Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/6B040518487811EDA48B7E5FC4F9AE02.roa
File: 6B040518487811EDA48B7E5FC4F9AE02.roa (raw, json)
Hash identifier: WuvBTMncDWwIxGAScFsMrwY/uXBq3JUQJUCsrQ6kTUE=
Subject key identifier: 33:4A:A6:2D:0F:29:95:BA:D7:10:B8:51:CD:A4:88:0E:01:27:77:EE
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 07B7
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/6B040518487811EDA48B7E5FC4F9AE02.roa
Signing time: Mon 10 Oct 2022 08:49:15 +0000
ROA not before: Mon 10 Oct 2022 08:49:15 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 38547
IP address blocks: 139.190.108.0/22 maxlen: 24
139.190.116.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1975 (0x7b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Oct 10 08:49:15 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=6343dc8b-e670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4e:62:5b:49:fb:8a:0b:0a:fa:0f:89:72:de:
9f:0b:bc:b9:0a:6e:14:bb:39:51:1f:94:0f:d5:51:
dd:47:63:15:c6:cb:b8:72:6a:10:0e:36:1e:53:f5:
77:70:c2:43:06:9e:61:77:5d:1a:fe:c7:50:5c:f1:
a9:b1:ce:c2:ad:b4:fc:33:bf:6c:26:ea:5f:19:dd:
5e:55:e8:87:c0:6f:18:84:10:13:02:00:ab:7d:58:
f2:a7:53:2e:61:ad:d0:f5:ed:0a:03:2e:99:51:2f:
cc:d6:2a:5e:25:0e:dc:03:94:6a:38:cc:67:1c:bf:
6b:4f:f4:e3:73:6c:9e:e8:c1:6e:05:e9:96:8c:a5:
fe:f5:25:f6:3a:b6:81:08:f1:63:87:51:7e:9c:2c:
47:ff:f5:0f:99:0e:02:fe:ce:82:6c:11:94:6d:9e:
e7:b0:83:99:8b:99:41:f7:d5:6a:bd:f5:4b:50:10:
e3:dc:ae:72:40:45:e5:ee:8a:10:6b:6b:9f:d5:e8:
cc:62:66:fb:22:49:a6:92:6d:19:4c:98:2e:86:09:
e2:64:ac:39:99:b2:6a:18:de:93:b0:d5:4c:4c:36:
ea:57:82:c7:e6:80:46:1b:d4:d7:4b:ba:f3:f4:65:
67:96:1d:79:ab:7a:18:61:f3:84:69:da:4e:72:41:
e0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:4A:A6:2D:0F:29:95:BA:D7:10:B8:51:CD:A4:88:0E:01:27:77:EE
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/6B040518487811EDA48B7E5FC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.108.0/22
139.190.116.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:60:4f:85:f9:07:72:81:b5:de:e5:7f:58:76:d4:d1:33:c9:
f4:e8:c2:f6:4f:52:15:49:bc:a4:d7:77:e8:1b:83:68:89:e6:
a4:3f:c1:04:c4:12:44:c9:24:5a:e3:37:15:6a:17:b7:dc:38:
3e:f6:4f:5e:74:e0:9e:ad:2a:1c:72:99:48:4a:66:ee:ed:f4:
b0:f5:45:c3:db:8c:73:fe:5b:7a:ae:f1:09:80:2a:f0:56:13:
06:98:5f:4c:1e:09:8e:07:b4:dd:e5:e1:29:8b:a0:a7:28:76:
79:89:f0:9c:3c:12:3a:3d:18:50:25:7f:85:96:07:a8:7f:9b:
f0:60:58:b2:fe:a9:5b:f5:fa:9c:06:7a:c3:8b:c8:2e:a0:df:
c1:aa:59:ae:b6:b7:0b:c2:38:1f:0a:9d:31:c5:37:7c:63:7c:
90:01:13:33:b7:52:78:31:9d:25:55:ec:95:bf:e7:cf:40:94:
9a:c8:a7:da:b1:f3:aa:af:03:e4:6d:28:81:a6:e3:b9:6e:85:
84:ca:e0:3d:75:73:59:41:2a:db:52:4f:ce:76:ae:d7:cd:f2:
85:13:c3:95:b6:a8:5c:d2:b3:ea:34:20:a6:c5:d3:77:87:3e:
c4:d8:3d:98:24:19:5f:cd:0d:88:69:c8:97:06:62:74:29:b4:
4f:60:43:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:40:19 2025 by rpki-client