Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/74BEEFE21EE711ED86F2F57BC4F9AE02.roa
File: 74BEEFE21EE711ED86F2F57BC4F9AE02.roa (raw, json)
Hash identifier: 7z/bzI82MVBmipBWfzJKYLd1YQYgI6I45tluOaDQSpo=
Subject key identifier: EC:21:5F:85:26:77:F2:18:80:EF:FC:9B:0A:ED:73:9C:8F:EE:1B:34
Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3
Certificate serial: 074A
Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/74BEEFE21EE711ED86F2F57BC4F9AE02.roa
Signing time: Thu 18 Aug 2022 11:18:16 +0000
ROA not before: Thu 18 Aug 2022 11:18:16 +0000
ROA not after: Sun 30 Jul 2023 00:00:00 +0000
asID: 38547
IP address blocks: 139.190.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1866 (0x74a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134
Validity
Not Before: Aug 18 11:18:16 2022 GMT
Not After : Jul 30 00:00:00 2023 GMT
Subject: CN=62fe1ff8-b908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5d:64:9f:3a:2b:a4:d7:ae:2f:c1:3d:b0:f6:
cc:c7:82:7d:fc:b3:b1:18:dd:45:63:a1:fc:f3:cd:
12:b2:6d:10:46:56:43:ce:e7:06:93:1a:b6:86:e0:
14:45:8d:94:b9:52:6c:e5:01:16:c2:fb:f7:90:81:
ca:4d:f3:90:72:ec:8b:83:6f:ec:32:af:94:f4:f5:
99:e0:ea:82:80:95:1a:a6:b2:a3:17:08:30:c6:aa:
38:4d:f9:d5:e7:2c:0b:9a:5b:85:d9:81:ea:d7:d7:
e6:b3:3b:82:ec:50:2f:50:24:ad:a3:d3:36:e1:6c:
71:ce:52:a6:6e:e7:ad:32:cb:c9:48:2f:e4:c8:64:
d1:6c:05:b6:ac:7f:15:b8:09:9c:2e:5e:7d:dd:1c:
ee:45:67:ed:6e:0e:fa:87:c6:ac:25:ef:77:a1:47:
3d:00:18:b7:cf:6c:0d:d5:ac:bb:96:da:55:45:83:
15:f5:b3:ac:39:97:d7:d8:de:f1:2e:cf:48:67:90:
9c:c0:f4:b4:c8:bc:86:52:8c:3c:11:92:52:7d:7c:
67:c9:95:bf:22:82:e4:3b:e7:ef:e2:a2:e2:34:fa:
3e:bb:e3:eb:3d:15:99:23:e6:14:81:bb:1a:b4:58:
a4:de:92:0e:3c:0d:c8:cc:ba:4b:6b:6a:e6:28:99:
2b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:21:5F:85:26:77:F2:18:80:EF:FC:9B:0A:ED:73:9C:8F:EE:1B:34
X509v3 Authority Key Identifier:
keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/74BEEFE21EE711ED86F2F57BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
139.190.234.0/24
Signature Algorithm: sha256WithRSAEncryption
99:41:6a:5b:c8:68:d0:8b:da:dd:d9:64:29:2e:8c:19:37:c1:
c1:d6:20:c1:aa:ae:5f:15:7a:7b:c5:1b:ac:d2:68:c9:d8:ff:
34:8c:10:96:ce:55:db:aa:7b:15:64:46:fc:ad:b3:d7:0d:5f:
5c:3d:de:4a:2b:a0:aa:b3:dc:b1:3f:b7:a2:3a:c8:65:8d:36:
e3:c7:86:2b:0b:be:34:f2:94:a6:18:d6:0a:cd:29:b4:81:92:
ab:dd:00:da:04:00:a0:fc:2b:68:83:d2:ec:ce:2b:b8:be:3a:
2b:02:20:69:92:64:2f:2d:d5:71:3a:1b:d6:84:84:86:b0:1a:
10:bd:0b:4f:41:53:f6:6f:4b:7c:d4:30:b6:3a:8d:79:f6:06:
01:44:a1:16:4e:18:1e:eb:4c:98:f0:0c:3d:6d:82:96:a8:bb:
17:75:99:ae:e3:09:77:ea:68:ec:c2:bd:7d:b4:1f:9e:08:f0:
16:dd:62:92:4a:63:c2:55:a9:79:65:0a:4d:6a:a3:c0:da:b0:
32:b9:10:c9:15:0e:b0:e1:7a:10:a5:f6:87:99:87:64:01:93:
be:3d:da:35:d2:6b:e5:45:1a:85:9c:e0:20:5a:f3:f4:2b:52:
f5:c7:d6:cd:39:3c:9e:2d:d1:32:14:aa:9b:de:3b:fc:bf:75:
b6:ad:46:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:32:14 2025 by rpki-client