Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/50AF9F1E9D9611EE9CA1F335C4F9AE02.roa
File: 50AF9F1E9D9611EE9CA1F335C4F9AE02.roa (raw, json)
Hash identifier: BW1/PHuQMxNJdRcrQgGl0kuhnYXTIrJipJ9AChm8yR0=
Subject key identifier: C7:6B:0B:82:B6:E8:2B:9E:A3:8E:E6:89:1D:89:6B:32:66:D4:14:81
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 0AAD
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/50AF9F1E9D9611EE9CA1F335C4F9AE02.roa
Signing time: Fri 24 May 2024 22:32:15 +0000
ROA not before: Fri 24 May 2024 22:32:15 +0000
ROA not after: Wed 30 Jul 2025 00:00:00 +0000
asID: 7922
IP address blocks: 139.190.32.0/22 maxlen: 24
139.190.116.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 03 Jul 2024 05:45:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2733 (0xaad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: May 24 22:32:15 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=6651156f-7585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:32:7c:3d:16:bd:ab:50:97:f8:9c:d7:f0:20:
74:45:89:de:e7:c2:c1:3f:2a:89:b2:76:64:cc:f2:
5a:c7:8c:50:ac:8a:f7:9f:13:47:88:a6:cb:55:c0:
bb:31:41:1d:3a:32:23:0e:de:ca:96:fc:bf:c3:0f:
52:7c:2d:25:75:23:d8:23:bc:91:2c:98:52:33:bf:
a5:04:87:46:b9:8d:62:e5:01:48:a7:35:f1:3a:60:
6e:5f:d4:85:79:2c:2c:76:48:e0:0f:de:9c:87:f5:
11:72:1b:f2:4b:b1:f6:eb:1b:6a:ad:d8:a0:4d:63:
7b:1e:20:ca:44:71:6a:1a:a4:a0:58:9b:86:5d:63:
6e:11:6d:42:1a:79:50:83:07:8b:1a:12:60:3e:00:
74:a0:59:46:66:6d:4f:be:ae:65:01:64:70:49:45:
c8:76:55:38:47:69:29:0d:0d:95:00:47:ce:6d:a0:
85:73:4e:00:11:6c:41:8f:9c:45:6c:cc:ab:d8:9e:
39:11:a5:e4:39:12:89:6f:2c:c3:f9:e5:1d:e8:06:
86:4a:7f:a8:1c:78:fa:82:5c:34:57:7e:9b:40:3f:
86:99:32:94:b8:e4:20:55:7f:89:5b:96:6e:06:51:
c8:5a:bc:d8:a4:5c:85:96:84:cb:cb:6e:10:4c:15:
3c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:6B:0B:82:B6:E8:2B:9E:A3:8E:E6:89:1D:89:6B:32:66:D4:14:81
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/50AF9F1E9D9611EE9CA1F335C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.32.0/22
139.190.116.0/22
Signature Algorithm: sha256WithRSAEncryption
65:9c:ab:ce:e7:2f:f5:9e:ce:4e:7c:95:30:54:71:e5:e7:10:
ae:e5:c8:a7:97:41:a2:0e:1b:71:98:f2:ba:37:81:5b:3a:77:
ef:04:9a:4e:ad:3c:84:87:ae:86:d0:a5:a7:89:09:3c:1c:41:
0e:3b:32:84:a0:a0:f9:00:c1:6a:9a:c3:be:64:18:be:86:52:
10:7f:86:ae:6e:ef:23:fd:fe:e5:25:01:44:3c:3f:fd:19:39:
9f:c5:0a:3f:26:86:bb:23:1f:e5:0e:99:9b:d8:a4:b1:da:e5:
48:71:c1:cc:ae:17:b8:87:83:47:e3:2d:2f:a2:16:70:9a:08:
83:48:1e:de:3d:ca:73:df:e7:b6:98:ae:ff:91:c5:78:cf:df:
d6:69:c9:5d:35:b8:0e:3e:d5:4a:4d:8f:f7:13:10:83:f6:b8:
f0:8e:bc:ba:68:d8:8b:e6:6a:2a:48:38:55:ef:ff:12:64:35:
34:98:b4:9b:d7:56:c3:71:73:8d:55:2a:52:53:07:d4:01:60:
c6:5f:d3:56:35:85:96:fa:89:b6:ee:84:36:51:0c:7a:81:d5:
0b:a0:34:4d:13:ec:71:2f:e2:bf:7b:a7:92:77:b0:29:30:3d:
55:1d:de:23:32:04:9b:b9:e9:19:68:b3:dd:61:09:b6:d4:bd:
12:e4:cb:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:38:10 2025 by rpki-client