Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/439CDA86CC8A11ED89D8FD24C4F9AE02.roa
File: 439CDA86CC8A11ED89D8FD24C4F9AE02.roa (raw, json)
Hash identifier: FEZa72TRz0fypTMiCCTxoYH7TVZS/RHTEgX3uCyPrRU=
Subject key identifier: B3:BD:BD:F6:01:21:9F:51:52:BC:F8:FD:91:61:B7:38:9A:05:43:15
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 0851
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/439CDA86CC8A11ED89D8FD24C4F9AE02.roa
Signing time: Mon 27 Mar 2023 10:29:34 +0000
ROA not before: Mon 27 Mar 2023 10:29:33 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 139.190.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2129 (0x851)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Mar 27 10:29:33 2023 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=6421700d-a11d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a7:a1:ea:f9:e2:97:43:27:e8:0f:fb:50:ed:
33:42:bf:d2:95:ee:f1:bb:84:98:21:e5:fe:52:2b:
2f:1f:9e:b4:58:03:77:f8:58:04:f4:3b:76:bc:bc:
2f:a4:90:10:1b:73:ae:ae:0b:65:89:30:ee:e1:c7:
0e:e6:af:8d:8a:30:94:45:40:99:d1:01:c6:ee:3d:
c7:07:45:cd:c2:55:84:e9:49:24:79:4d:ff:32:2d:
9d:7b:27:13:54:10:5e:1b:70:e7:42:bf:d9:1e:42:
b9:1a:6c:bf:26:c3:e9:1b:7c:7d:4f:4d:68:89:a7:
4c:d4:eb:e0:66:eb:ae:c8:d3:41:91:6b:5d:eb:d5:
f6:56:6b:2d:22:8e:b4:a2:45:40:cf:70:bb:74:c4:
94:97:e9:53:aa:c9:75:6d:5b:c3:46:d1:f9:5d:50:
ea:04:16:74:43:ad:3a:08:7e:3f:13:27:17:97:d7:
8a:23:22:84:90:83:d4:6a:a0:33:55:a6:ae:33:d0:
0e:c4:34:88:67:f5:e3:7a:1e:21:8d:8c:e0:f8:2f:
95:f3:f9:14:9c:d1:66:7c:f4:99:47:78:08:17:03:
b1:16:e6:91:88:02:ab:28:d6:81:2b:08:65:e6:ab:
cf:cc:a5:94:8f:05:ee:a6:b6:db:f4:67:92:09:4f:
2c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:BD:BD:F6:01:21:9F:51:52:BC:F8:FD:91:61:B7:38:9A:05:43:15
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/439CDA86CC8A11ED89D8FD24C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.234.0/24
Signature Algorithm: sha256WithRSAEncryption
76:23:0e:f6:49:2d:a3:6e:14:28:26:99:f2:b0:04:19:d4:fe:
b7:ac:24:b9:fc:f3:94:a4:df:54:44:68:72:7c:ed:d1:c0:fb:
90:0e:ea:8c:52:14:02:b5:91:9f:6a:8c:cf:84:5a:66:89:c7:
2e:4d:5e:d4:94:bb:35:09:3d:8e:23:ff:28:32:b4:6b:22:5e:
82:80:d8:07:00:a7:6b:05:ba:43:94:2d:e3:96:55:06:8e:76:
a8:9c:d0:47:53:b6:33:89:d8:b2:b5:a6:48:1f:7d:b6:de:1e:
07:f7:a7:0e:1e:12:0a:0d:68:dd:ad:72:bb:3c:91:bc:56:a2:
7e:8f:82:b0:35:97:16:e9:25:91:bd:22:7b:95:cf:70:85:c2:
8e:06:ee:27:56:34:34:3c:3d:76:0c:ce:21:26:cf:6f:0f:00:
c0:fe:a8:9f:d5:75:7f:b2:aa:90:5c:43:5f:36:16:58:09:79:
70:92:60:b5:6b:ed:81:12:2c:a6:19:2f:eb:ea:c7:c5:5c:10:
75:e9:14:7d:da:64:63:25:9f:15:e7:06:76:f9:3f:38:d1:87:
cd:08:21:40:cd:88:6c:a3:75:61:75:74:5a:b8:f1:ea:6e:7b:
7d:cb:3d:35:16:b5:97:c3:bf:70:1d:52:8a:ba:d3:cd:07:21:
de:38:5e:81
-----BEGIN CERTIFICATE-----
MIIFcTCCBFmgAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx
RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1
Rjg4Mjc2RDMwHhcNMjMwMzI3MTAyOTMzWhcNMjMwNzMwMDAwMDAwWjAYMRYwFAYD
VQQDEw02NDIxNzAwZC1hMTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
AQEAw6eh6vnil0Mn6A/7UO0zQr/Sle7xu4SYIeX+UisvH560WAN3+FgE9Dt2vLwv
pJAQG3OurgtliTDu4ccO5q+NijCURUCZ0QHG7j3HB0XNwlWE6UkkeU3/Mi2deycT
VBBeG3DnQr/ZHkK5Gmy/JsPpG3x9T01oiadM1OvgZuuuyNNBkWtd69X2VmstIo60
okVAz3C7dMSUl+lTqsl1bVvDRtH5XVDqBBZ0Q606CH4/EycXl9eKIyKEkIPUaqAz
VaauM9AOxDSIZ/Xjeh4hjYzg+C+V8/kUnNFmfPSZR3gIFwOxFuaRiAKrKNaBKwhl
5qvPzKWUjwXuprbb9GeSCU8sewIDAQABo4IClTCCApEwHQYDVR0OBBYEFLO9vfYB
IZ9RUrz4/ZFhtziaBUMVMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT
MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My
QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk
dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp
LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy
RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/
BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p
Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH
MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
RTYxMzQvNTdCM0UwQkNDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvNDM5Q0RBODZD
QzhBMTFFRDg5RDhGRDI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov
L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E
EDAOMAwEAgABMAYDBACLvuowDQYJKoZIhvcNAQELBQADggEBAHYjDvZJLaNuFCgm
mfKwBBnU/resJLn885Sk31REaHJ87dHA+5AO6oxSFAK1kZ9qjM+EWmaJxy5NXtSU
uzUJPY4j/ygytGsiXoKA2AcAp2sFukOULeOWVQaOdqic0EdTtjOJ2LK1pkgffbbe
Hgf3pw4eEgoNaN2tcrs8kbxWon6PgrA1lxbpJZG9InuVz3CFwo4G7idWNDQ8PXYM
ziEmz28PAMD+qJ/VdX+yqpBcQ182FlgJeXCSYLVr7YESLKYZL+vqx8VcEHXpFH3a
ZGMlnxXnBnb5PzjRh80IIUDNiGyjdWF1dFq48epue33LPTUWtZfDv3AdUoq6080H
Id44XoE=
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:34:15 2025 by rpki-client