Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/4E6B7F904A0211ED9F5C287DC4F9AE02.roa
File: 4E6B7F904A0211ED9F5C287DC4F9AE02.roa (raw, json)
Hash identifier: F8y1zM6SMO5LdYUN92j4MGqjtHjyYFZdfnOvDnxZIeo=
Subject key identifier: AC:B1:5E:FA:D2:70:38:CE:78:D3:89:9E:4B:10:2E:BC:26:70:26:46
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 07BC
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/4E6B7F904A0211ED9F5C287DC4F9AE02.roa
Signing time: Wed 12 Oct 2022 07:48:49 +0000
ROA not before: Wed 12 Oct 2022 07:48:49 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 38547
IP address blocks: 139.190.116.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1980 (0x7bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Oct 12 07:48:49 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=63467160-6835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:42:03:77:1c:bb:d0:e1:ad:e5:81:33:7c:a2:
e0:bd:45:24:22:46:cc:43:b7:0d:69:fd:17:cd:40:
12:c6:5d:15:26:6a:f4:d3:3c:02:27:e2:90:54:84:
9e:72:5d:98:7c:30:97:4d:02:39:81:bf:a8:b2:ed:
55:c7:ce:01:1a:26:5e:e6:ca:b4:77:4f:71:0c:f7:
70:72:52:d7:68:c6:bd:50:14:4b:68:b4:03:74:44:
68:36:02:dd:7c:67:62:c4:43:93:72:ae:7b:10:c9:
6a:a4:45:a9:5f:18:d5:5a:c6:7e:fa:fc:e0:f2:99:
c3:f4:b8:3c:e9:1a:f5:cb:e6:0e:8f:2e:c5:2e:70:
9c:4c:74:5c:89:fd:a3:42:9a:60:4f:14:2a:15:0b:
d2:6c:7e:0a:aa:e2:8a:b8:af:4a:b6:fb:fc:ff:65:
fb:6b:11:71:17:02:05:51:e6:06:da:94:43:63:71:
f6:48:e8:f2:7c:d1:ae:ec:db:3b:b0:d2:c3:b1:c2:
ce:46:3d:49:be:34:58:ef:0c:4a:9a:d5:7a:24:50:
62:b3:4d:c5:7e:08:7f:d4:d1:af:cc:02:5d:30:14:
b6:49:3b:0a:20:aa:4f:ea:26:ca:d7:7a:b7:24:1d:
c6:42:3a:64:e6:c0:e3:26:ef:4c:31:1d:b2:86:e6:
10:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:B1:5E:FA:D2:70:38:CE:78:D3:89:9E:4B:10:2E:BC:26:70:26:46
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/4E6B7F904A0211ED9F5C287DC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.116.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:36:99:46:77:04:89:f3:2f:a9:97:d8:32:76:32:1b:64:63:
64:3a:c8:9f:ff:9f:fc:88:cc:a2:a1:61:a9:b6:bc:9f:97:9f:
d4:8e:64:bf:20:f7:66:46:fe:ca:a0:c5:d0:6b:b5:50:b3:b0:
dd:31:75:5c:6f:a9:c4:7d:ff:b9:ba:21:d2:59:8e:8e:39:da:
b0:9e:c7:96:6b:c5:aa:d4:1e:5c:c1:70:1b:06:7d:d0:97:c0:
fb:8f:00:7c:1f:3e:f5:c9:50:e7:e7:f9:22:6c:31:52:4d:ad:
3b:c8:9c:ce:68:42:d0:f1:6f:07:c5:4b:26:29:16:07:e8:ad:
44:d8:8c:d9:0e:ee:e4:2b:5f:87:90:56:a4:32:9b:ba:e5:af:
f0:2c:e9:3a:bf:ba:d6:12:5d:ac:0d:af:e2:a4:07:da:9b:45:
16:c2:cd:e6:9e:66:f1:30:86:0d:fe:4a:d7:b8:28:c7:7b:e0:
76:94:d5:10:35:68:4b:cd:c5:27:84:f3:1f:99:eb:ae:c5:76:
f3:80:2c:54:06:08:5c:95:b0:49:0a:58:af:22:e6:b5:34:43:
90:22:8a:94:8c:22:dd:77:47:5d:e6:31:a1:59:2f:33:d2:18:
1e:6d:e9:d6:29:ed:a6:c1:09:f4:46:6b:47:a2:7e:13:ef:4c:
e9:6f:f8:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:40:19 2025 by rpki-client