AE02.roa
Signing time: Wed 23 Feb 2022 10:10:51 +0000
ROA not before: Wed 23 Feb 2022 10:10:51 +0000
ROA not after: Sat 30 Jul 2022 00:00:00 +0000
asID: 211936
IP address blocks: 139.190.0.0/19 maxlen: 24
139.190.224.0/21 maxlen: 24
139.190.232.0/24 maxlen: 24
139.190.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1446 (0x5a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Feb 23 10:10:51 2022 GMT
Not After : Jul 30 00:00:00 2022 GMT
Subject: CN=6216082b-500b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:28:09:f0:77:c4:85:67:34:0b:d7:cf:dc:81:
99:f9:b9:03:85:9c:dc:38:d8:ac:d8:6a:d2:8e:a9:
c5:52:90:7a:55:5b:7d:91:75:15:4a:54:41:50:28:
b6:78:50:b2:8b:77:ff:85:9f:58:1f:f3:7b:fb:9b:
fa:81:4e:26:c8:79:81:96:19:ec:d3:85:5a:16:03:
20:14:e7:e4:32:5a:06:6d:e0:30:81:8c:22:c5:8b:
e7:53:41:30:8e:af:09:a9:84:05:a6:bc:54:d0:74:
c2:9b:c5:b9:d7:4d:69:af:8f:d9:a0:89:00:a6:0c:
72:d5:10:01:67:4d:72:be:8e:7e:70:60:13:9a:0c:
e8:ac:8f:db:99:a2:46:24:6d:2d:13:69:6e:62:9e:
5a:8b:1a:af:1c:0d:02:19:9d:ef:ee:b2:79:c6:8e:
a6:7a:2e:fc:ee:f3:9b:ae:b7:72:19:c6:2e:c9:fa:
29:8d:82:5d:3f:f0:64:8d:50:e7:5d:82:1a:fa:be:
3c:7d:9a:93:2e:60:a6:61:e4:e0:1f:a3:a4:e3:9a:
a9:d8:eb:c0:0f:94:a9:38:57:dd:72:6b:3c:dd:7e:
2a:d5:76:45:cc:f9:63:02:36:27:95:01:01:e8:5b:
2d:10:40:56:b5:15:fe:06:8b:e2:59:f2:55:32:7f:
13:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:9F:59:8B:2B:39:FB:5D:9A:6A:DE:62:19:D9:F6:63:80:E6:3B:03
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/1D64A2F092F611ECB6F3BC52C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.0.0/19
139.190.224.0-139.190.233.255
Signature Algorithm: sha256WithRSAEncryption
62:bc:82:57:eb:92:74:95:72:6c:25:d3:4c:98:e8:ae:c4:44:
9a:8a:a8:8d:58:2e:b0:ec:8f:14:61:aa:2a:77:92:f6:e8:ff:
0f:43:ab:f0:17:35:04:6a:8a:de:78:66:cd:f7:0d:1b:29:e5:
c4:03:6f:8f:8a:9f:1c:2c:7c:0c:4f:e9:69:bf:e5:39:7b:ad:
a9:7a:8f:8a:84:ed:19:37:01:4a:63:b2:5b:5d:9c:9b:84:90:
1a:af:00:19:b1:6a:78:c6:9e:e8:0d:ff:1c:fa:f3:7f:ca:cb:
d2:21:38:99:eb:cd:1d:b4:c7:e4:a6:5b:a3:b8:c6:78:29:70:
4a:8b:56:18:25:0a:9a:2a:a0:a0:b4:7e:6f:cc:b5:67:6c:b5:
1c:19:23:b5:fa:7d:8c:4c:6b:25:29:6e:b3:e1:51:11:26:be:
2e:aa:7d:a9:0e:d1:45:5a:93:4b:31:3b:ab:2f:c0:83:e5:5a:
49:d9:80:24:cd:3b:e2:7d:ac:f3:83:7b:33:e4:c3:1e:e9:2f:
a6:d5:aa:b1:a8:e1:ba:49:01:d0:28:3c:bd:8b:46:40:5c:3d:
31:f9:96:00:2f:41:95:ba:eb:a4:f5:8e:fd:65:77:eb:a9:d1:
ad:69:ab:af:bb:29:25:9a:5e:6a:c2:36:24:f0:32:87:5e:ec:
83:70:93:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:42:52 2025 by rpki-client