Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/6B805AB690BF11ED9A87EF53C4F9AE02.roa
File: 6B805AB690BF11ED9A87EF53C4F9AE02.roa (raw, json)
Hash identifier: 7/32pDskIQTUbqZ4Ne4SToCsXWK6mChXXrJ1PhQZlCU=
Subject key identifier: F8:42:62:DE:B6:D5:51:51:01:CB:BB:F4:CC:A8:BD:D4:7C:20:51:AC
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 081B
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/6B805AB690BF11ED9A87EF53C4F9AE02.roa
Signing time: Tue 10 Jan 2023 08:18:54 +0000
ROA not before: Tue 10 Jan 2023 08:18:54 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 139.190.124.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2075 (0x81b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Jan 10 08:18:54 2023 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=63bd1f6d-0bd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:24:de:44:44:64:f2:6e:c7:41:09:77:8f:eb:
5b:55:72:ff:cb:4a:71:dc:7c:26:b0:63:c5:88:09:
d6:5b:b1:80:15:32:9c:1b:b6:51:71:d6:ab:a2:5e:
d7:61:ac:e2:a2:57:41:9d:e4:00:de:73:89:ee:a9:
11:78:18:86:09:1c:63:83:cd:f8:2d:b1:73:ab:e1:
c8:5f:91:b1:fb:39:d8:ab:55:00:30:75:6b:81:98:
51:51:31:e6:1f:5e:4a:d6:73:91:8d:fc:8c:c8:3d:
ef:2d:03:68:09:97:8b:ee:0c:39:b4:06:a5:cc:5d:
a5:08:dd:25:b5:78:05:eb:1d:52:ee:27:a2:4d:79:
80:80:0a:42:de:a5:4b:bb:ff:d7:96:bf:60:44:34:
f5:65:bd:2e:f6:bc:e2:4a:11:7b:1d:77:e9:fc:a2:
83:b9:7d:65:92:13:62:9b:30:a6:d4:36:14:cc:12:
9d:fb:8a:b6:5a:32:4c:f4:36:f4:cf:7c:a6:dc:72:
9f:dc:ea:1e:ad:79:73:0b:7c:c8:e8:d0:fa:72:3e:
52:00:1e:df:36:23:86:a9:5f:cb:9a:b4:af:8c:b4:
9e:a2:b6:76:7d:94:cf:eb:a6:a1:d8:0f:e1:e2:62:
96:fe:2f:fd:d2:a6:7b:38:bb:4d:0d:99:54:67:13:
b6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:42:62:DE:B6:D5:51:51:01:CB:BB:F4:CC:A8:BD:D4:7C:20:51:AC
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/6B805AB690BF11ED9A87EF53C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.124.0/22
Signature Algorithm: sha256WithRSAEncryption
44:f1:06:ea:e2:c9:f0:df:8b:3f:24:67:2b:4c:74:1d:dd:d8:
73:fe:ee:a8:a3:bc:af:9f:27:2e:e1:56:a0:90:bb:e5:e5:40:
5f:b4:47:9c:b5:bc:94:4a:d8:b5:ea:e2:bf:27:5c:b3:28:cc:
fc:a0:4a:ab:9a:f1:4a:77:48:50:88:1c:c8:ef:66:6e:29:ac:
61:01:53:a3:bb:47:52:1e:01:42:85:87:8b:6c:d8:b8:86:56:
e7:0d:ee:1f:8a:97:39:12:86:e0:ab:5f:d0:a9:cd:b8:89:e7:
be:fd:4f:32:b3:ed:67:dc:a9:1c:c4:ef:a9:6c:63:66:41:ad:
9a:9f:9a:84:84:41:98:07:03:9b:7e:00:3e:57:9d:fb:ed:a4:
9a:96:1b:74:af:36:9d:e8:f2:bd:71:54:a8:7d:76:0b:e2:e4:
f9:3a:e2:5b:0a:09:96:9b:24:c3:95:d3:c2:62:ff:3e:74:23:
32:88:c9:f4:dc:b5:63:ce:86:a8:1f:cc:c7:75:81:92:99:e1:
4f:7b:1e:d4:53:08:ba:6f:22:8d:70:ab:74:8b:a6:d3:66:f3:
21:83:c4:b1:bf:7b:fa:6d:9b:cb:7a:c4:d3:a1:a6:90:4a:ba:
3d:f8:55:19:d7:4f:dd:22:e3:eb:3a:75:4c:bc:02:a5:25:63:
08:47:92:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:38:18 2025 by rpki-client